Search:

yes - thanks a lot for your help!

I've posted logs below. Looks clean?

Last time the virtumonde virus was found on my computer it wasn't this easy and there was quite a process to get rid of it.

Perhaps Spybot S&D was able to...

Hi - that took a while! I have posted the Kaspersky and HijackThis logs below:

_______________________

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:19:40 AM, on 7/10/2009...

Congratulations!: No immediate threats were found. (Status)



--- Spybot - Search & Destroy version: 1.6.2 (build: 20090126) ---

2009-01-26 blindman.exe (1.0.0.8)
2008-01-28 SDDelFile.exe...

How do I post a spybot report ? thanks.

I'm a day trader. So I use the computer for my trading, and for personal use. Is there are reason this is relevant to virus/malware protection?

I use if for my home office. Just me.

Yes, and also for business use. Why ?

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:54:40 AM, on 7/7/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
...

1Click DVD Copy Pro 2.2.2.4
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft...

Hi,
I have Virtumonde (again). I had it a year ago.

I have run Spybot Search and Destroy and it found Virtumonde. I used the remove button, but I don't think it has removed it. If I remember...

Hi,

I gave it a whirl - used firefox, outlook, installed a firewall (it's a win2000 machine so it didn't have one), and the free Avast antivirus scanner.

All is looking good except when...

Hello,

I followed the instructions, no error messages from either program.

I haven't dared to open internet explorer or firefox, so I can't tell whether it is all fixed yet. Should I try ?
...

Hi,

I did what you said, and ComboFix.exe gave me an error about this not being a valid registry entry in a dialog warning box - several times, but it continuted on and produced the log, then...

Hello,

I cleaned up using ATF, and I've posted the updated combofix and HJT logs below. Thanks for looking them over and recommending what to do.

**********
ComboFix Log
**********
ComboFix...

Hello,
I've just cleaned the first machine in my network, and now I'm posting the HJT and Kaspersky log for the other machine in my network.

(I have completed the steps in the "Readme first"...

Hello! Thanks so much for your help previously. The other computer on my network likely has virtumonde viruses and malware, and I was told to open another thread. Can you please help me work this...

Hello - ok, I will start another thread for the other machine.

No other issues that I can see.

Thanks a lot.

:)

Hi,
I had another computer in my network that was also infected. I took it off the network as soon as I realized what had happened, to make sure no cross-contamination would occur between the...

Hi,
I deleted the files in that folder and emptied the recycle bin. I don't know how I can tell if there is anything else in my computer.

Do you recommend a particular Security Suite to...

Ok, that took a while :-)

I've attached the reports, completed in Normal mode.

**************
KASPERSKY REPORT
**************...

Hi Shaba,

Should I do this in Safe mode with networking on, or in Normal mode? Does it matter?

I've posted the results below - hopefully this will do it? I had to run it in Safe Mode again, does this matter, and will I have to eventually get combofix to run in Normal mode?

Thanks Shaba
...

Thanks... I had to run it in Safe Mode, but it worked :laugh:

I've posted results of the ComboFix.txt and HijackThis below:

***************************

ComboFix 08-05-15.3 - User 2008-05-17...

thanks - that worked. I've posted the logfile from combofix and hijack this - created in safe mode.

_________
ComboFix 08-05-15.3 - User 2008-05-17 12:48:00.4 - NTFSx86 MINIMAL
Microsoft...

ok - sorry, I forgot about your instructions on what to do if it takes longer than 20 minutes.

I stopped the process called sed.cfexe and it continued for a bit, then stopped when the process...

I ran it in safe mode, and this time it worked, however it said it needed to reboot the machine, which it did and when I logged back in a combofix window appeared which displayed a "Please Wait..."...

I downloaded combo fix, disabled all firewall, antivirus and spyware. Combofix would still not work. I found through trial and error that stopping the attrib.exe process allowed the combofix to...

Hello,
First off - thanks a million for helping out.

Spybot has found Virtumonde.dll on my computer and it was unable to remove three of the library files. In the description field it said to go...

Yes - I have the latest updates. I will post in Malware section and follow the instructions you provided - thanks!

Hello,
First off - thanks a million for helping out.

Spybot has found Virtumonde.dll on my computer and it was unable to remove three of the library files. In the description field it said to...