2007-08-04 10:50 SYSTEM 1472 Function setifaceUpdatePackages() has failed. Return code is 0xC0000142, dwRes is C0000142.
2007-08-04 10:50 SYSTEM 1472 An error has occured while attempting to update. Please check the logs.
2007-08-07 2:11 SYSTEM 1472 Sign of “Win32:Vundo-gen46 [Adw]” has been found in “C:\DOCUME~1\BRENDA~1\LOCALS~1\Temp\is68089.exe” file.
2007-08-07 2:18 SYSTEM 1472 Sign of “Win32:KillFW-C [Trj]” has been found in “C:\DOCUME~1\BRENDA~1\LOCALS~1\Temp\wavesnet.exe” file.
2007-08-07 2:19 SYSTEM 1472 Sign of “Win32:KillFW-C [Trj]” has been found in “C:\DOCUME~1\BRENDA~1\LOCALS~1\Temp\wavesnet.exe” file.
2007-08-07 2:20 SYSTEM 1472 Sign of “Win32:PurityScan-AF [Trj]” has been found in “C:\Program Files\Common Files\Yazzle1281OinAdmin.exe[PECompact]” file.
2007-08-20 2:42 SYSTEM 1500 Sign of “Win32:Trojan-gen. {Other}” has been found in “C:\DOCUME~1\BRENDA~1\LOCALS~1\Temp\snapsnet.exe” file.
2007-08-20 2:43 SYSTEM 1500 Sign of “Win32:Vundo-gen46 [Adw]” has been found in “C:\DOCUME~1\BRENDA~1\LOCALS~1\Temp\is68089.exe” file.
2007-08-20 2:43 SYSTEM 1500 Sign of “Win32:Vundo-gen46 [Adw]” has been found in “C:\DOCUME~1\BRENDA~1\LOCALS~1\Temp\is68089.exe” file.
2007-08-20 2:44 SYSTEM 1500 Sign of “Win32:Trojan-gen. {Other}” has been found in “C:\DOCUME~1\BRENDA~1\LOCALS~1\Temp\yazzlesnet.exe” file.
2007-08-20 2:44 SYSTEM 1500 Sign of “Win32:Trojan-gen. {Other}” has been found in “C:\DOCUME~1\BRENDA~1\LOCALS~1\Temp\yazzlesnet.exe” file.
2007-08-21 2:58 SYSTEM 1460 Sign of “Win32:Adware-gen. [Adw]” has been found in “C:\WINDOWS\system32\pwinomdt.exe” file.
2007-08-22 12:50 SYSTEM 1460 Sign of “Win32:Adware-gen. [Adw]” has been found in “C:\WINDOWS\system32\pwinomdt.exe” file.
2007-08-23 12:53 SYSTEM 1468 Sign of “Win32:Adware-gen. [Adw]” has been found in “C:\WINDOWS\system32\pwinomdt.exe” file.
2007-08-23 9:59 Antonio Escalante Jr 1416 Sign of “Win32:Adware-gen. [Adw]” has been found in “C:\WINDOWS\system32\pwinomdt.exe” file.
2007-08-24 6:08 Brenda Mayorga 1728 Sign of “Win32:Adware-gen. [Adw]” has been found in “C:\WINDOWS\system32\pwinomdt.exe” file.
2007-08-26 8:08 Brenda Mayorga 172 Sign of “Win32:Adware-gen. [Adw]” has been found in “C:\WINDOWS\system32\pwinomdt.exe” file.
Hi brenda31,
For adware, run some specialist anti-adware/spyware scanners:
AVG Anti-Spyware Free (Requires Win2k/XP)
Ad-Aware Free
Spybot Search & Destroy
SUPERAntiSpyware Free
a-Squared Free
Download, install and update the programs. Disconnect from the internet (pull the plug) before running scans in Safe Mode if possible.
Always select the option to quarantine any malware found rather than delete it, then you will be able to restore files or registry entries wrongly identified as malware- a rare but not unknown event for any malware scanner.
You should also run a special tool to remove Vundo:
http://www.atribune.org/content/view/24/2/
When you have finished, scan for out-of-date and insecure software using Secunia Software Inspector and update any vulnerable software: this will help to prevent future infections.
Install SpywareBlaster also to prevent future infections: don’t forget to update every month or so.
When running the remove vundo tool, should I be in safe mode?
No, it’s not necessary for that tool.