[Abovne1]

I just recently posted my issue and hijack this file. I've been reading through alot of recent posts, and many of them are related to the Virtumonde, Vundo, Ezula viruses/malware. This is very troubling as it is extremely difficult to get rid of these viruses/malware. Is anyone in the larger corporate antivirus program world such as Symantec, Trend Micro, or McAfee being notified of this growing threat. What is really troubling about these viruses/malware is it has behavior I have never seen with any other virus. They actually launch within Safe Mode, and they place very legitimate looking icons called "Live Safety Center and Online Security Center" on your desktop. They have the look of the standard Windows security icons (red and green shields). In addition, this virus/malware pops up information windows (not pop-ups) from the lower right hand corner of the desktop (the task area). The messages are with yellow background just like the ones that Microsoft uses to pop up and tell you that you have security updates to download. However, these popups actually tell you that you are infected with a virus (differing named viruses, not Virtumonde or Vundo). I've avoided clicking on any of these but I can easily see how someone not knowledgeable would click on these items to further have their system infected. What's most troubling is that none of the major anti-virus companies have removal tools or even good information on how to fully remove these viruses.

I have helped remove spyware and viruses for many of my friends, but I've never seen anything like this. For a virus to actually launch in Safe Mode is something I've never seen. And by having it do so, it makes it almost impossible to remove by using just standard anti-spyware tools and software.

I could see this growing to become a major issue with systems across the globe. I thought I'd post this note to give some details and background about the behavior of these viruses/malware so others will know what to look for.

Thanks,

Abovne1