Hi.
I read over some of the posts about Virtumonde and they were REALLY helpful! I did the VundoFix stuff, but couldn't download the ComboFix program because it said it was out of date or something like that. I'm stuck in that respect.
Here is my VundoFix log. Please help! Thanks in advance - you guys are great for what you do!
VundoFix V6.6.2
Checking Java version...
Java version is 1.4.2.3
Old versions of java are exploitable and should be removed.
Scan started at 11:32:10 PM 19/11/2007
Listing files found while scanning....
C:\windows\system32\enpzgrte.dll
C:\windows\system32\enpzgrte.dllbox
C:\windows\system32\jkklk.dll
C:\windows\system32\klkkj.ini
C:\windows\system32\klkkj.ini2
C:\windows\system32\oepmrgnj.dllbox
C:\windows\system32\wpychcud.dll
Beginning removal...
Beginning removal...
Attempting to delete C:\windows\system32\enpzgrte.dll
C:\windows\system32\enpzgrte.dll Could not be deleted.
Attempting to delete C:\windows\system32\enpzgrte.dllbox
C:\windows\system32\enpzgrte.dllbox Has been deleted!
Attempting to delete C:\windows\system32\jkklk.dll
C:\windows\system32\jkklk.dll Has been deleted!
Attempting to delete C:\windows\system32\klkkj.ini
C:\windows\system32\klkkj.ini Has been deleted!
Attempting to delete C:\windows\system32\klkkj.ini2
C:\windows\system32\klkkj.ini2 Has been deleted!
Attempting to delete C:\windows\system32\oepmrgnj.dllbox
C:\windows\system32\oepmrgnj.dllbox Has been deleted!
Attempting to delete C:\windows\system32\wpychcud.dll
C:\windows\system32\wpychcud.dll Has been deleted!
Performing Repairs to the registry.
Done!
Beginning removal...
VundoFix V6.6.2
Checking Java version...
Java version is 1.4.2.3
Old versions of java are exploitable and should be removed.
Scan started at 11:58:51 PM 19/11/2007
Listing files found while scanning....
C:\windows\system32\enpzgrte.dll
C:\windows\system32\enpzgrte.dllbox
Beginning removal...
Attempting to delete C:\windows\system32\enpzgrte.dll
C:\windows\system32\enpzgrte.dll Has been deleted!
Attempting to delete C:\windows\system32\enpzgrte.dllbox
C:\windows\system32\enpzgrte.dllbox Has been deleted!
Performing Repairs to the registry.
Done!
VundoFix V6.6.2
Checking Java version...
Java version is 1.4.2.3
Old versions of java are exploitable and should be removed.
Scan started at 12:14:11 AM 20/11/2007
Listing files found while scanning....
No infected files were found.