I can not get rid of vbzuhlf.exe from my system32 directory. I've
tried many spyware hunter, but nothing can get rid of it. is there
anything that can delete it and keep it from coming back. my other
spyware and viruses, I have no problem deleting, just vbzuhlf. thanks
for any help that someone can give me.
Download all these that you don't already have
Spybot Search and Destroy
http://www.safer-networking.org/en/mirrors/index.html
http://www.pcworld.com/downloads/file_description/0,fid,22262,00.asp
Adaware SE Personal
http://www.download.com/3000-2144-10045910.html
HiJack This
http://www.spywareinfo.com/~merijn/files/hijackthis.zip
CWShredder
http://www.intermute.com/spysubtract/cwshredder_download.html
LSPFix
http://www.cexx.org/lspfix.htm
Update AdAware and Spybot S&D with the latest definitions,
Open Task Manager (control-alt-delete).
Looks under the processes tab.
If "vbzuhlf.exe" is shown as a process then "End Task" on it.
End Task on *any* suspicious tasks that are running.
If you see WToolsA or WToolsS, make a note of it. You can try to end task
on them but they'll probably keep coming back. Then go to Start-Run and
type in "msconfig". Click on the Startup tab. Remove the checkmark from
any suspicious startup items. Namely "vbzuhlf.exe or WTools, or anything
that suggests Bargains, Save, Rebate, WhenU, etc.
Then reboot the computer in SAFE MODE. Do this my continually tapping on
the F8 key when the computer starts. You'll get a menu which will give
you several options. Pick Safe Mode. Then pick Windows XP, even if it's
the only choice you have. Next you'll be asked to log on. If it's Home
Edition, your choices will be Administrator or Owner. (Owner might be a
username). If the Owner or Username is an administrative account, then
pick that. If you're not sure, pick administrator. When you get booted
up, run msconfig again and see if the items you unchecked are still
unchecked. If they aren't, then uncheck them again. Then run CWShredder,
AdAware, SpyBot Search & Destroy over and over until none of them are
finding anything. In Windows Explorer, under Tools, Folder Options, View,
make sure "Show all Files" is selected. Make sure the next two
selections, "Hide extensions for known file types" and "Hide protected
operating system files" are UNchecked. Then search for "vbzuhlf.exe". If
you find it, delete it.
Then reboot into normal mode. If you now have a problem connecting to the
internet, then run LSPFix. See if you're OK now. If not, post back. You
may need to run Hijack This and post the logfile in an appropriate forum
for further help. I'll explain how to do that if need be.