Posted 29 June 2008 - 03:13 PM
I have an infection on my Pc. I have tried various actions to resolve it unsuccessfully, but based on what has been found by AdAware and AVG, it is a Vundo or Virtumonde infection.
The problem is on my other laptop, and the original symptoms were that I was getting numerous unwanted popups about virus's and directing me to a variety of websites I had never seen before (e.g. dating, filmon.com, cellldorado.com and antispywaremaster.com).
I was also getting a warning from the Microsoft Security Centre that Automatic Updates is switched off. However, when I go to System/Automatic Updates, the automatic updates option is switched ON. I am unable to change the setting in a way which makes any difference to the Windows Security Centre, so I am not sure which one is telling me the truth.
I recognised that I had an infection, so did a Virus scan with AVG V8.0.101 and an Ad-Aware V18.104.22.168 which between them found about 10-15 instances of Vundo which I removed using the automated tools.
Even after the clean-up, the problems persist, so I have repeatedly run the scans again and Ad-Aware repeatedly finds Virtumonde infection in my registy. I delete using Ad-Aware, or manually, but within minutes, it has reappeared in the exact same place as before:
Family Id: 763 Name: Virtumonde Category: Malware TAI:10
Item Id: 300049900 Value: Root: HKU Path: S-1-5-21-1801674531-1547161642-839522115-1004\software\microsoft\contim).
Please could you provide me assistance with removing this annoying infection, itis driving me crazy.
As mentioned, the problem is on my other Pc, but it is still connected to this one. Please advise me if I am also putting this machine at risk.
Here is my system Info
Number of processors: 1
Processor type: AMD Athlon 64 Processor 3200+
Memory Available: 52%
OS: Microsoft Windows XP Service Pack 2 (Build 2600)