Vitumonde.dll infection

  • Thread starter Thread starter mayfriday
  • Start date Start date
M

mayfriday

Running XP and the scan revealed the above infection and it cannot be clean
by the scanner. Is there a way we can get rid of this infection manually.
 
Run a /thorough/ check for hijackware, including posting your hijackthis log
to an appropriate forum.

Checking for/Help with Hijackware
http://aumha.org/a/parasite.htm
http://aumha.org/a/quickfix.htm
http://aumha.net/viewtopic.php?t=5878
http://wiki.castlecops.com/Malware_Removal_and_Prevention:_Introduction
http://mvps.org/winhelp2002/unwanted.htm
http://inetexplorer.mvps.org/data/prevention.htm
http://inetexplorer.mvps.org/tshoot.html
http://www.mvps.org/sramesh2k/Malware_Defence.htm
http://defendingyourmachine2.blogspot.com/
http://www.elephantboycomputers.com/page2.html#Removing_Malware

When all else fails, HijackThis v2.0.2
(http://aumha.org/downloads/hijackthis.exe) is the preferred tool to use (in
conjunction with some other utilities). HijackThis will NOT fix anything on
its own, but it will help you to both identify and remove any
hijackware/spyware with assistance from an expert. **Post your log to
http://spywarehammer.com/simplemachinesforum/index.php?board=10.0,
http://forums.spybot.info/forumdisplay.php?f=22,
http://aumha.net/viewforum.php?f=30, or another appropriate forum for review
by an expert in such matters, not here.**

If the procedures look too complex - and there is no shame in admitting this
isn't your cup of tea - take the machine to a local, reputable and
independent (i.e., not BigBoxStoreUSA or Geek Squad) computer repair shop.
 
Use F-Secure's Virtumonde Repair Tool:

"F-Vmonde tool detects and deactivates Virtumonde from
Windows XP/2003 systems. Virtumonde is adware that
serves pop-up advertisements. It uses special techniques
to avoid removal, which are circumvented with this tool."

F-Vmonde:
Main page: http://www.f-secure.com/security_center/malware_removal_tools.html
Download: http://www.f-secure.com/tools/f-vmonde.zip
Download: http://www.f-secure.com/tools/f-vmonde.exe
Readme: http://www.f-secure.com/tools/f-vmonde.txt


ju.c
 
Try these 2 Programs. Scan in Safe Mode if necessary.


http://www.spybot.info/en/index.html

Spybot Search & Destroy 1.6 is a very good, FREE Anti-Spyware Program.
Download, install, update, and immunize your System with it.
Then SCAN with it.
Update it, and scan your System once a fortnight.

http://www.malwarebytes.org/mbam.php

Malwarebytes is as the name says, a Malware Remover!
For the Free version scroll down their page to either download from
Download.com, or Major Geeks.com

Download, install, and update.

Important re: Safe Mode
If you happen to find a problem that you can’t uninstall / delete, reboot
the computer, and go into Safe Mode.
To get into Safe mode, tap F8 right at Power On / Startup, and use UP arrow
key to get to Safe Mode from list of options, then hit ENTER.
RESCAN your computer with your Anti-Virus, Malwarebytes and Spybot S & D
while in Safe Mode.
 
Many thanks for all the responses. I have downloaded Malwarebyte and Anti
malware as suggested and it had remove the Vitumonde.dll. A scan with Spybot
1.6 does not reveal this trojan which it was unable to clean in the first
place.
 
Back
Top