Vundo Virus

skiddy2k

Alfonso_Skinarelli wrote: »

Can you upload this file to Jotti's Malware Scan please and report back the findings.

... or http://www.virustotal.com/ if Jotti's servers are too busy (as they usually are)

dbs

Will carry out instructions but may take couple days due to other commitments so will be away from my computer.

If I uninstall AVG will this delete the four viruses in the virus vault?

Alfonso_Skinarelli

If i remember correctly, AVG asks what you want doing with any files in the vault before uninstalling.

dbs

Alfonso_Skinarelli wrote: »

I left this file below out of the previous fix but it's more than a little suspect. A quick google reveals differing opinions with some deleting it and others believing it's connected to BT Broadband. I suspect this one may be malicious. The "modified date" is rather fishy considering you have Vista.

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup ->
-> %AllUsersAppData%\Microsoft\Windows\Start Menu\Programs\Startup\VTAgentReboot.exe
[Ver = 1, 0, 0, 2 | Size = 143360 bytes | Modified Date = 07/10/2001 20:11:30 | Attr = R ]

Can you upload this file to Jotti's Malware Scan please and report back the findings.


Try reinstalling AVG to see that rectifies the email scanner problem.

Tried to upload above file to be scanned but states unable to find file or firewall or malware stopping this file being open turned off windows firewall but its still the same.Should I delete this file anyway?

Did an online scan with Dr Web cureit as suggested but this found no threats.

Have re-installed AVG anti virus which is now working fine.

On this basis decided to re-installed Adaware but keep getting a fatal error message when trying to re-install and wont install how can I cure this?

Browntoa

seen this adaware problem posted on a few forums

would'nt worry about it

dbs

Sorry but cant see a link

dbs

Can I also suggest you get a second anti-virus opinion. Taking into account your present connection issues, you're probably best with a downloadable on demand scanner such as DrWeb. This program doesn't need to be installed and won't disrupt AVG. (quote)


Still got connection problems but when I switch user to my son`s settings there are no problems so I deleted all my web history cookies etc but I still have problems on my settings.

The only difference could be I am the administrator on my computer.All other users are ok.

dbs

With the help of a cousin who is studying I.T. went into registry and deleteted the file found by Adaware.

[Registry - Non-Microsoft Only]
< ShellExecuteHooks [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\ShellExecuteHooks
YN -> {F49ED2B3-08F5-4BA3-8536-2DAEE8C8409B

Used system restore and managed to re-install Adaware and ran another scan found to be all clear.

Internet connections now ok so far.

Also found this on Majorgeeks.com

1. We highly recommend uninstalling any version of Messenger Plus. It can be a major reason for having malware on your PC. It can even install a LOP infection. They all come in the 3rd party tools that can easily be installed by mistake. Software like this should not be trusted. And now the Messenger Plus Live! program is a source of Virtumonde infections due to bundling in WinAntiVirus . For additional info, see: http://www.liutilities.com/products/wintaskspro/processlibrary/msgplus/

So deleted Messenger Plus Live from which my son installed on the computer.

Installed a password for my computer just need to install a firewall now.

Thanks to all who replied.