Removing WinFixer / Virtuamonde / Msevents / Trojan.vundo
I spent a couple hours over the weekend trying to figure out a particularly nasty virus called (among other things) "Virtuamonde" or "Virtumonde". What makes this trojan virus particularly nasty is that it redirects a lot of useful anti-virus and anti-spyware websites to point to localhost (127.0.0.1). The blocked websites include:
- Windows update (windowsupdate.microsoft.com and update.microsoft.com)
- Windows support sites (support.microsoft.com)
- Spybot Search & Destroy website
- AdAware website
- ... and many other forums and support sites that provide solutions.
To help others who have this same issue and do not have the luxury of a second computer running linux, or cannot connect to these sites for other reasons, I am providing the necessary programs here to FIX the problem.
TO FIX:
Download, install, and run Malwarebytes' Anti-Malware. This was the only malware/spyware removal program that actually found and fixed the problem.
You may have to run this program in safe mode (reboot your computer and keep pressing F8 until you see a prompt for "Safe Mode"). If this still doesn't catch your problem you can download and install VundoFix.
(via bleepingcomputer, which is another site that is explicitly blocked by this trojan virus)
-
Kathy Krejci
meta
comments
recent diggs
- Tea Partiers Mock And Scorn Apparent Parkinson's Victim
- Google Streetview at its best
- Most & Least Expensive Vehicles to Insure in 2010
next netflix
other blogs
- Alison and Matt
- Elaine Park
- Fil Fortes
- Heather and Bob
- Jorie and Jason
- Laura and Matt
- Nathaniel Edmunds Photography Blog
- Pat and Deanna
- Peigh It Forward
- Pete DeCarlo
- Posey and Lawrence
- Scott and Micki
- Shannon (my wife)
- Steve Goldhaber
ad
recent albums
Garrett and Colleen's Wedding
Walt Disney World Trip