Home Forums Classifieds Blogs Today's Posts Search Social Groups



  
SIGN-UP
Notices

Glock Talk
Welcome To The Glock Talk Forums.

 
  
Reply
 
Thread Tools Display Modes
Old 12-27-2008, 09:31   #1
Dragline
Senior Member
 
Dragline's Avatar
 
Join Date: Nov 2003
Location: Coastal SC
Posts: 4,491
Can't eliminate virtumonde virus

My wife's notebook computer got a dose of the virtumonde virus or trojan.

Spybot was able to find and eliminate most of it. But two files still remain (see pic) and I don't seem to be able to delete them.

Spybot finds them every time and indicates they have been deleted but they keep coming back.
I went into regedit, found them, and attempted to delete them manually from there. Deletion apppears successful at first, but these two files reinstall themselves within minutes.

Any ideas of how they could be permanently deleted?

Tech Talk

This may produce a larger view of the pic.

http://img.photobucket.com/albums/v9...Viruspic01.jpg
__________________
Birds and Alligators

To view links or images in signatures your post count must be 10 or greater. You currently have 0 signatures.
Dragline is offline   Reply With Quote
Old 12-27-2008, 09:49   #2
StarfoxHowl
Senior Member
 
Join Date: Nov 2008
Location: The middle of Nowhere, Afghanistan.
Posts: 565
Back up all documents/settings on the laptop to an external disk drive, format and reinstall the operating system, applications and finally the data.
StarfoxHowl is offline   Reply With Quote
Old 12-27-2008, 10:12   #3
srhoades
Senior Member
 
srhoades's Avatar
 
Join Date: Jul 2000
Posts: 4,613
Quote:
Originally Posted by StarfoxHowl View Post
Back up all documents/settings on the laptop to an external disk drive, format and reinstall the operating system, applications and finally the data.

Or you could acutally fix the problem. Download malwarebytes from malwarebytes.org. Install it, if the updater fails during the install just run it again from the actual program.
srhoades is offline   Reply With Quote
Old 12-27-2008, 12:16   #4
Blitzer
Cool Cat
 
Blitzer's Avatar
 
Join Date: Jan 2004
Location: The communist's play ground of OHIO
Posts: 26,617
Send a message via AIM to Blitzer Send a message via Yahoo to Blitzer
Delete the registry keys with regedit and run the Microsoft malicious software removal tool or malwarebytes.org software.
__________________
It doesn't matter what the Joe on the street thinks, it is who pays the biggest bribes to the electoral college gets elected as President! :crying:
Blitzer is offline   Reply With Quote
Old 12-27-2008, 12:32   #5
Dragline
Senior Member
 
Dragline's Avatar
 
Join Date: Nov 2003
Location: Coastal SC
Posts: 4,491
Quote:
Originally Posted by srhoades View Post
Or you could acutally fix the problem.
Yeah, that was kinda my hope.
I'll try malwarebytes and if that doesn't do it maybe I'll try one or more of these from bleepingcomputer.

http://www.bleepingcomputer.com/malw...ndo-virtumonde

Thanks, I'll post later how I make out.
__________________
Birds and Alligators

To view links or images in signatures your post count must be 10 or greater. You currently have 0 signatures.
Dragline is offline   Reply With Quote
Old 12-27-2008, 12:48   #6
Neo31rex31
Registered User
 
Join Date: Dec 2008
Posts: 13
Send a message via AIM to Neo31rex31 Send a message via MSN to Neo31rex31
I had this on my PC before, got rid of it with "Hijack this" (if i remember correctly there were actually 6 registry keys associated with this) there is also fix you can download from [url]www.majorgeeks.com[/url]
__________________
"Democracy is two wolves and a lamb voting on what is for lunch. Liberty is a well armed lamb contesting the vote" Benjamin Franklin
"Those who would give up essential liberty to purchase a little temporary safety deserve neither liberty nor safety" Benjamin Franklin
Neo31rex31 is offline   Reply With Quote
Old 12-27-2008, 19:57   #7
Dragline
Senior Member
 
Dragline's Avatar
 
Join Date: Nov 2003
Location: Coastal SC
Posts: 4,491
Quote:
Originally Posted by srhoades View Post
Or you could acutally fix the problem. Download malwarebytes from malwarebytes.org. Install it, if the updater fails during the install just run it again from the actual program.
Well malwarebytes seemed to have worked!!
It found a bunch of stuff that spybot did not find, and those values found in my regedit search seem to be gone as well.
Hopefully this takes care of it for good.

Thanks so much for the info and the recommendation of this tool!
__________________
Birds and Alligators

To view links or images in signatures your post count must be 10 or greater. You currently have 0 signatures.
Dragline is offline   Reply With Quote

 
  
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump




All times are GMT -6. The time now is 10:34.




Homepage
FAQ
Forums
Calendar
Advertise
Gallery
GT Wiki
GT Blogs
Social Groups
Classifieds


Users Currently Online: 1,210
349 Members
861 Guests

Most users ever online: 2,672
Aug 11, 2014 at 2:31