1 reply to this topic

[georgiadawg]

I've run a scan several times and just can't remove this thing. I'm told to reboot and the problems with be cleared on the reboot, but they just won't go away. It looks like I've got 3 registry keys and one file infected. I can't delete them manually, even using tools that are supposed to unlock the file and let you delete them. Please help me!

Here is a copy of my last Malware Bytes log:

Malwarebytes' Anti-Malware 1.36
Database version: 1970
Windows 5.1.2600 Service Pack 3

4/24/2009 9:09:51 PM
mbam-log-2009-04-24 (21-09-51).txt

Scan type: Full Scan (C:\|)
Objects scanned: 167203
Time elapsed: 1 hour(s), 30 minute(s), 48 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 3
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6778c31d-de24-4942-a53f-13fdde7b4507} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\umadtzsc (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CLASSES_ROOT\CLSID\{6778c31d-de24-4942-a53f-13fdde7b4507} (Trojan.Vundo.H) -> Delete on reboot.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\WINDOWS\SYSTEM32\ydxvser.dll (Trojan.Vundo.H) -> Delete on reboot.

[nosirrah]

Your definitions are more than 70 versions out of date , please update and scan again .