Comments on: Vundo Shmundo http://blog.rsltech.com/2008/05/14/vundo-shmundo/ Well you're here. Might as well look around. Sat, 05 Mar 2011 22:45:11 +0000 hourly 1 http://wordpress.org/?v=3.1 By: Rich http://blog.rsltech.com/2008/05/14/vundo-shmundo/comment-page-1/#comment-11 Rich Wed, 01 Oct 2008 14:00:20 +0000 http://blog.rsltech.com/?p=5#comment-11 Now that some time has passed the major protection programs are finding vundo, but what I see in Symantec software is that it shows partially removed next to the findings and it does not claim to completely remove the infection. After this partial removal however the little vundo removal apps do not find any infection. Interesting Now that some time has passed the major protection programs are finding vundo, but what I see in Symantec software is that it shows partially removed next to the findings and it does not claim to completely remove the infection. After this partial removal however the little vundo removal apps do not find any infection.
Interesting

]]> By: VundoFixer http://blog.rsltech.com/2008/05/14/vundo-shmundo/comment-page-1/#comment-10 VundoFixer Tue, 22 Jul 2008 16:08:52 +0000 http://blog.rsltech.com/?p=5#comment-10 I needed to get a real vundo infection for testing purposes. It took me less than fifteen minutes of googling, downloading and installing a piece of software that contained embedded code of Trojan Vundo. It's no surprise McAfee VirusScan showed no signs of infection - yet errors started popping up, one of them being a software.php file which Windows was unable to open (that's natural - a don't have a Win32 PHP parser installed). Just curious what Vundo can make if it executes a php code?.. Also, the parasite quickly created a folder in Program files, settled in restore point, places autorun entries in the registry, etc. No wonder this is a hard to remove trojan. I needed to get a real vundo infection for testing purposes. It took me less than fifteen minutes of googling, downloading and installing a piece of software that contained embedded code of Trojan Vundo. It’s no surprise McAfee VirusScan showed no signs of infection – yet errors started popping up, one of them being a software.php file which Windows was unable to open (that’s natural – a don’t have a Win32 PHP parser installed). Just curious what Vundo can make if it executes a php code?.. Also, the parasite quickly created a folder in Program files, settled in restore point, places autorun entries in the registry, etc. No wonder this is a hard to remove trojan.

]]>