Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Virtumonde Trojan Infection


  • Please log in to reply
1 reply to this topic

#1 bigyellocat

bigyellocat

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Central KY
  • Local time:09:59 PM

Posted 06 November 2007 - 12:11 AM

I have had this problem for about 2 weeks now. I am running Windows XP, on a compaq presario desktop model S6000Z. When computer starts up, I sign in, - toolbar at the bottom pops up, icons come up, and wallpaper appears. Then in a split second one by one they all disappear. They do this disappearing act for at least 6-7 times until they no longer appear anymore.
At this point I use the CONTROL-ALT-DELETE, in which the "Task Manager" window comes up, I push "New Task," then go to PROGRAMS, open it click on INTERNET EXPLORER. After this in about 5 seconds wallpaper, toolbar at the bottom & icons all appear again.
I then have to rush and push the INTERNET EXPLORER button to open it up.
When I ran my Spyware Doctor program it found a trojan. virtumonde, and it quarantined it. It also found a couple of adware programs and got rid of those as well.
I've also run my virus program as well which is Kaspersky, and it found again the same virus. Not sure why the thing is reappearing when I think I've captured it with one of these spyware programs.
If you have any suggestions, I am at a loss! I've tried the Vundu Fix & the VirtumundoBeGone and neither one of those worked.
HELP!!! :thumbsup:

Attached Files



BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 52,069 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:09:59 PM

Posted 06 November 2007 - 12:10 PM

Welcome to BC bigyellocat

Have you tried using System Restore or System Restore from a command prompt in "SAFE MODE" to return to a previous state before your problems began?

If that does not work, please know that some variants of vundo may not be detected by vundofix so the "Add More Files" option is another way of ridding this malware. These files need to be identified and posting a hijackthis log will enable an expert to advise you which files to add if you continue to have problems. If the infection remains after following the steps in the self-help guide, then you should post a hijackthis log.

Please read and follow all instructions in the pinned topic titled "Preparation Guide For Use Before Posting A Hijackthis Log". In step #9 there are instructions for downloading HijackThis and creating a log. (This is a self-extracting version which will automatically install HJT in the proper location.)

Important: Some variants of vundo malware will hide certain entries in a hijackthis log to prevent detection so you need to rename HijackThis before using it.
  • After installing HijackThis, open My Computer or Windows Explorer and navigate to the HijackThis Folder.
  • Inside the folder, right-click on the HijackThis.exe file and rename it Scanner.exe.
  • Double-click on Scanner.exe (which is still HijackThis) run a scan, save the logfile and copy/paste it into a new topic in the HijackThis Logs and Analysis Forum, NOT here, for assistance by the HJT Team Experts.
Give your topic, a relevant title and post your log along with a brief description of your problem, a summary of any anti-malware tools you have used and a summary of any steps that you have performed on your own. Please include the top portion of the HijackThis log that lists version information. An expert will analyze your log and reply with instructions advising you what to fix.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users