A computer for the company I work for just got this nasty bugger on one of our computers.
I followed the steps here:
https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/
And I had initially found you guys from this thread:
https://www.techspot.com/vb/topic119190.html
I downloaded ComboFix, but have not ran it yet and I won't until its required.
I had seen many other posts about this trojan and how to get rid of it. Tried a few. But to no avail. My logs are attached.
Note that, the McAfee VirusScan log I copied and created from the results of the scan. Looks the exact same. Also, the program "VirtumundoBeGone.exe" is a program I had found on another forum to use (I'm sure y'all have heard of it). I didn't try it yet. So, let me know if its worthless.
We didn't want to do any registry deletions/changes ourselves without a going through y'all first. We did manage to delete some files via FileAssassin and renaming.
Also, at one point, we thought it was just the sdra64.exe virus. But I'm guessing it all comes back to Vundo. If there's any other info you need, just let me know in reply.
(Btw, I work in IT at a company. I understand that this is y'alls specialty. I don't mind consulting with experts.) ;-)
Thanks in advance,
FO4R
I followed the steps here:
https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/
And I had initially found you guys from this thread:
https://www.techspot.com/vb/topic119190.html
I downloaded ComboFix, but have not ran it yet and I won't until its required.
I had seen many other posts about this trojan and how to get rid of it. Tried a few. But to no avail. My logs are attached.
Note that, the McAfee VirusScan log I copied and created from the results of the scan. Looks the exact same. Also, the program "VirtumundoBeGone.exe" is a program I had found on another forum to use (I'm sure y'all have heard of it). I didn't try it yet. So, let me know if its worthless.
We didn't want to do any registry deletions/changes ourselves without a going through y'all first. We did manage to delete some files via FileAssassin and renaming.
Also, at one point, we thought it was just the sdra64.exe virus. But I'm guessing it all comes back to Vundo. If there's any other info you need, just let me know in reply.
(Btw, I work in IT at a company. I understand that this is y'alls specialty. I don't mind consulting with experts.) ;-)
Thanks in advance,
FO4R