Malware with Codegear Information File Dumper

  • Thread starter Thread starter vfclists
  • Start date Start date
V

vfclists

I have a problem on my computer where a number of programs do not
start and web pages keep getting redirected.

The Explorer interface does not start and I need to open the Task
Manager and run explorer from the menu before the Desktop and Programs
Menu appears.

The virus disables the services menu, a number of features on the
Control Panel, like Disk Management and cmd.exe is also disables. It
as though it monitors attempts to run programs then kills those it
does not like.

One thing that shows up regularly in the Sysinternals Process Explorer
is a number of files ending in *wow.exe and the Company Name is
Codegear File Information Dumper.

I have tried the Norton Bootable Recovery Tool and the Avira Rescue CD
and they have both failed to get rid off. I would expect them to
notify an error if the some Windows files are corrupted, the gina.dll
files are changed, but they both give no notice of such an error. It
could be that the spyware uses some settings hidden in the Registry or
start up sequence and leaves the main Windows System files unchanged.

Has anyone come across such errors recently?

The only links I see relating to it are when I search google for
"Codegear Information File Dumper"

http://answers.yahoo.com/question/index?qid=20110207162331AAC8D0z

Given the recent date I suspect it may be a new problem.
 
I have a problem on my computer where a number of programs do not
start and web pages keep getting redirected.

The Explorer interface does not start and I need to open the Task
Manager and run explorer from the menu before the Desktop and Programs
Menu appears.

The virus disables the services menu, a number of features on the
Control Panel, like Disk Management and cmd.exe is also disables. It
as though it monitors attempts to run programs then kills those it
does not like.

One thing that shows up regularly in the Sysinternals Process Explorer
is a number of files ending in *wow.exe and the Company Name is
Codegear File Information Dumper.

I have tried the Norton Bootable Recovery Tool and the Avira Rescue CD
and they have both failed to get rid off. I would expect them to
notify an error if the some Windows files are corrupted, the gina.dll
files are changed, but they both give no notice of such an error. It
could be that the spyware uses some settings hidden in the Registry or
start up sequence and leaves the main Windows System files unchanged.

Has anyone come across such errors recently?

The only links I see relating to it are when I search google for
"Codegear Information File Dumper"

http://answers.yahoo.com/question/index?qid=20110207162331AAC8D0z

Given the recent date I suspect it may be a new problem.
Click to expand...

Yeah. I have the same problem. I kill the processes in task manager
and delete the executables that are running, but it only brings up
more processes called "update.exe". I suspect that the update
processes are redownloading the files. I haven't found a solution just
yet, but I'm still working on it. I just got this problem about a week
ago and I haven't had alot of time to work with it.
 
vfclists said:
I have a problem on my computer where a number of programs do not
start and web pages keep getting redirected.

The Explorer interface does not start and I need to open the Task
Manager and run explorer from the menu before the Desktop and Programs
Menu appears.

The virus disables the services menu, a number of features on the
Control Panel, like Disk Management and cmd.exe is also disables. It
as though it monitors attempts to run programs then kills those it
does not like.

One thing that shows up regularly in the Sysinternals Process Explorer
is a number of files ending in *wow.exe and the Company Name is
Codegear File Information Dumper.

I have tried the Norton Bootable Recovery Tool and the Avira Rescue CD
and they have both failed to get rid off. I would expect them to
notify an error if the some Windows files are corrupted, the gina.dll
files are changed, but they both give no notice of such an error. It
could be that the spyware uses some settings hidden in the Registry or
start up sequence and leaves the main Windows System files unchanged.

Has anyone come across such errors recently?

The only links I see relating to it are when I search google for
"Codegear Information File Dumper"

http://answers.yahoo.com/question/index?qid=20110207162331AAC8D0z

Given the recent date I suspect it may be a new problem.
Click to expand...


Here's a thread at Geeks to Go which dealt with what appears to be, the
same type of infection -

http://www.geekstogo.com/forum/topi...-file-information-dumper-has-stopped-working/

Suggest you post there for assistance. It appears that cleaning this
malware is not easily accomplished and requires some guidance.


MowGreen
================
*-343-* FDNY
Never Forgotten
================

"Security updates should *never* have *non-security content* prechecked
 
Back
Top