Google Redirect - Vundo - Avira and MWB can't remove I've looked all over for help

Status
Not open for further replies.

BeachJoshua

Posts: 49   +0
I've see these programs people run and post logs on here to get help with there problems, If someone can assist me, I'd be very happy, and thankful.

Thanks
-Josh

Avira
Guard: Malware found

Date/Time: 5/12/2010, 4:49:25 PM
Type: Detection

A virus or unwanted program
'TR/Crypt.XPACK.Gen2' was found in file
'C:\Windows\System32\bywuut.dll'

Access to this file was denied.

Please select a further action:

Remove --- Details
__________________________________________

Basically it won't do anything about it, neither will Malwarebytes, it shows 3 registry errors and it does it every time, I've ran in safe mode also..

What do I do now?
 
I have ComboFix, ran TFC, Have that program that runs a dos window and supposed to end all malware programs [IDK what it's called because I renamed it already], also have Avira, and Malwarebytes.
 
Welcome to TechSpot, Josh. Allow me to help get your system in order.

You begin by running preliminary virus and malware removal stead found HERE.
https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/
Some malware will be found and removed and the logs that you leave for our review will show us what's on the system and help guide us in helping you.

You stop running random program without guidance. You don't run any other cleaning programs or scans unless we direct you to. you don't use a Registry cleaner or make any changes in the Registry.
[/B You should not run Combofix unless we direct you to.

Please begin that steps and leave the logs. We'll from from there.
 
I was going to run GMER and blue screen shut down.

At bottom it says dumping physical memory

I'm now in safe mode with networking.

Running Scan

Edit: Re-Read the 8-Step, and it's now running.
 
My Rule #1: You do not bump a thread unless you haven't had a reply in 72 hours. Everyone who posts in the forum has a problem and everyone wants it fixed yesterday.

You may have run programs 5 times, but unless you leave the logs for us to review, it doesn't count!

There are 2 parts to the DDS log- the other is named Attach.txt. Where is that?

And since you now have Combofix on your desktop, please update and run again, leaving the report in your next reply with the Mbam log and the other part of DDS.
You are asked to run Malwarebytes and leave the log- where is that.

You would like help, then please follow the steps.
 
I appologize, and I couldn't find the attatch file, and my mom decided it would be a good idea to reboot the comp and load it in normal mode, well I'm guessing the virus deleted the umbrella anti-virus, I'm currently on a computer at school, and when I get home at 3:45 eastern time, I'll just delete all the programs I don't need, restart the 8-step then go from there if that's a good idea.

Thanks..

Sorry for the bump and what not.
 
I'll just delete all the programs I don't need, restart the 8-step then go from there if that's a good idea.

That sounds good. Also keep in mind that if you need to change something in your reply and there is no post after it, you can use the Edit feature instead of a new reply.
 
I have an issue... I rebooted in safe mode, Reinstalled avira, now the update has an error that gives random character sometimes Japanese symbols etc.. I'm assuming this is the virus seeing as after my mom booted it in normal mode, the avira had been uninstalled, what do I do now?
 
Okay, it's really tough to try and help someone when they want to go off and do their own thing! This is your mom's computer- is that right? Why do you go back and forth from Normal to Safe Mode?
  • "I have ComboFix"> - mistake. You don't run that unless a helper instructs you to.
  • ". ran TFC"- okay but just for cleaning temporary internet files.
  • " Have that program that runs a dos window and supposed to end all malware programs [IDK what it's called because I renamed it already]"
    IDK is a 'design and development site: http://www.idk.com/,
  • "also have Avira"- so why did you uninstall it?
  • " and Malwarebytes."- where is log?

Could you put your mom on?
 
Status
Not open for further replies.
Back