Hello to whom is reading this. I hope I am posting in the correct location, if not please forgive me. I seek aide in removing Virtumonde and I hope someone will be willing to help me. Spybot S&D finds three entry's of Virtumonde but fails to remove them.

(SBI $779C9C0D) Settings
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP

(SBI $FD08B4B7) Configuration file
C:\WINDOWS\system32\JPXGNqss.ini2

(SBI $2A2DCEAC) Configuration file
C:\WINDOWS\system32\JPXGNqss.ini

The side effects of Virtumonde on my system is repeated crashing and restarting of Windows Explorer until it ceases to function and does not restart on its own. I have found a small remedy that when right after Explorer crashes if I click on My Computer in my ObjectDock Docklet it restarts Explorer and seems to break Virtumondes connection to Explorer until I restart. Right after clicking on my My Computer docklet this error displays:

/idlist.:980:2508,
Windows cannot find '/idlist,:980:2508,'. Make sure you typed the name correctly, and then try again. To search for a file, click the Start button, and then click Search.

Any help I can get would be a blessing. I'm a noob when it comes to removing these things besides point clicks. Everything I've tried fails to remove it. P.S Explorer will crash even in safe mode. Many thanks to anyone who has read this and responds or tries to help.

Welcome to SaferNetworking Forums, Raven.
-
Consider posting in the Malware Removal (http://forums.spybot.info/forumdisplay.php?f=22) forum and having someone take a look at your system.

If you decide to have an experienced malware removal specialist assist you, please follow the procedure in this link to run scans and produce a HijackThis log: "BEFORE you POST"(READ this Procedure BEFORE Requesting Assistance) ( http://forums.spybot.info/showthread.php?t=288).
-
Take care.