I am wrestling with a Trojan infection called Virtumonde and have not been able to find a way to delete it. I have tried several anti spyware programs and none have done the job. I am beginning to believe that reinstalling the operating system is the only way. Anyone have a suggestion?
Thanks, Ken. I have tried Spyware Doctor and SpyHunter, Neither have solved the problem as well as searched this listing. This infestation is severe. When I execute the removal, the system reboots without removing anything. My friend who owns this particular computer, ran it unprotected for an extensive period of time. I am beginning to believe that the only solution is to wipe everything out and re-establish a clean operating system with both a firewall and anti-malware programs installed. I have cleaned over 300 infestations until I tried to attack Virtumonde. This has been very frustrating.
Not yet. The list of infected files is very large and I am always cautious about manually handling register items.
Symantec has been finding and removing this adware since 2003. It never hurts to pay 50 bucks for Symantec. Security. I use it. I am an IT pro. They actually may even have a removal tool. Here you go yo! http://securityresponse.symantec.com/avcenter/FxVMonde.exe
I also had this virus. I had the Dell people help me, thought we got rid of it, then still had problems. I finally used AVG anti-spyware and spy doctor and it got rid of it. AVG has a 30 day trail period. To purchase its 39.95 for 2 yrs. Ken: Know anything about them? I haven't purchased yet, my trial period just ended today.
The Symantec FxVmonde.exe tool didn't find Virtumnde. After running FxVmonde, I re-ran SpywareDoctor, which claimed 78 Vmonde infections. I am beginning to think reinstalling the operating system is the way to go, but first I am waiting for Symantec Ghost software to arrive so I can copy the image of personal data and program files. I have AVG installed on my computers and well as the one that I have been trying to remove malware infections. I am very pleased with AVG so far.
You may have a combination of "Smitfraud" and Virtumnde. When you have this condition you have to turn "System Restore" off before you start the removal. Long explanation, but it works against you when you reboot after the removal process. The following steps are all "Freeware" programs. STEP 1: Download SDFix and save it to your Desktop. Run the SDFix.exe by double clicking on it. Reboot your computer into Safe Mode (see this if you don't know how: Starting your computer in Safe mode ) When you have booted into safe mode, open the C:\SDFix folder and double click RunThis.bat to start the script. Type Y to begin the cleanup process. It will remove any Trojan Services or Registry entries found and then prompt you to press any key to Reboot. When the PC restarts the Fixtool will run again and complete the removal process then display Finished, press any key to end the script. STEP 2 Download SmitFraudfix Reboot into Safe Mode again Double-click SmitfraudFix.exe Select 2 and hit Enter to delete infect files. You will be prompted: Do you want to clean the registry ? answer Y (yes) and hit Enter. The tool will now check if wininet.dll is infected. You may be prompted to replace the infected file (if found): Replace infected file ? answer Y (yes) and hit Enter to restore a clean file. A reboot may be needed to finish the cleaning process. STEP 3 Download SuperAntiSpyware You don't need to run this in Safe Mode Run the program and delete what it finds. This software will kill Virtumnde.
I solved the Virtumonde Trojan problem. :hurray: I cleaned the entire hard drive and reinstalled Windows XP. That is what I should have done in the beginning but thought that removal tools would do the trick.
