Contact Us

Home > Infected > Infected - Prunnet.exe Among Others - Please Help

Infected - Prunnet.exe Among Others - Please Help

I seem to have removed mine. Maybe the keyboard is flaky or just plain bad.Please provide more details on the above.Normally, when I start up my computer, I see a series of things including the Dell logo, Edited by Wademan, 26 December 2008 - 03:13 PM. Hopefully there's something else I could try. navigate here

I have always used these guys for my boot disks. Then my computer starting freezing a lot, not restarting, not starting at all...etcI also found 3 foreign .exe files in my task manager, one of which was prunnet.exe (can't remember the Back to top #13 Juliet Juliet Advanced Member Trusted Malware Techs 23,130 posts Gender:Female Posted 03 January 2009 - 04:08 PM Glad we could help Please do not PM me for Please start a New Thread if you're having a similar issue.View our Welcome Guide to learn how to use this site. see it here

Some popups even came when I wasnt on IE. Flag Permalink This was helpful (0) Collapse - Prunnet - my experience by squints969 / March 12, 2009 4:04 AM PDT In reply to: Prunnet.exe, popups, Spybot S&D won't run, other c:\windows\OPTIONS\CABS\_desktop.ini . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Service_seneka ((((((((((((((((((((((((( Files Created from 2008-12-03 to 2009-01-03 ))))))))))))))))))))))))))))))) . 2009-01-02 19:59 . 2009-01-02 19:59

d-------- c:\documents and settings\Hayate\Application Data\Malwarebytes 2009-01-02 19:59 . 2009-01-02 C:\System Volume Information\_restore{92829FC4-B411-4431-A014-C115D32D0F83}\RP567\A0065431.exe (Adware.Hotbar) -> Quarantined and deleted successfully.

Ran more scans with Malwarebytes, Dr. If you want to continue here I will be glad to help. I need to figure out how to get a DOS boot disk without using a floppy in a different version of DOS than the one that's embedded in the recovery console.If There were about 4-5 IE explorer pop-ups open.

The computer has not yet displayed any unusual behavior thusfar since the deletion of the virus last night. Download Now! As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged https://forums.malwarebytes.com/topic/9847-cant-install-malwarebytes-infected-with-virus-remover-20082009-and-prunnetexe/ Also in safe mode you can do a regedit and remove prunnet entries, you can run autoruns to find wacked startup issues as well.

Registry Values Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> Quarantined and deleted successfully. Please re-enable javascript to access full functionality. O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_08\bin\npjpi142_08.dll O9 - Extra 'Tools' menuitem: Sun Java Console I haven't actually utilized dos in about a decade.

Flag Permalink This was helpful (0) Collapse - Trojan by Raln_00 / January 5, 2009 3:58 AM PST In reply to: Vundo Trojan/Prunnet/ bunch of crazy dlls Also had it not go to this web-site IF, you feel uneasy, just copy this thread an post in our HJT forum, with topic like "Infected:HJT wont download" Otherwise we are good to go, try the ComboFix. C:\Program Files\Screensavers.com\SSSInst\bin (Adware.Comet) -> Quarantined and deleted successfully. Please do not PM me for HJT help, we all benefit from posting on the open board.Want to help others?

Register now! http://lsthemes.com/infected/infected-ie-goes-everywhere-except-where-i-want.html It is just the same as other program files that the admin level can't delete. Flag Permalink This was helpful (0) Collapse - Good luck by pmart15 / January 30, 2009 11:40 PM PST In reply to: good luck Ok, so I fixed my problem and C:\Documents and Settings\Jeremy\Local Settings\Temp\TDSSa12e.tmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.

An Avenger.txt file was also created, whose contents looked similar to that of the malwarebytes logs. Malwarebytes' Anti-Malware 1.31 Database version: 1571 Windows 5.1.2600 Service Pack 2 1/2/2009 9:53:37 PM mbam-log-2009-01-02 (21-53-37).txt Scan type: Full Scan (C:\|) Objects scanned: 40034 Time elapsed: 30 minute(s), 38 second(s) Memory No, create an account now. his comment is here A search revealed the exe file in system32, and I notied the created date was within minuets.

Decided not to try it again. Sign In Sign In Remember me Not recommended on shared computers Sign in anonymously Sign In Forgot your password? It then return to full strength and I downloaded Malwarebytes.

I hope there is something I can do before a wipe of the HD...

I ran my scan first while normally logged into the computer. The OS is moot, it's a boot. Back to top #5 Wademan Wademan Advanced Member Anti-Spyware Brigade 3,835 posts Posted 26 December 2008 - 03:11 PM Hello again, Follow this very closely> http://www.bleepingc...to-use-combofix What Operating system you use? Well, I tried to uninstall Itunes (didn't need it for the computer I was using - just needed XP machine for setup only) and it seemed to go well.

The computer has not yet displayed any unusual behavior thusfar since the deletion of the virus last night. Has found 23 infected objects already. Finally, it puts several dlls in the system32 folder. http://lsthemes.com/infected/infected-ave-exe-etc.html I'm just pissed because I know what I'm doing, one wrong click in the restore menu did this.

I wanted to run SDFix and Malwarebytes' Anti-Malware, but I didn't because I don't want to log in as Administrator and allow the trojan/virus create additional problems.