Windows 7 Pro SP1 (64-bit), avast! v8 Free, MBAM Pro, Windows Firewall, OpenDNS Family Shield, SpywareBlaster, MVPS HOSTS file, EMET+MBAE, MCShield, WinPatrol PLUS, SAS (on-demand scanner), IE11 & Firefox (both using WOT [set to BLOCK]; KeyScrambler for IE), CryptoPrevent, Secunia PSI.
[I am experimenting with Sandboxie, and believe computer-users who sandbox are acting prudently.]
Thanks ky331 for your response.
Today I got a popup asking me to install winfixer 2005.. I cancelled the popup from taskmanager (without pressing ok or cancel)... My question, am I affected by Winfixer 2005? Is there any other way to check this (I would like to avoid executing hijack this as much as possible).
Download [but do *NOT* yet run] FixVundo from
[we'll have you run it later]
Note: If you have previously download this file on another occasion, please download it again, to be absolutely sure you have the most current version.
Next, download VirtumundoBeGone from:
* Save it to your Desktop* Close all running programs (including your Internet Browser)* Double-click VirtumundoBeGone.exe on the desktop* Follow the directions as indicated
please be advised that this program will generate a "BLUE SCREEN OF DEATH"... this is an expected/necessary part of the process, so don't be surprised when it happens.
After rebooting, it's now time to run FixVundo (which you had downloaded earlier).
Make sure all other programs, including your Internet Browser, are closed.
Double-click the FixVundo.exe file to start the removal tool.
Click Start to begin the process, and then allow this tool to run.Important: Do not launch any new applications while the tool is running!Reboot your computer.
Run the FixVundo removal tool again to ensure that the system is clean.
It's now time to report back to us:
Thanx for your prompt reply ky331.
If you get a popup (only once) asking you to install winfixer, mean that your PC is infected (eventhough I cancelled the popup using task manager and have no visible performance problems / unwanted popups)?
Do you know if anybody got infected after cancelling the popup using task manager (I was aware that 'NO', cancel or 'X' exiting the popup does not help)...
I have rebooted it once and haven't had any more popups.. But I will keep my fingers crossed.. Is there any symptoms that I should look for, that will tell me if I am infected (like new files in system32 folder?)