Help getting rid of Virtumondo

[Guest]

I have Windows XP and have ran MS Antispyware that has detected Virtumondo
adware in my registry files. I have tried to use the removal operation of
Antispyware but it is still there. Can anyone help me get rid of this short
of crashing my computer? Thank you for any help that you can give me.

 

[Guest]

Subject: Virtumonde.B
From: "Dave Wright" Sent: 8/23/2005 6:35:49 AM
Genetal forum

Symantec has a new Vundo remover:
http://securityresponse.symantec.com/avcenter/venc/data/trojan.vundo.removal.tool.html


"Please download VundoFix.exe to your desktop. Here's a link:
http://www.atribune.org/downloads/VundoFix.exe

Good luck

Engel

 

[Randy Knobloch]

I have Windows XP and have ran MS Antispyware that has detected Virtumondo
adware in my registry files. I have tried to use the removal operation of
Antispyware but it is still there. Can anyone help me get rid of this short
of crashing my computer? Thank you for any help that you can give me.

Try this tool, it has helped some;
http://securityresponse.symantec.com/avcenter/venc/data/trojan.vundo.removal.tool.html

Silj

--
siljaline

MS - MVP Windows (IE/OE) & Security, AH-VSOP
_________________________________________
Security Tools Updates
http://aumha.net/viewforum.php?f=31

Reply to group, as return address
is invalid that we may all benefit.

 

[Dave M]

Good catch, Silj and Engle, on the Symantec Virtumondo remover. It just got
updated this month to catch some of the new variants, so Kitty, we'd really like
to hear back from you on how you made out using it.

 

[Guest]

hello this is dave here, just saw your post on the virtumonde
spyware........wow what a nasty one that was. it took me a couple of weeks to
fianlly get rid of it. ms antispyware for some reason does not delete because
it is written into the registry.......its useless for virtumonde except for
findint it and letting you know you have it.......i FINALLY!!!!!!!! got rid
of it using a combination of tools.......hijack this, spysweeper,(which is
very good) and cleanup/ please go to the webpage geekstogo.com and post your
problem and someone will walk you through the prosess of getting rid of
it........you will be assigned 1 person to help you.....they worked wonders
for my fight.......good luck.......dave (e-mail address removed)

 

[Guest]

Winfixer is indeed the worst pain I've ever experienced. Spent hours on it.

Parenthetically, the Symantec tools, FixVundo.exe and FxVMonde.exe did not
remove it (downloaded in late December, 05).

I was lucky though that I finally found this page while searching from a
friend's computer:
http://www.bleepingcomputer.com/for...janVundoB-Search42com-MSevents-tx18610-0.html

In my case, running virtumundobegone.exe (see Removal step 2) in safe mode
got rid of it, and I did not have to work through the rest of the steps.

One quirk. Winfixer prevented explorer.exe from running in safe mode, so I
could not double click the .exe file to run it. Here's a workaround: I had
downloaded the tools referenced in the above page to a floppy and was able to
copy them from the floppy to a folder I created under C:\ named Winfixer, so
the path to the file was C:\Winfixer\virtumundobegone.exe. In safe mode,
press and hold ctrl and alt, then tap del. That will bring up Task Manager
(for the gurus here, if I started explorer.exe this way, it would immediately
crash). In Task Manger, click File, then New Task. Then Browse to
C:\Winfixer\virtumundobegone.exe and click OK.

It took only about 2 seconds to "fix" Winfixer. I then booted to normal
mode and have been fine since. After the reboot, you'll find a text file on
the desktop that shows a log of what steps virtumundobegone performed.