Gumblar removal tool

Gumblaration of Google

They say Gumblar backdoor virus is more dangerous than even Conficker. There is a place where you can learn all the truth about Gumblar virus and remove Gumblar backdoor virus.

Are you in a hurry? Download Gumblar Removal Tool straight away.

If you suspect that your computer is infected with Gumblar, CHECK:

Step 1. Find sqlsodbc.chm in your Windows system folder (by default the location is C:\Windows\System32\).
Step 2. Obtain the Sha1 of the installed sqlsodbc.chm. You can use a free tool such as FileAlyzer to obtain the SHA1 of a file.
Step 3. Compare the obtained Sha1 with this list, released by Microsoft recently to check for Gumblar attack.
Step 4. If your SHA1 along with its size don’t correlate with one pair of the list below it could be a sharp sign of Gumblar infection.

What consequences of Gumblar disease should be expected?

• You become not only a Gumblar virus carrier but you’ll distribute Gumblar by yourself.
• If you are a webmaster or even use FTP client, Gumblar will embed its malicious code into all of your sites controlled by an infected PC.
• Gumblar will try to install malicious programs which manipulate Google search result pages when viewed by Internet Explorer. After Gumblar invasion you can’t be sure in trustworthiness of your Google search results.

Fast elimination of Gumblar virus:

Idea 1. You can use our specialized solution against Gumblar – Gumblar Fast Heal.

Idea 2. For best protection you should scan and clean your computer from all known malware including Gumblar with the help of high-quality anti virus and anti spyware solution – True Sword.

Gumblar record of service and Gumblar description

The Gumblar invasion compromises Web sites through the use of stolen FTP credentials. The compromised sites then infect users with Gumblar by means of a drive-by-download attack that infects due to unpatched Adobe PDF and Flash Player vulnerabilities. Drive-by-download attacks have distributed over the past 18 months and are now one of the primary tools for proliferating malware and recruiting zombies including Gumblar.

As soon as your computer finds itself to be under fire of Gumblar, Gumblar attempts to redirect Google search engine results to point to phishing Web sites.

As a result, there is exponential growth of PCs which were infected by Gumblar. Users catch Gumblar infection from some Web sites, then their own Web sites become infected due to stolen FTP credentials. A user doesn't see that something wrong is happening and ... URL filtering and blacklists won't help against Gumblar. These infected sites are still legitimate and the Gumblar invasion catches people off-guard.

A Web site consists of many pages and objects, and the Gumblar attack adds just one more ingredient into a site. Gumblar’s footprint is small and practically isn't easy to discover.

We had to recognize that Gumblar continues mutating. As soon as some infected Web sites were cleaned Gumblar started replacing the original malicious code with code with dynamically generated JavaScript. It is practically impossible to find Gumblar infection on the sites then.

Below you can find a list of SHA1 and their sizes file comparison of which is a reliable indicator of Gumblar invasion

