Virtumundo/ Vundo

Discussion in 'ESET Smart Security v3 Beta Forum' started by Sjoeii, Apr 9, 2007.

Thread Status:
Not open for further replies.
  1. Sjoeii

    Sjoeii Registered Member

    Joined:
    Aug 26, 2006
    Posts:
    1,240
    Location:
    52?18'51.59"N + 4?56'32.13"O
    ESS isn't detecting the Vundo trojan.
    I thuoght everything was fine. But when I wanted to run a scan with Superantispyware it began to run like crazy. I was full with this ugly malware.

    ESS didn't do or warn me for anything. Even after running a scan it didn't find a thing.!!!!!!o_O
     
  2. cupez80

    cupez80 Registered Member

    Joined:
    Jun 28, 2005
    Posts:
    605
    Location:
    Surabaya Indonesia
    does it detected on nod32 ? if not then its not about ess but signature :D
     
  3. Sjoeii

    Sjoeii Registered Member

    Joined:
    Aug 26, 2006
    Posts:
    1,240
    Location:
    52?18'51.59"N + 4?56'32.13"O
    Just working with ESS. Aftre the latest update it did find the malware. It says it is detecting and deleting, but it is not deleting.

    But good thing it is detecting it.
    Now just figuring out how to get rid of it
     
  4. cupez80

    cupez80 Registered Member

    Joined:
    Jun 28, 2005
    Posts:
    605
    Location:
    Surabaya Indonesia
    AFAIK you need special tool to deal with virtumundo
     
  5. Sjoeii

    Sjoeii Registered Member

    Joined:
    Aug 26, 2006
    Posts:
    1,240
    Location:
    52?18'51.59"N + 4?56'32.13"O
    I know.
    tried several. All say there is nothing. ESS is making me crazy with pop ups.
     
  6. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    ESS keeps detecting the payload downloaded by a Virtumonde dll injected in a running process. The problem with detection is not a problem of ESS. Please drop an email to support[at]eset.com along with a link to this thread.
     
  7. Sjoeii

    Sjoeii Registered Member

    Joined:
    Aug 26, 2006
    Posts:
    1,240
    Location:
    52?18'51.59"N + 4?56'32.13"O
    Thanx

    Allready done.
    In the meantime I'm running several fixes
     
  8. Sjoeii

    Sjoeii Registered Member

    Joined:
    Aug 26, 2006
    Posts:
    1,240
    Location:
    52?18'51.59"N + 4?56'32.13"O
    As I can see it is fixed.
    It is a shame ESS couldn't detect and delete.
     
  9. Longboard

    Longboard Registered Member

    Joined:
    Oct 2, 2004
    Posts:
    3,187
    Location:
    Sydney, Australia
    @Sjoeii

    lol, where are you going: just 2 weeks ago when you were testing NAV/NIS you got loaded up as well.

    Maybe Send your favourite web pages to all the antimalware vendors would you and to the hostfile operators as well.

    ;)
     
  10. Sjoeii

    Sjoeii Registered Member

    Joined:
    Aug 26, 2006
    Posts:
    1,240
    Location:
    52?18'51.59"N + 4?56'32.13"O
    haha
    Well I'm affraid it is the same one.
    I thuoght it was gone
     
Thread Status:
Not open for further replies.