Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


Virtumonde Infection

  • Please log in to reply
1 reply to this topic

#1 Fivepart


  • Members
  • 2 posts
  • Gender:Male
  • Location:Long Beach, NY
  • Local time:01:44 PM

Posted 02 December 2007 - 02:01 PM

I have used Trend Micro's Housecall, and Microsofts Windows Live Onecare to combat this malware, without success. After an allnight scan Onecare found Trojan:Win32/virtumonde.gen, Trojandropper:Win32/Fotomoto.B, Trojandownloader:Win32/Tiny.am & Trojan:Win32/conhook.D. Onecare reported it removed the files, however that was an overstatement. I am still getting popups in IE7. Can anyone help?

Thanks in advance

Attached Files

BC AdBot (Login to Remove)


#2 RichieUK


    Malware Assassin

  • Malware Response Team
  • 13,614 posts
  • Local time:07:44 PM

Posted 03 December 2007 - 09:14 AM

Welcome to the BleepingComputer HijackThis Logs and Analysis forum Fivepart
My name is Richie and i'll be helping you to fix your problems.

You've posted your log using Trend Micro HijackThis v2.0.0 (BETA) which is outdated,please remove/uninstall it.

Now download Trend Micro HijackThis 2.0.2 to your desktop:
Double click on HJTInstall.exe,it will prompt you to extract hijackthis.exe to C:\Program Files\Trend Micro\HijackThis.
When the install is complete,HijackThis will automatically launch.
When the license agreement appears,select "I Accept" and then click on the "Do a system scan only" button.
When the scan is complete,click on the "Save Log" button,then save it to your desktop.
Copy and paste the entire contents of that log into your next reply.

After posting the log you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised.
Doing so can result in system changes which may not show it the log you already posted.
Further, any modifications you make may cause confusion and could complicate any/the malware removal process.

Post all reports/logs directly into this topic,not as attachments,thanks.
Posted Image
Posted Image

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users