Page 2 of 2 FirstFirst 12
Results 11 to 13 of 13

Thread: Virtumondo strikes again!

  1. #11
    Junior Member
    Join Date
    Jun 2008
    Posts
    7

    Default

    Hi,

    Thanks for that - ComboFix removed. Ran the Malwarebytes, and 2 probs were found. Maybe nearly there!! I removed, and this log appeared:

    Malwarebytes' Anti-Malware 1.18
    Database version: 883

    22:04:52 23/06/2008
    mbam-log-6-23-2008 (22-04-52).txt

    Scan type: Full Scan (C:\|)
    Objects scanned: 123635
    Time elapsed: 1 hour(s), 9 minute(s), 29 second(s)

    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 1
    Registry Values Infected: 0
    Registry Data Items Infected: 0
    Folders Infected: 0
    Files Infected: 1

    Memory Processes Infected:
    (No malicious items detected)

    Memory Modules Infected:
    (No malicious items detected)

    Registry Keys Infected:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> Quarantined and deleted successfully.

    Registry Values Infected:
    (No malicious items detected)

    Registry Data Items Infected:
    (No malicious items detected)

    Folders Infected:
    (No malicious items detected)

    Files Infected:
    C:\WINDOWS\system32\clkcnt.txt (Trojan.Vundo) -> Quarantined and deleted successfully.

  2. #12
    In Memoriam -Always in our heart pskelley's Avatar
    Join Date
    Oct 2005
    Location
    Clearwater, Florida
    Posts
    20,252

    Default

    Thanks for returning your information, MBAM seems to find those two in any scan once Vundo has been removed, notice thie items:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan <<< registry trace
    C:\WINDOWS\system32\clkcnt.txt <<< leftover .txt file

    You should be good to go, we can run additional scans, but malware tries to mess up your resident antivirus program. I suggest you update Symantec and run a system scan to make sure all is functioning as it should. If you have issues with the program, discuss that with:
    http://www.symantec.com/enterprise/support/index.jsp
    If any malware issue come up that Symantec cannot deal with, post that information for me. I'll leave your topic open for a few days in case you need it.

    Some good information for you:
    http://users.telenet.be/bluepatchy/m...wcomputer.html
    http://www.microsoft.com/windowsxp/u...s/mcgill1.mspx

    Here is some great information from experts in this field that will help you stay clean and safe online.
    http://users.telenet.be/bluepatchy/m...revention.html
    http://forums.spybot.info/showthread.php?t=279
    http://russelltexas.com/malware/allclear.htm
    http://forum.malwareremoval.com/viewtopic.php?t=14
    http://www.bleepingcomputer.com/forums/topict2520.html
    http://cybercoyote.org/security/not-admin.shtml

    http://www.malwarecomplaints.info/

    Thanks...Phil
    Safer Networking Forums
    http://www.spybot.info/en/donate/index.html
    If you are reading this information...thank a teacher,
    If you are reading it in English...thank a soldier.
    MS-MVP Consumer Security 2007-08-09
    Proud Member ASAP
    UNITE Member 2006

  3. #13
    Junior Member
    Join Date
    Jun 2008
    Posts
    7

    Default

    Hi Phil,

    Thanks so much for your help. I'll run the scan and fingers crossed!!

    Much apprec!
    Mike

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •