From: "0" <robert.erb.jr RemoveThis @gmail.com>
| Hello all,
| I have been searching the web trying to find an answer to my trojan
| problem. I have found many forums but none of their solutions have
| worked.
|
| Here is my problem:
|
| Somehow my computer became affeceted with this trojan. I use firefox,
| but I consistently get pop up ads in internet explorer while on the
| web with firefox from "ad.oinadserver.com" and "advertisement by
| outerinfo" I think they are from the same company.
|
| Additionally, every time I run my virus scanner (I have run Ad aware,
| Symantec Antivirus, XoftSpySe, Spyware Doctor), the programs find the
| problem and remove them, but as soon as I restart my computer and open
| firefox, the popup ads continue again. They tell me its a Vundo
| Trojan, so I have also run vundofix, but to no avail.
|
| I have also tried going to the outerinfo website, as someone
| recommended, but their link to download the uninstall file does not
| work (big surprise).
|
| This file, "ssqpm.dll" I have tracked down, and is related to the
| problem but I cannot delete it. I found it located in C:/Windows/
| system32
|
| Does anyone have any other solutions to this problem? I reformatted
| just about 3 weeks ago (not virus related though) and I am in no mood
| to do it again.
|
| Thanks for any help
1. Install the Windows Recovery Console.
2. Boot into the Recovery Console
3. Logon
4. Go to; %windir%\system32
5. Rename; ssqpm.dll to ssqpm.vir
6. Reboot into Normal Mode.
7. Logon with Administrative rights.
8. Run; REGEDIT.EXE
9. Find; HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
10. Delete; ssqpm
11. If you are using any version of Sun Java that is prior to JRE Version 6.0,
then you are strongly urged to remove any/all versions.
There are numerous vulnerabilities in them and they are actively being exploited.
It is highly suggested that you update to the latest version which is Sun Java JRE/JSE
Version 6.0 update 2 (jre 6u2)
Simple check, look under...
C:\Program Files\Java
The only folder under that folder should be the latest version.
Such as...
C:\Program Files\Java\jre1.6.0_02
http://java.sun.com/javase/downloads/index.jsp
http://www.java.com/en/download/manual.jsp
FYI:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102557-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102622-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102648-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102729-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102732-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102760-1
12. Download Adware-Virtumundo Removal Tool --
http://secured2k.home.comcast.net/tools/VirtumundoBeGone.exe
Information on the Adware-Virtumundo Removal Tool:
http://forums.mcafeehelp.com/viewtopic.php?t=57049
13. Download Atribune's VUNDOFIX.EXE
http://www.atribune.org/ccount/click.php?id=4
Save VUNDOFIX.EXE to "C:\" ( C:\VUNDOFIX.EXE ) and execute it from there.
* * * Please report back your results * * *
--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV -
http://www.pctipp.ch/downloads/dl/35905.asp
FAQ
Profile
Private Messages
Log in
