i recently go this trojan... i have norton and everything... i downloaded what it told me to use and i followed the instructions but when i scan in safe mode it says i dont have the virus however when i get out of safe mode the waring pops up once again to tell me i have it... i have no idea what to do.. i dont really know a whole lot about computers.....my computer is running very funny though... PLEASE HELP

Download, install, update and scan with Spysweeper.

This helped others with your problem.

Hi, Steph132002,

To completely get rid of Vundo.b follow these steps:

1. Download and install Microsoft AntiSpyware Beta. It's free and really powerful.
2. Update the program using Start - Programs - Microsoft AntiSpyware - Microsoft AntiSpyware Update shortcut.
3. Reboot your computer into Safe Mode
*On PC startup tap the F8 key and select the Safe Mode entry from the appeared menu. Tutorial here.
4. Run Microsoft AntiSpyware Beta and remove the parasite.

If the above steps didn't help consider using manual removal instructions. Read them here.

I went on symantec's website for their trojan.vundo.b virus removal tool. It tells me to run the program in "safe mode".

My problem is getting into safemode. I get into safemode, get my Win XP login page, login, then my desktop icons flash up and then disappear. I am left with a black screen with "safe mode" in each corner

adansi

For Adansi in response number 3, the Safemode sometimes starts without the Explorer process. So you need to type Ctrl-Alt-Delete to bring up the Task Manager, then click File, New Task and type in "explorer". Then the "Start" button will appear on the lower left corner of screen which we can click to access the files. The Explorer process is not too stable and soemtimes terminated by itself, so you may have to do it a few time.

My PC got infected couple days ago and I tried all these (unplug internet cable, turn off Norton auto-protect, run in Safemode, run Symantec's removal tool) with no success. Finally tried the way posted at:

http://www.bleepingcomputer.com/forums/How-to-remove-the-TrojanVundoB-Search42com-MSevents-tx18610-0.html

It is a little tedious and requires downloading several tools. But it works and also helped me understand a little more of the PC.

Thanks,
Ken

Or.. ignore these posts and do what "notnormal" suggested. Trust me... this works. Its fast and its free.

go to www.webroot.com and download the free 14-day trial of spysweeper. then update it and run it.

Problem solved. Trust me.

Ok. I hate to be a party pooper but the only way I have ever kiled this monster and had it not come back was to do the following. It is general and it gets rid of most difficult yuckware. Forget about the normal antispyware software. That is like trying to fight a fire breathing dragon with a BB gun.

Here is what I Did:

You need two computers to do it.

Below is actually a quote from my blog

This computer had:
Winfixer
IST bar
180 Solutions

Winfixer has been the hardest thing to get rid of since Aurora. When I saw this, I didnt waste my time trying to kill it with traditional anti spyware software (which is lacking much these days). Here is what I did:

I ran Hijack this just to determine what all was on there. I let it kill what it could

I took the hard drive out of the laptop and placed it in another computer.

I went through the program files and deleted everything that was obvious malware.
Deleted temp files and temporary Internet files for every profile. Even on a new PC this was difficult as these files didnt want to die. I had to use safe mode to kill them. Btw, Killbox did not help here

I then ran AVG and ADaware (still on the other PC.). I had to tell them to scan the drive from the old PC. I let them remove all they could find.

Next I ran MWAVscan and deleted manually all the files it found to be infected.

Once it was all clean, I realized the registry was probably still full of crap so I returned the drive to the original system. Ran Hijack this, Adaware and AVG here. No infected files were found and Adaware cleaned up the registry for the most part.

Next I went through the registry and looked for any orphaned entries. I looked through the software hive and deleted any entries for known yuckware companies and also cleaned up the startup. If you want more detail as to what I did here, please ask and I will email you. I dont want to post it because I dont want some idiot to try it and really screw up their computer.

Last but not least, I updated Windows with the latest patches.

I now had a squeaky clean laptop with no signs of infection. I returned it to the customer and advised them to change their Internet habits.