Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Virtumondo


  • Please log in to reply

#1
Canorro

Canorro

    Member

  • Member
  • PipPipPip
  • 130 posts
Ok so i knew i had a virus because my explorer.exe was appearing and dis-appearing then it terminate by its self so i scan with my other OS (ubunto) using avast Win32:Virtumonde-GN [AWR] appear i have virtumonde before but this one appear at hiberfil.sys i don't know if thats save to remove.Then in pagefile.sys i found win32:VB-EIJ.
After a while avast for Linux crash.Then i started win xp and scheduled a boot scan they seem pretty useful but..
So here are some bad news for us Avast user even after waiting a few hours for they boot scan in windows it didn't detected no even one thing nothing, Nada, zero viruses.

So what should i do about hiberfil.sys and pagefile.sys.Also pagefile is use as RAM so my memory could also be infected even though every time you turn of you PC the memory is deleted right.

Edited by Canorro, 07 April 2008 - 02:14 AM.

  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP