Jump to content
amateur

C:\WINDOWS\system32\ (Trojan.Vundo)

Recommended Posts

From an MBAM log, Files Infected section:

C:\WINDOWS\system32\ (Trojan.Vundo) -> Delete on reboot.

Not sure if it's safe to reboot.

Share this post


Link to post
Share on other sites

amateur, can you rescan and post the complete log please? Also developers log?

1. Click the Start Menu.

2. Click Run.

3. Type in "mbam.exe /developer", without the quotes.

4. Run the same type of scan you did before and save the logfile and post it.

Thanks

Share this post


Link to post
Share on other sites

Also, is this from your own computer, or from a log you're working on. In the second case, please provide an url to the log you're working on. I really want to see what other malware is present there. It wouldn't be the first time that malware messes with this. Anyway, the system32 folder is whitelisted :(

Thanks.

Share this post


Link to post
Share on other sites

Thanks. :(

It's certainly a nice collection of nasty malware present there... and looks like the malware present already damaged quite a lot there.

User needs to update mbam too - he's a couple of database versions behind :)

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.