So last night while I was eating dinner my AV picked up a virus, it recommended rebooting to let it quarentine, which I did. After doing so, i found the virus was recurring.
To date I've run A full scan from my Symantec Corp edition/Ad Aware, first came up empty handed and the second showed 9 "Host Log" changes which brought up spam advertising (Which is consistent with what has been happening).
Unfortunately Adaware for some reason wouldn't quarantine or remove the files in question.
Did a safe mode boot, did the scans that I could again; didn't detect anything, came back and still there; so I was hoping someone might have a suggestion on where to go from here!
Let me know if you need the attach.txt as well;
Edit: Since it just came up, Symantec just grabbed something called "Bloodhound.Exploit.213" In my User\Local Settings\Temporary INternet Files\Content.IE5\F88etc folder.
And I normally use Google Chrome as a browser.
Second Edit: So after running Spyware search and destroy, it picked it up as Virtumonde, which it tried to remove after a reboot. It took it all out except a single registry entry which I assume is re-connecting/installing it. I'm not sure how to remove that, but if anyone has some advice that would be great!
Edited by pedal2000, 05 March 2009 - 12:37 PM.