Virtumonde Virus Fix

The Virtumonde Virus is a real nasty one. I have found 2 programs that will most likely eliminate it (It’s not 100% but it works pretty well.) The first program I would suggest running is called VundoFix. This program is specifically made to find and remove a large variety of the Virtumonde Viruses. It is just an executable, so just download (the latest version) and run it from your desktop and let it run its course. At the end of the scan if it has found something you then say remove and between the scan running and it removing the virus it can take a decent amount of time to work. If the VundoFix program can find the Virus, but can’t delete it for whatever reason I have found a second program that works really well as a backup to VundoFix. Killbox is another executable program that can “Kill” running processes/ files. It can also delete files that won’t allow you to delete them. So basically it can override the delete function. In VundoFix it comes with a directory for example “C:\Windows\System32\file name” Use VundoFix to come up with the needed directory and type that in in the field in Killbox (Make sure the directory is exactly the same as what it says in VundoFix. Very Important!!!) Once you have typed that in click on the red “X” icon next to where the directory is. It should then delete the file, but in case it throws you an error saying it can’t be deleted because it might be running then select the option to delete on restart. Between these two programs I have successfully been able to remove well over a dozen different types of Virtumonde Viruses.

PS: I would also suggest running Spybot: Search and Destroy. Spybot can get rid of some of the versions of Virtumonde, but run it at least twice, if it’s gone after the second scan then it’s off of your PC otherwise use VundoFix and Killbox.

VundoFix
http://vundofix.atribune.org/

Killbox
http://killbox.net/