Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help, Virtumonde


  • This topic is locked This topic is locked
4 replies to this topic

#1 70nova

70nova

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:02 PM

Posted 14 May 2008 - 07:16 PM

help, got a virus, could not boot windows so did a re-install(repair) and still have this virus , spy bot finds it and says it is healed but re-scan and it is still there, also windows auto updates service is disable and will not start. Please see attached dss log

Attached Files



BC AdBot (Login to Remove)

 


#2 70nova

70nova
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:02 PM

Posted 14 May 2008 - 07:40 PM

also ran the combofix,exe, still lots of issues

Attached Files


Edited by 70nova, 14 May 2008 - 07:41 PM.


#3 70nova

70nova
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:02 PM

Posted 15 May 2008 - 05:28 PM

Merged topics. Title of this was: Emergency, Please Help, About to re-format drive, cant wait to remove virtumonde ~ OB

Hello, posted this yesterday, cant risk waiting 5 or more days to get this worked out

I run a Audio recording and production studio and my main recording pc is never online, a employee (who i may fire beacuse he knows better) went online with this machine, I had virus protection disabled beacuse it interferes with recording processes. ANyway, badly infected with viromonde, I am loosing big bucks with this machine down, I have all of my audio data on a second drive and backed up to a third. Only several software application on system drive. I cannot risk having this not completly cleaned and having problems in the middle of a session with a client.

I intend to reformat the drive and do a clean install of XP, is this gaurenteed to remove the virus from the system drive?

And how do I determine for sure it has not made it way into audio/data files on my other drives. AVG does not detect this , spybot does but cant fix. Please see log files [above] for more info.

Edited out link to topic this has now been merged to. ~ OB

Edited by Orange Blossom, 15 May 2008 - 10:49 PM.


#4 suebaby41

suebaby41

    W.A.M. (Women Against Malware)


  • Malware Response Team
  • 6,248 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:South Carolina, USA
  • Local time:08:02 PM

Posted 06 June 2008 - 05:09 PM

Welcome to the BleepingComputer Forums. Since it has been a few days, please post a new HijackThis log. Thank you for your patience.

If you have already posted this log at another forum or if you decide to seek help at another forum, please let us know. There is a shortage of helpers and taking the time of two volunteer helpers means that someone else may not be helped.

Please post your HijackThis log as a reply to this thread and not as an attachment. I am always leery of opening attachments so I always request that HijackThis logs are to be posted as a reply to the thread. I don't think that you are attaching anything scary but others may do so. Thanks.
You don't stop laughing when you get old; you get old when you stop laughing.
A Member of U-N-I-T-E (Unified Network of Instructors and Trained Eliminators)
Malware Removal University Masters Graduate

Posted Image
Join The Fight Against Malware
No reply within 5 days will result in your topic being closed. If you need more time, please let me know by posting in this topic so that your topic will not be closed.

#5 suebaby41

suebaby41

    W.A.M. (Women Against Malware)


  • Malware Response Team
  • 6,248 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:South Carolina, USA
  • Local time:08:02 PM

Posted 23 June 2008 - 01:59 PM

This subject is now closed. If you need this topic reopened, please contact a member of the HJT Team and we will reopen it for you. Include the address of this thread in your request. If you should have a new issue, please start a new topic. This applies only to the original topic starter. Everyone else please begin a New Topic.
You don't stop laughing when you get old; you get old when you stop laughing.
A Member of U-N-I-T-E (Unified Network of Instructors and Trained Eliminators)
Malware Removal University Masters Graduate

Posted Image
Join The Fight Against Malware
No reply within 5 days will result in your topic being closed. If you need more time, please let me know by posting in this topic so that your topic will not be closed.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users