Suspicious.MH690
Suspicious.MH690 is a detection process for new malware threats without utilizing your antivirus program’s usual signatures. The method’s unique objective is to identify harmful software that attempts to conceal themselves from security programs by mutation technique. Encrypting Suspicious.MH690 is intentional with developers hoping to complicate threat analysis. Target computer’s antivirus application will be with the applied method.
Suspicious.MH690 attempts to elude firewall programs with Background Intelligent Transfer Service to download more threats from a remote location. When using BITS, dangerous files can transport from attackers computer towards target system without firewall assessment. Remote attacker can freely drop executable files necessary for remote unauthorized connection and manipulation of victim’s computer.
Damage Level: Medium
Threat Assessment By: Symantec
Systems Affected: Windows 9x, 2000, XP, Vista, Windows 7
How to Remove Suspicious.MH690:
FIRST AID TO STOP Suspicious.MH690:
When Suspicious.MH690 virus infects a computer, it will modify system settings and inject itself to legitimate Windows files. System Restore is the tool-to-go-to in bringing back clean files and restoring earlier configuration. If you have saved previous restore point, please restore Windows to an earlier date.
MANUAL REMOVAL OF Suspicious.MH690:
1. If an anti-virus program is present, update the definition file.
2. Reboot Windows in Safe Mode
- After turning on the power, press F8 on the keyboard.
- From the menu, select Safe Mode.
3. Run a full system scan and clean/delete all infected file(s).
4. Restart the computer.
ADDITIONAL TOOLS AND PROGRAMS:
Scan with Norton Power Eraser:
A free removal tool from Norton Antivirus was developed to remove virus and unfamiliar threats without using the traditional AV signatures. Download the tool and start scanning with Norton Power Eraser.
Technical Details and Additional Information:
Other functionalities of this Virus:
- Suspicious.MH690 will request and download files from Internet location.
- The virus registers Browser Helper Object and utilized Internet browser for illegal activities.
- When system settings are modified, overall security performance will suffer from negative impact. This includes system slow down, corrupted files and instability of operating system.
Tech0utsider
Dec 19, 2008 @ 23:36:52
FP associated with Totalidea Software; specifically TweakVI with aggressive heuristics in NAV/NIS09.
Joanna
Jan 15, 2009 @ 04:55:24
How do I remove MH690. I have Norton and when I run a scan it says it can’t find the file it is attached to. Thanks for your help!
george
Jan 17, 2009 @ 00:33:06
The same thing happened to me, Norton can’t find the file as well.
Bob
Jan 20, 2009 @ 02:09:09
I got the same thing, but what does the file do? I mean I know its a hacker’s open door, but how in the first place do you open it, and How can you close it? I had 4 and somehow got rid of 1 but I don’t know what I did. Any help would be appreciated.
Thanks.
desqview
Feb 21, 2009 @ 16:37:47
Set Norton to quarantine and delete, make sure you get rid of system restore information, it’s mostly there also.
LPortillo
May 13, 2009 @ 20:09:41
I got the same Suspicious.MH690, I called Symantec for help. they told me they will charge me $130 extra to remove it, (After paying $60 for the 360 Virus projection program) So what about if I get another “threat” next week and the next week? That could be a great way of income for Symantec?
One thing for sure I am sick of Symantec and their pranks. I am getting a new Anti Virus suit.
Shinobi
May 15, 2009 @ 17:37:41
My Norton 360 says it cannot remove Packed.Generic.218 and customer service says it needs $100 to remove it. They are crazy. Also, Norton says its a high level threat yet all research I’ve done says its a low level threat. What is Norton trying to pull? Does anyone know how to remove this threat without paying? Help!
Pat Kittle
Jul 06, 2009 @ 04:12:43
I too was told by Norton it would remove MH690 if I forked over a 3-digit figure, and there would be no guarantee the problem would not return.
I was furthere informed there are “very intelligent people” who create these viruses (presumably justifying Norton’s outrageous protection racket).
When I told Norton they should warn people upfront about their scam, they merely repeated their terms, and added that the blocked threat could morph into something far more dangerous at any time.
Whoever is responsible for this scam should share Bernie Madoff’s cell with him for the next 150 years. Seriously!
Tyler Deacon
Jul 18, 2009 @ 17:53:44
MH690 is suppose to affect logging into Windows. Basically you log in & it will log you right back out just as quick. The only way to get rid of it is to reinstall Windows. Safe Mode, Safe Mode with Networking, Last Known Good Configuration, etc. I believe it affects WinLogOn.
Jan
Jan 09, 2010 @ 14:07:41
Okay guys if SuspiciousMH690.A Infects your SVCHOST.exe i got 1 word to you your dead like me… go ahead and delete SVCHOST.exe from system32 but remmber some windows may make an big trouble so first put it in winrar from system32 and delete it put winrar in your documents done go to Task manager click Process Click process from all users and scroll down you will see SVCHOST end the process reboot pc and that all nice day =)
Kent Kirkland
Mar 03, 2011 @ 22:00:24
Let me tell you how I got rid of this problem once and for all. I used to folk over hundreds each year for a tech to remove viruses from my business computer. Haven’t had to have a computer technician remove any viruses for the past year. I bought a new computer last year, loaded up Ubuntu Linux for free, and use Open Office for all of my office applications. (You can save as a Work file, etc.) Works great, the clients see nothing different, and I have not had a virus on my LInux machine the whole time! Give it a try. You can download it for free, install it to run side by side with the Windows crap, and try it. I love it and will not return to Windows.