Quick Definition of Virtumonde

What does Virtumonde do?

The main purpose of Virtumonde is to show pop-ups and to re-direct your browser.  Let’s say you open your browser.  For a second or two it will start to load your home page the re-direct to another site.  If you were to Google and do a search, then click on one of the search results you can also find your self re-directed.

To read the whole article go here:

Learn how to Remove the Number one Spyware Threat – There is software out there that can remove Virtumonde as well. Check out the list we found at Virtumonde removal software. This gives you an idea of what will work to remove Virtumonde yourself. If you want to remove this virus for …

Win32 removal of Vundo / Virtumonde Virus part 2

In a previous post about Win32 Vundo virus removal we detailed the best way we have found to remove the vundo / virtumonde virus. Please try that way first. If that does not work, here are the instructions to remove the Win32 virus another way.

1. Download VirtumundoBegone and save it to your desktop.
2. Now reboot into Safe Mode.
   1. This can be done tapping the F8 key as soon as you start your computer
   2. You will be brought to a menu where you can choose to boot into safe mode.
   3. Select safe mode with networking using your arrow keys on the keyboard and then press enter.
   4. When you computer reaches the desktop make sure you log in as the same user which you had performed the previous steps,
3. Once you are logged into safe mode, double-click VirtumundoBeGone.exe file you just downloaded and follow the instructions.
4. Exit when it has finished, and reboot back to normal mode.

This should fix your machine. We may sound like a broken record on this blog but now go out and buy the very best virus protection you can afford. Although the Vundo / Virtumonde virus is annoying it is not the worst thing your computer could get infected with. Protect yourself!!

How to remove Win32 Vundo / Virtumonde Virus

There are two ways perform Win32 Vundo virus removal. This posting is one way that has proven effective and it’s free. Keep in mind that we always stress that you have a good virus protection software running. If you have this virus it means that you do not have proper protection. After you remove the virus, make this the very next thing you do!!

Automated Win32 Removal Instructions for the Vundo or Virtumonde infection using VundoFix:

1. Please print these instructions as they will be needed later when Internet access is not available.
2. Save these instructions in word or notepad to the desktop where they can be easily found.
3. Download Vundo Fix and save it to your desktop.
4. When it has completed downloading, double-click VundoFix.exe to run it.
5. Click the Scan for Vundo button.
6. Once it’s done scanning, click the Remove Vundo button.
7. You will now receive a prompt asking if you want to remove the files, click the YES button. Once you click yes, your desktop will go blank as it starts removing Vundo.
8. When completed, it will prompt that it will shutdown your computer, click the OK button.
9. When the computer has shutdown, turn your computer back on.

The WinFixer and Vundo infection should now be removed from your computer.

—————-

More great info about Win32 removal of Vundo or Virtumonde from around the web:

• VundoFix – freeware removal tool for Trojan.Vundo – VundoFix is a freeware removal tool for many of the known variants of Trojan.Vundo, Trojan.Conhook and other similar infections. Usually when infected with Vundo the user is bombarded with popups… [[ This is a content summary only. …
• Vundo realy sucks – There you will find several articles on how to remove Vundo from your computer. You should also check out the Vundo removal page they have setup. It lists about 10 free programs that you can use and they are all free. …
• How to Remove Virtumonde – Virtumonde is a trojan horse for computers. The program itself has several names: Vundo, Vundo Trojan, Virtimondo and MS Juan, which are all just names for the same program. This Trojan is known to cause popups such as advertising for …

What is Vundo / Virtumonde Virus?

Since I’ve started blogging about Win32 Removal I have been getting a lot of comments about the Virtumonde virus so I thought I would start a series of posts describing in detail what this virus is and the many ways to get rid of it.

Although many people know it as the Virtumonde virus, that is just one subset of the family of virus’ called Vundo. Here is the description straight from Wikipedia “Vundo, or the Vundo Trojan (also known as Virtumonde or Virtumondo and sometimes referred to as MS Juan) is a Trojan horse that is known to cause popups and advertising for rogue antispyware programs, and sporadically other misbehavior including performance degradation and denial of service with some websites including Google.”

How do you know you have the Vundo virus?

Typically you know you have this virus if you are getting strange pop ups. The virus will cause your browser to generate pop up ads and tricky alerts in hopes that you will click on them. The most dasterdly ones try to simulate virus warning alerts claiming that you have been infected with a virus and that you need to buy some software to get rid of it. The fact is you HAVE been infected with a virus but buying the software that is recommended with do nothing to remove the Vundo virus that’s causing the pop ups. Some of the best known advertisements from the vundo virus are for WinFixer, Antispyware Master, Storage Protector, and Sysprotect which are all fake virus protection software. So Evil!!

Another telltale sign is that the desktop or screensaver gets changed without the users knowledge. Again this may be a trick to get you to buy something because one of the things this virus does is change your background or screensaver to a Windows blue screen. If the user doesn’t fall for it and goes into the control panel to change it back the virus may have removed this possibility by editing the registry entry for these panels.