Infected with VX2 Malware and Data Miner

Discussion in 'malware problems & news' started by horn, Jul 16, 2007.

Thread Status:
Not open for further replies.
  1. horn

    horn Registered Member

    Joined:
    Feb 25, 2006
    Posts:
    97
    After install of Ad-Aware 2007 Pro and scan, utilty report I am infected with VX2 Malware and Data Miner, showing this regarding a/m malware:
    Infections Found
    ===========================
    Family Id: 776 Name: VX2 Category: Malware TAI:10
    Item Id: 300016485 Value: Root: HKU Path: S-1-5-19_Classes\\interface\{59ebb576-ceb0-42fa-9917-da6254a275ad}
    Item Id: 300016485 Value: Root: HKU Path: S-1-5-20_Classes\\interface\{59ebb576-ceb0-42fa-9917-da6254a275ad}
    Family Id: 1106 Name: WurldMedia Category: DataMiner TAI:9
    Item Id: 300025356 Value: Root: HKU Path: S-1-5-19_Classes\\interface\{67972704-3546-4e3d-ab46-e39dbae06123}
    Item Id: 300025356 Value: Root: HKU Path: S-1-5-20_Classes\\interface\{67972704-3546-4e3d-ab46-e39dbae06123}
    Ad-Aware clean all this registry entries, and after re-scan all was clean.
    After re-boot and new scan the same identical malware appears again.
    Dloaded VX2 remover and try with this utility, but besides of the report that my machine is clean after running this tool, Ad-Aware 2007 found VX2 and his companion again.
    No one of installed Anti Virus,Anty Spyware and other security apps detect this infection- only Ad-Aware 2007 Pro and this is really strange- I have SpyBot,Spyware Remover, Lavasot Ad-Aware 1.06 and bunch of others, but repeat only Ad-Aware 2007 Pro is detecting this infection.
    Please let me know if this can be False-Positive or bug in Ad-Aware 2007 Pro.
    In contrary please help me to clean my machine.
    Try to locate these entries in my Registry befor Ad-Aware 2007 Pro clean them , but they are invisible.
    Run also "sargui" apps which can detect hidden files and registry strings, but again those strings found from Ad-Aware was not detected.
     
  2. Texcritter

    Texcritter Registered Member

    Joined:
    May 6, 2005
    Posts:
    1,985
    Location:
    Teesside, North East England
  3. horn

    horn Registered Member

    Joined:
    Feb 25, 2006
    Posts:
    97
  4. Texcritter

    Texcritter Registered Member

    Joined:
    May 6, 2005
    Posts:
    1,985
    Location:
    Teesside, North East England
    Hi

    First of all I am not familiar with removing malware, I was just giving you a couple of sites that had a description of wurldmedia and their associated files.
    I would do a search of my computer to see if I had any of the files they are referring to.
     
  5. horn

    horn Registered Member

    Joined:
    Feb 25, 2006
    Posts:
    97
    As already suspected, it's False/Positive.:mad:
     
Loading...
Thread Status:
Not open for further replies.