i recently let a friend borrow my laptop for a bit and they returned it having the virtumonde virus. from what i've read/heard, its an incredible bad virus thats hard to get rid of


so my question is, has anybody dealt with it and successfully gotten rid of it?

5/5/2008 1:03:08 AM

I had it

turn off system restore

run Adaware

and then Symantec, which you get free from NCSU

http://www.lavasoft.com/support/securitycenter/virtumonde_remover.php

5/5/2008 1:45:06 AM

Also do SpySweeper Antivirus Trial with the Sweep for Rootkits option turned on in custom sweep. Run that and Spybot in Safe Mode, they should get rid of it.

5/5/2008 6:33:36 AM

Depending on what version you have...you may be screwed.

One version would change a lot of windows files to blank files. You would have to go delete those files, and then rename the other ones.


Most times you had to boot the computer from another computer and boot it up that way. Here is a simple way of trying to clean your system


Reboot in Safe Mode with Networking
Download ccleaner, run it delete everything. Use the registry tool they have fix everything. Make a backup if you want, I usually don't.

Download Ad-aware. Update it. Do a Full Scan. Remove everything it finds. Delete it from the Quaritine.

Download Kazaa-Be-Gone. This will help remove any P2P program you might have.

Download and update Spy Sweeper with Antibirus. Remove everything in the quaritine.

Download and update Spyware Doctor. Do a full Scan. Remove everything in the quaritine.

Are you familar with Hi-Jack this...it could get scary, and not fix windows if you delete crap out of there....so don't do it unless you are sure.

Reboot into Regular mode.
Run CCleaner.
Do a full scan with Spyware Doctor.
Do a full scan with Ad-aware.
Run CCleeaner.

Profit.

5/5/2008 7:47:24 AM

Do a google search for the VirtuMonde removal tool -> download it -> turn off system restore ->install and update SAV -> reboot in safe mode -> run removal tool -> run SAV -> reboot -> Profit.

5/5/2008 9:24:26 AM

virtumonde sucks.




but it's not all that hard to remove anymore.




have you tried the newest version of adaware?

5/5/2008 9:25:46 AM

Quote :

"Programs I've used at some point and liked: Lavasoft Adware http://www.lavasoft.de/download_and_buy/product_comparison_chart.php Windows Defender http://www.microsoft.com/athome/security/spyware/software/default.mspx Spybot http://www.safer-networking.org/en/download/index.html CA eTrust Spyware http://shop.ca.com/spyware/anti_spyware.aspx AVG Antivirus http://free.grisoft.com/doc/avg-anti-virus-free/lng/us/tpl/v5 Free online spyware/virus scanners/removers These are pretty helpful when you think your security programs have been compromised. Bitdefender Very nice scanner, catches alot. http://www.bitdefender.com/scan8/ie.html TrendMicro Housecall http://housecall.trendmicro.com eTrust Antivirus http://www3.ca.com/securityadvisor/virusinfo/scan.aspx "

boot into safe mode w/networking and run most of these scanners. i would run bitdefender first

5/5/2008 10:38:57 AM

I got rid of it on my sister's laptop

that was a real pain in the ass though

5/5/2008 11:28:57 AM

I've had it several times, and have ended up reformating every time.

5/5/2008 12:59:10 PM

formatting is for quitters.

5/5/2008 12:59:51 PM

The time it takes you to troubleshoot and remove the problem, you could've already reformatted and started fresh.

5/5/2008 1:00:10 PM

GHOST is your friend

5/5/2008 1:13:17 PM

Quote :

"The time it takes you to troubleshoot and remove the problem, you could've already reformatted and started fresh."

perhaps for you, but some people spend a crap load of time installing applications and configuring software/os to meet their needs. a few hours spent trying to fix something is probably worth it to them to prevent all the work needed to restore their computer to where it was at.

^ i'm not sure how ghost would help here. viruses can replicate on their own, why help them along with imaging software like ghost.

5/5/2008 1:28:05 PM

also, symantec has a utility to remove it. thats what i had to do when i had it.

5/5/2008 3:00:54 PM

synapse


ghost can be helpful with some forethought.


If you format your machine, install your apps, and adjust your settings, you can create an image that would be much more useful than a format.


Ghost is much more powerful than system restore, which will harbor viruses faster than a gargs would hit on a female.

5/5/2008 4:18:31 PM

i had this a while back, it was a serious bitch to remove

i gave in after a few days and just reformatted though

5/5/2008 8:55:48 PM

^^ oh sure ghost is quite helpful if you use it to pull backups or base system configs. i use acronis true image for those very tasks...cause ya know, its better than ghost on a consumer level at least, probably enterprise too.

i thought you were advocating ghost for the OPs problem...wasn't too sure how it would help him. but maybe he'll use imaging in the future if hes concerned about having to reinstall apps etc

5/6/2008 9:26:35 AM