I've read Blackspear's sticky about virtumonde, but with that being said- I am having a terrible time with NOD32 missing these trojans. I'm running ver 2.70.39, and update daily. I have all the ThreatSense scanning options enabled. Once my system is infected, NOD32 sees the virus in memory, but it routinely fails to flag the initial dropper file. The most recent example I've come across is a 141K exe disguised as a rar file. 75% of the AV software @ the online AV engine aggregators identify the file as being infected. If this was a new re-pack of virtumonde, I could understand NOD32 not seeing it, but this file was first seen over two months ago. NOTE: I am NOT saying or implying that NOD32 is substandard for not identifying this file, nor am I saying that other AV software is better for *having* caught it. Rather, I'm just trying to understand why NOD32 doesn't seem to flag virtumonde droppers 'cause I am getting hammered by these darn things :-( Anyone's input is appreciated.