virtumonde / HKT

  • Thread starter Thread starter cxm
  • Start date Start date
C

cxm

I have been having a running battle with virtumonde. Spybot picked it up
and said that it had deleted it, but it came back soon after. I have run
avast (picks up nothing), livecare scanner (picks up
Trojan:Win32/Vundo.gen!Q), says it cannot delete all files), ad-aware
(picks up nothing). I have just tried running all these things again is
safe mode and the computer seems to be running better, and spybot no
longer picks up virtumonde.

I have attached a hijackthis file. Could somebody who understands this
please have a quick look and tell me if there is anything in it to
suggest that the problem is still there? And if so how to get rid of the
thing. I have seen posts where people say that they only way to get rid
of it is to reformat and reinstall, but I desparately want to avoid that
as I am really not very technical

Many thanks
Colin
(vista home premium. HP laptop)


+-------------------------------------------------------------------+
|Filename: hijackthis.log |
|Download: http://vista64.net/forums/attachment.php?attachmentid=4837|
+-------------------------------------------------------------------+

--
cxm
 
cxm wrote:

>
> I have been having a running battle with virtumonde. Spybot picked it up
> and said that it had deleted it, but it came back soon after. I have run
> avast (picks up nothing), livecare scanner (picks up
> Trojan:Win32/Vundo.gen!Q), says it cannot delete all files), ad-aware
> (picks up nothing). I have just tried running all these things again is
> safe mode and the computer seems to be running better, and spybot no
> longer picks up virtumonde.
>
> I have attached a hijackthis file.

(snip)

We don't analyze HijackThis logs here in the MS newsgroups. Here is a list
of specialty forums where you can get guided help, and that is what you
need. Choose one, register, read its posting FAQ, and post there (not
here).

http://aumha.net/ - Click on the HijackThis forum. Read the announcement and
the stickies *first*.
http://www.atribune.org/forums/index.php?showforum=9
http://aumha.net/viewforum.php?f=30
http://www.bleepingcomputer.com/forums/forum22.html
http://castlecops.com/forum67.html
http://www.dslreports.com/forum/cleanup
http://www.cybertechhelp.com/forums/forumdisplay.php?f=25
http://www.geekstogo.com/forum/Malware_Rem...o_Here-f37.html
http://gladiator-antivirus.com/forum/index.php?showforum=170
http://spywarewarrior.com/viewforum.php?f=5
http://forums.techguy.org/54-security/
http://forums.tomcoyote.org/

Malke
--
MS-MVP
Elephant Boy Computers - Don't Panic!
FAQ - http://www.elephantboycomputers.com/#FAQ
 
"Malke" wrote in message
news:egXf4n32IHA.4988@TK2MSFTNGP06.phx.gbl...

SNIPPED
> Malke
> --
> MS-MVP
> Elephant Boy Computers - Don't Panic!
> FAQ - http://www.elephantboycomputers.com/#FAQ
>

Malke,

Would you mind emailing me? I have something to ask off line and need your
advice. If not, I understand and thanks in advance.

You can use this address........remove the 0's (zeros)
not000any000mail000at000gmail000dot000com


--
All the best,
SG

Is your computer system ready for Vista?
https://winqual.microsoft.com/hcl/
Want to keep up with the latest news from MS?
http://news.google.com/nwshp?tab=wn&ned=us&topic=t
Just type in Microsoft
 
Back
Top