Virtumonde I think..

I have run all the steps and even ran VundoFix once..(It doesnt find anything anylonger)
But AVG keeps finding this one "Not-A-Virus.Adware.Virtumonde"

I will attach my Logs, I really dont see much performance loss, but Just knowing that I might have something is driving me nuts.

 

Hi friggin pissed!
Welcome to Major Geeks!

All things considered (no antivirus, no windows updates, no service packs), your computer is fairly clean. You have a Srchasst folder still under Windows which looks like a remnant of Search Assistant. You have an infected restore point, many old copies of Java and one browswer hijacker object we can get rid of.

In a moment I will ask you to fix these things, but I would like to simply mention that every point in your operating system for which one of the security updates was created, is a known vulnerability. It's a pleasure looking at a system as transparent as yours, but at what cost to yourself? AVG's antivirus program is the lowest resource hog I know of and I can recommend it. It's listed among several others in our thread "How to protect yourself from malware" which has a number of good tips.

And now, please do the following:

1) You need to uninstall the below:

Java(TM) 6 Update 2
Java(TM) SE Runtime Environment 6 Update 1
Java(TM) SE Runtime Environment 6


2) Reboot after uninstalling the above.

3) Install the current version of Sun Java from: Sun Java Runtime Environment You still have not done this.


4) Run HijackThis and select Do a system scan only. Select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

O2 - BHO: (no name) - {875A1348-7674-42aa-ADAC-B4F36A004A2D} - (no file)
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

After clicking Fix, exit HJT.

5) Now download The Avenger by Swandog46, and save it to your Desktop.

• Extract avenger.exe from the Zip file and save it to your desktop
• Run avenger.exe by double-clicking on it.
• Check the 'Input script manually' box.
• Click on the magnifying glass icon.
• Copy everything in the Quote box below, and paste it in the box that opens:

• Now click the 'Done' button.
• Click on the traffic light icon and OK the prompt.
• You will be prompted to restart, OK the prompt and your PC should reboot, if not, reboot it yourself.
• A log file from Avenger will be produced at C:\avenger.txt

Make sure you tell me how things are working now!


6) Please download ATF Cleaner by Atribune. This program does not require an installation. The executable actually runs the program.

7) Now run CCleaner.

8) Please post a fresh MGlogs.zip and let me know how things are running now? If everything else seems okay, you can set a new restore point by disabling / rebooting / re-enabling system restore. This will flush all your previous restore points including the infected one and set a clean one. (Further instructions for this can be found here:http://forums.majorgeeks.com/showthread.php?t=139313 under Step 4). If you run AVG Antispyware after this, that one bad restore point should be gone.

abri

 

What do you mean by Transparent?
Thanks for the Help it seemed to clean it all up.
Also I had begun downloading AVG Anti-Virus and completing the Malware Protection guide before I had even posted.

Well here is the Files

 

Hi friggin,

By transparent, I meant that when I looked at your first set of logs, there were no updates, no antivirus, no firewall, none of the millions of toolbars people like to keep, not that many programs, dvd players, remote controls, the usual hundred start-up items that come with Dell and Hp.

It just looked really nice to see that.

Your logs are clean. Please follow our final clean-up instructions in the box below where you will be asked to remove the MGTools, set a clean restore point, and view the How to protect yourself from malware thread:

abri