For those of you that don't know what Virtumonde is, it's a trojan. Furthermore, it's a complete bastard to remove once it's really started to kick in. Some of its adverse effects are its changing of some important registry items (including adding VIRUS ALERT! to the system time, disabling multiple select on the desktop, changing your desktop background to an advertisement for a fake antivirus and screensaver into the same, disabling the ability to change these items BACK, then disabling the Registry editor so you can't fix anything). It also stops access to websites such as Google and social networking sites (generally high-traffic websites), arses about with all your settings, then puts a load of randomly named DLLs into System32, one of which attaches itself to winlogon so it cannot be removed the conventional way.
Anyway, not so long ago, I got this trojan. It kind of confused me at first, as all it did was stopped me from accessing Google through Fx. A friend told me he had this problem and it was an effect of Vundo (another name for Virtumonde). I went through this website for guidance on its removal. I thought it had gone… until a day later it came back… worse. It then did everything I described in the first paragraph. It took me two days, eight websites, four freeware Virtumonde removal tools and a couple of frustrated headdesks to finally get rid of it for good.If you ever suspect you might have Virtumonde, get Spybot Search & Destroy to detect it. If you have it, use the links on Vundo's Wikipedia page to help get rid of it. Trust me, you want to get rid of it.
I had a friend just message me about helping him remove Vundo last night. Two hours later I had him loaded up with Spybot and similar programs, and wished him good luck.
yay linux
I got a Vundo bad once, not quite to the point where it was changing my desktop but it was buried deep enough in my pc that I had to go through a lot to get it out. Spybot, Malwarebytes, and HijackThis help alot tracking down the whole problem. Also Spybot has wonderful forums to assist in removing just about any problem.
Yay Vista('s stupidly secure security which I turned off :3)
That is why I sandbox everything suspicious :>Never partake in unprotected sex with the internet, kids.
I would just format rather than try and fix it, too much effort.I need to make a vlite just for those occasions too I guess.
Correct me if I'm wrong, but unless you actually launch a trojan, it doesn't do anything, does it? At least that's what they taught me in the old days.
From what I read about Vundo, though, it sounds bad.Cesquey, that's true, but once it's run once (Hidden in a file you think will install something, or if you pirate something people often put it in for some reason) it can put it in startup.
So yeah, it's pretty bad :(I had this virus. It wasn't that bad to remove.. for me at least :)
I have spybot. It's nice. It is one of the 5 virus scanners I use. :)