Trojan Win32/Vundo.Gen!

[SamDust]

Hi all
The following Trojans come up as detected by McAfee. I have tried several times in Safe Mode and it, ( and it's associated files) do delete with no trouble, but as soon as I restart, gets a recurring page of utter filth which appears repeatedly on my screen and McAfee security warning also. please tell me how to get rid of this heap of pests? I cannot get to disable System Restore, which I suspect is caused by this same Trojan

thanks for any help.

Code:

About this Trojan
Detected: Generic Packed (Trojan), Generic Packed (Trojan)
Location: C:\Users\Graeme\AppData\Local\Microsoft\Windows\Te mporary Internet Files\Content.IE5\6VK45KEP\vppcqdei[1].htm

About this Trojan
Detected: Generic Dropper.bu (Trojan), Generic Dropper.bu (Trojan)
Location: C:\Users\Graeme\AppData\Local\Microsoft\Windows\Te mporary Internet Files\Content.IE5\JXS885WU\jtznaoo[1].htm

[Fleming]

i suggest you consider downloading antother antispyware. you can also remove vundo manually, by Delete registry values:

Code:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\*WinLogon
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\*[filename]
HKEY_CLASSES_ROOT\CLSID\{2316230A-C89C-4BCC-95C2-66659AC7A775}
HKEY_CLASSES_ROOT\CLSID\{8109AF33-6949-4833-8881-43DCC232B7B2}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ATLEvents.ATLEvents
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ATLEvents.ATLEvents.1
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02F96FB7-8AF6-439B-B7BA-2F952F9E4800}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02F96FB7-8AF6-439B-B7BA-2F952F9E4800}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2316230A-C89C-4BCC-95C2-66659AC7A775}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8109AF33-6949-4833-8881-43DCC232B7B2}
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Active State

[Shen]

Hello,

Download Malwarebytes ' Anti-Malware from Here Double-click on mbam-setup.exe to install the application.

• Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
• If an update is found, it will download and install the latest version.
• Once the program has loaded, select Perform Full Scan, then click Scan.
• The scan may take some time to finish, so please be patient.
• When the scan is complete, click OK, then Show Results to view the results.
• Make sure that everything is checked, and click Remove Selected.
• When disinfection is completed, a log will open in Notepad and you may be prompted to restart (see Extra Note below).
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
• Copy & paste the entire report into your next reply.

[Raiz]

Refer this threads :

http://forums.techarena.in/security-virus/984429.htm
http://forums.techarena.in/security-...ers/881282.htm
Trojan.Vundo Removal