I am running WinXP Pro SP2, all updates to date. using IE6, and firefox 2.0.0.7(latest versions)
Other installed spyware removal/protection
BHODemon 2.2(prior to infection)
XoftSpySE 4.33(prior to infection)
NAV 2007(prior to infection, currently removed)
Spybot S&D (installed after infection)
Hyjack This (installed after infection)
This basically started 3 days ago, after I let my son use my PC for "homework" /sigh.... anyways NAV popped up telling me I had Adware.Virtumonde.Trojan. since using a few other detectors, I've found several virus's running rampart and need some serious help removing this crap.
I had Norton Anti Virus 2007 installed, it detected the virus but after 2 days of trying to remove it, I had to uninstall NAV because it bogged down my system so bad it was taking 10 -15 min to boot up, NAV is a piece of crap, it dosen't work for removal and dosen't detect any of the threats that Xoftspy or Spybot or Kaspersky detected.
I then tried following symantecs bulletin to remove the infection, which included disableing system restore and using a tool they offer.
http://www.symantec.com/security_response/writeup.jsp?docid=2003-120914-4108-99&tabid=3
It took about an hour to scan my system and then say no infection was found. (I then read in your "read first" post here, that you don't recommend disableing system restore ! Thanks again symantec, I hate you!) I also tried the tool in safe mode, and again it says "no infection found."
I also have XoftspySE which is also supposed to remove this, but it doesn't even detect it. It does detect a bunch of cookies which I remove, but after launching IE or Firefox, they all reappear.
I downloaded another program called vundofix v6.5.9 by Atribune which again detected the files but couldn't remove them and required a reboot. after rebooting, it just says it can't remove mljgd.dll and does the reboot prompt and the endless cycle continues. I tried it 7 times to no success, I also tried it in safe mode, and get the prompt to restart to remove the file, but it doesn't remove it after rebooting, just says "mljgd.dll is in use and can't be deleted, press ok to restart your PC and click remove when prompted."
Using BHODemon, I can disable the mljgd.dll BHO, but i'm not sure on if this actually does anything to stop it from doing it's attack. and the file mljgd.dll is still unremovable. System is still sluggish.
I also tried the windows update "windows malicous software removal tool," and nothing was detected or removed.
I then tried spybot here, which after initial installation, update, and scanning, found about 160 threats (all RED)including virtumonde and smitfraud, and I then used spybot to remove everything. another scan reports no threats, but the infection persists, everytime i launch IE or Firefox, I get a redirect to winantispyware which attempts to download more spyware, or a popup adware or worms.
I then came here looking for some help as so far nothing has worked and i've spent appoximately 25 hours on this already, I am not attempting anything else until i can get some advice here. I have followed the instructions and did the kaspersky online scan and the Hyjack this scan.
Please for the love of god, if I can get help with this !
Other installed spyware removal/protection
BHODemon 2.2(prior to infection)
XoftSpySE 4.33(prior to infection)
NAV 2007(prior to infection, currently removed)
Spybot S&D (installed after infection)
Hyjack This (installed after infection)
This basically started 3 days ago, after I let my son use my PC for "homework" /sigh.... anyways NAV popped up telling me I had Adware.Virtumonde.Trojan. since using a few other detectors, I've found several virus's running rampart and need some serious help removing this crap.
I had Norton Anti Virus 2007 installed, it detected the virus but after 2 days of trying to remove it, I had to uninstall NAV because it bogged down my system so bad it was taking 10 -15 min to boot up, NAV is a piece of crap, it dosen't work for removal and dosen't detect any of the threats that Xoftspy or Spybot or Kaspersky detected.
I then tried following symantecs bulletin to remove the infection, which included disableing system restore and using a tool they offer.
http://www.symantec.com/security_response/writeup.jsp?docid=2003-120914-4108-99&tabid=3
It took about an hour to scan my system and then say no infection was found. (I then read in your "read first" post here, that you don't recommend disableing system restore ! Thanks again symantec, I hate you!) I also tried the tool in safe mode, and again it says "no infection found."
I also have XoftspySE which is also supposed to remove this, but it doesn't even detect it. It does detect a bunch of cookies which I remove, but after launching IE or Firefox, they all reappear.
I downloaded another program called vundofix v6.5.9 by Atribune which again detected the files but couldn't remove them and required a reboot. after rebooting, it just says it can't remove mljgd.dll and does the reboot prompt and the endless cycle continues. I tried it 7 times to no success, I also tried it in safe mode, and get the prompt to restart to remove the file, but it doesn't remove it after rebooting, just says "mljgd.dll is in use and can't be deleted, press ok to restart your PC and click remove when prompted."
Using BHODemon, I can disable the mljgd.dll BHO, but i'm not sure on if this actually does anything to stop it from doing it's attack. and the file mljgd.dll is still unremovable. System is still sluggish.
I also tried the windows update "windows malicous software removal tool," and nothing was detected or removed.
I then tried spybot here, which after initial installation, update, and scanning, found about 160 threats (all RED)including virtumonde and smitfraud, and I then used spybot to remove everything. another scan reports no threats, but the infection persists, everytime i launch IE or Firefox, I get a redirect to winantispyware which attempts to download more spyware, or a popup adware or worms.
I then came here looking for some help as so far nothing has worked and i've spent appoximately 25 hours on this already, I am not attempting anything else until i can get some advice here. I have followed the instructions and did the kaspersky online scan and the Hyjack this scan.
Please for the love of god, if I can get help with this !