005AAD8912A62127A2F416AA9FD089000D24851A      97892
03C9CD0D8E90DD8754F8488A085359C818A28A90      97053
0DB4AB7E18991BF64139E7078249679098C85F2C         97758
17257DF49E03DAF2BA1FA286FBE2C14802ACCD2A   97176
1B10F5F97E2B7159C872B3576D72B4CF2AD2FFB5      49771
236F25115C31DBFEB11D9BF12B620266F46BA041       96647
2667D90C7B0CBCC212B8C9143C28C7AD5105BE49    97746
2803AD07C1C7A8908BBDB5F7AB32A19C9A724ECC   98124
2915AA45C3FAF60137402270F0C915C0F5CA2CD1      96945
2C73542A1598AEA03F7927ECF8F7156106037D67        96975
2D570F7E8CD9DFED179996AC40F7F7EF7AC99E93     95765
2EA3BAFD66A74ADC6B835F31BD4E4A228F666A5D   95739
309FF9840F53DFF406EC580063A9975224F626DE         97015
30AE3FF04C8D486A5BE77ACB0939B06AF626F17D     48693
328BB23CEF7816035E32B3BF28A9F9606B9FF255        96851
34F96E4305B6E28B966F15E9845748E44AF35762           97393
38A8E15E68D64670016E62D6D2150F812CD31298         97250
44A4B285C1B27FEB36E0E0C3D0081A63241AE6AF      97369
487AA6CDB994E1855B33C1F3B0BE522C36540E56       97216
540F94FA630BB64529F656C6EAA4F48A3F87756D       98700
5690D97E9F9E913431AA9453D0185F2665A713CC        97035
583C919DF623E4B8A7B3EFAD6D2E1C792B823D5D     98100
58BC35673C8B1F751CD0584A6914740B2F3DCAAE     96705
5A658A36EF43147CB3F1DBC4276EA82A239BF8FA     49345
5FBA738B9698AA61645CFFE3AD95192C4BACDC49   97260
61CBFAB7CB5AB27EED9193F225B77E2EF6BA7321     49648
62ABAB09DFD971A90C2030BE44778206991CE2D6      97268
6441922698A8CD80A2FC0AE15EFDAF0A0208F50B     96941
694BDB08101AD5C18BB5B3425EE01073320B8D8E       97667
6BE7E7A20D2AB835C78EB8F3759C304888B86BD4      97304
6DB4B4F065610CAE100FBDB850AFC9F16C76AB65    98753
6EAEBB4ADCB8B240571D447A1EE9B665F6C181D2    96827
752211F65B693C721E27785FCC6C74E9B71997E9         96903
7E98241E1B21361CC02DC88EB57C9BB9CF1F4239      49092
82B79C07941775B6072D97D5D033E45E8D3C6FDF       98469
87230AD4C2646376B819DDA4963DD2C49BC50D7A    46133
8FD4C3533D648A14C8183D6F3A3AFEF3D1CC75CE    97640
91BD59E2BB7B9ED95B1DF85B314EA8FF0B3B86FD     98074
9625698340941EB6D519A219396296E45FDCF7DB        36253
97586996280F2A61AE5193DB827C44300BF27FCD        96675
9811B4A14E3196AAC93DF7CE2F50C84030AA7D13     97232
9BA779EE746DCC5A44B30BDA6436E07997236E52      97146
9E1E2EDDA59BDE29226CAD2D5BDA5A954BFCA5DC            94792
9F7658F361D9F1398DD90707EDE01F0032991946          48475
A09564B76C13C8470A44509A17B4B6023295A361        98770
A310EF2F35A8670F6C4B7872073F94764C23FA08        48095
A3E367F7F30A9BF9064DEFBF94C36F4EB7CA4C0A    95800
ABB417B6F06F8C18F92DCD62D9BC9F2284F468E9     97740
B194BB244FF0FD101DCDA79CD8FFC8D33C392D13   94808
C6CD44574CC0F5BAC24DE85B0933A132B3A0D684    50004
C97875A6819A3F675ABE42C8BB870E191102C94C       98724
C98D1FF5D9E1D8366CF130899BC210EBE54E77F8       98955
CA58E7CA1EE50FB8EB7428064DFE84381EEDB453      95771
CD3B8E1C9C1096C635AA7B37D545C9B0CA241F70    101112
CF2DA46516BE3FC6312C2F05DF33C6A05F8562D7     48343
D6ED920D3D0ACEB52930A753256A21D43AE1899E     97087
D7E22080BF67CA6AE29BB12A51E865C22DDA48F7     101136
DA27CBA986161938C5086BB5C94FBBAB523B1F37     97791
DF025689B1E2E3C813969828AF26573BA4E2F23A        98800
E42C0D9D4669D41F8AB45F31F12B405489F39AFD      95808
E5EDDC4EF26EED5A64E4B4C509F01E224238D3C6     48401
E634C31114AE87D026812748E791402D69C6D996         97949
E667F70144423A645C6BC67CE01424F720594320          95909
E79A39606A2067120AEF63431F2C073B4B9298DC        97200
E9B9F0A53ED36C9464E4C4C154878742F1CA6EC6      96965
EAF20A3BC180FFE0AD59FF7AC786A5FC27DB0C3B  97662
EB60EEFA1AD57FA27E661032329AD9AF5FD243DA    97033
ED9E18A7E5EE245B77CFB4FC560013849072C943        96927
EF7A63AC6A45FA3BD6DD7390CA60462F61A6FCB2   47721
F3AF84FA7D5536E54F6A5357F3AC5AEDFA7EE52A    49249
FA0E76E509A8DF67B36B20BCBD0F6E4406DF32BA     100493
FAEFB399B9FFEBA156D31E2A0DE4195793300343       98052
FBDD32ED13D27E4102621E1067FDF3634F33B2C3       50727
FBFFF74687F608887E277068ED0390BD04CCF506        98977
FEDDBA02158D0425E5895439663C0481CA3911E6       94850

Get rid of Gumblar just now:

Step 1. If you want to get rid of all known malware onto your computer besides Gumblar and to be sure that adware, spyware, trojans and viruses aren't able to overwhelm your defences as it happened to a lot of users who were infected by Gumblar that's True Sword special for your case. Download True Sword just now for best defense for your PC.
Step 2. Easy and fast solution created directly for the successful fight with Gumblar and successful Gumblar removal – download Gumblar Fast Heal here.

Don't forget – if your problems connected with Gumblar backdoor virus don't disappear, we'll return your money.