Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Win32.virtumonde.gen


  • Please log in to reply
4 replies to this topic

#1 mYchelle

mYchelle

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:08:21 AM

Posted 21 March 2008 - 11:17 AM

i have an updated kaspersky anti-virus and it keeps saying my pc is infected with the virtumonde.gen virus..

I deleted it and all but sometimes, it comes back..

I tried to look for an anti-virus online but all i see are logs and hijackthis that seems to be on a case-by-case basis..

I believe i got this from downloading a keygen for photoshop..

so far, what i did was empty the temp folder because that's where it is..

please tell me where to start so i can delete this permanently..

thanks a lot!

BC AdBot (Login to Remove)

 


#2 Master5270

Master5270

  • Members
  • 131 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Where am I?
  • Local time:07:21 PM

Posted 21 March 2008 - 03:07 PM

Hi, I am Master5270, I will be trying to assist you in your problem.
First, Follow the instructions in How to Remove WinFixer / Virtumonde / Msevents / Trojan.vundo

Next, Download and scan with SUPERAntiSpyware

* Double-click SUPERAntiSpyware.exe and use the default settings for installation.
* An icon will be created on your desktop. Double-click that icon to launch the program.
* If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download and unzip them from here.)
* When done, select "Scan for Harmful Software".
* There are three scanning options. Choose "Perform Complete Scan" and click "Next".
* When done, a Scan Summary will appear with potentially harmful items that were detected. Click "OK".
* Make sure they all have a checkmark next to them and click "Next".
* A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
* Click Preferences and then click the statistics/logs tab.
* Click the dated log and press View log. A text file will appear so you can see the results.
* Select close to exit the program.
* Scan in SAFE MODE

If the problem still exists,
First, use the Preparation Guide before posting a HJT log, follow all the instructions.
Second, Post a HJT log in this Forum, the HJT team is busy, so it will take up to 5 days for a response.
If you haven't had reply in 5 days, post your topic URL in this topic.

#3 mYchelle

mYchelle
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:08:21 AM

Posted 21 March 2008 - 11:14 PM

hi Master5270,

thanks for your help! i did everything you told me to and so far, i don't have the alerts anymore..

the one that helped is the superantispyware. The first two downloads vundo and the other one wasn't able to detect it.

i'll message again should the same problem arise.

Thanks so much!

#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,595 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:21 PM

Posted 22 March 2008 - 07:30 AM

I believe i got this from downloading a keygen for photoshop

Not only is the practice of using crack or keygen tools a security risk, it is considered illegal activity and a violation of our BC Discussion/Message Boards Rules.

No subject matter will be allowed whose purpose is to defeat existing copyright or security measures. If a user persists and/or the activity is obviously illegal the staff reserves the right to remove such content and/or ban the user. This would also mean encouraging the use or continued use of pirated software is not permitted, and subject to the same consequences.


If you use those kind of programs, be forewarned that some of the worst types of malware infections can be contracted and spread by visiting crack, keygen and pirated software sites. Those who attempt to get software for free can end up with a computer system so badly damaged that recovery is not possible and it cannot be repaired. When that happens there is nothing you can do besides reformatting and reinstalling Windows.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#5 Master5270

Master5270

  • Members
  • 131 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Where am I?
  • Local time:07:21 PM

Posted 22 March 2008 - 03:35 PM

Thanks for the extra info Quietman




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users