Vista - Trojan Help Needed

**tanuj_chadha** · 12-18-2008

Hi All,

My System seems to be infected with a Trojan Virtumonde virus

. As per Trojan Remover. It states as the file is hidden. I have tried to find the file manually but was unable to find it. I have run scan using Mcafee, Malware Antibytes, Super Antispyware. But still the system is slow & Trojan remover reports the same infection again & again. Can anyone please give me any last minute idea's before I re-install the operating system.

P.S.: Data is safe on other hard drive partitions.

**Neverhavemoney** · 12-18-2008

tanuj_chadha,
DONT REINSTALL YET! WAIT A LITTLE LONGER SINCE ALL YOUR DATA IS SAFE!
Post this in our Security Team Forum and we will be happy to help you. Just post there!
Ben

**barman58** · 12-18-2008

Hi Tanuj,

Have you tried the Malwarebytes scan in safe mode, most up to date info I have suggests that that should remove this pest, of course it's so adaptable that you could be unlucky enough to have a new variant which is evading everything

if that's the case then a re-install or re-image might be the most time efficient solution

**Airbot** · 12-18-2008

Have you ran Microsoft Windows Malicious Software removal tool yet?
Malicious Software Removal Tool

Try running virtumonde fix as well.
Virtumonde Removal

**tanuj_chadha** · 12-18-2008

I have tried to run malware removal tool in safemode it found approx 35 infections. Removed all of them. Then ran super antispyware & it also removed a trojan from the system. After that ran a scan through trojan remover got the same infection again. What I don't understand is that it states that it has found an infection & the file is hidden. But I am unable to find that file. I have also run the virtumonde fix & rouge fix.

I have not yet run Microsoft Windows Malicious Software removal tool. I would run when I get back home.

**Airbot** · 12-18-2008

Quote: Originally Posted by tanuj_chadha

I have tried to run malware removal tool in safemode it found approx 35 infections. Removed all of them. Then ran super antispyware & it also removed a trojan from the system. After that ran a scan through trojan remover got the same infection again. What I don't understand is that it states that it has found an infection & the file is hidden. But I am unable to find that file. I have also run the virtumonde fix & rouge fix.

I have not yet run Microsoft Windows Malicious Software removal tool. I would run when I get back home.

Virtumonde/vundo is notoriously hard to get rid of. It likes to replicate itself over and over and stay in the memory. Run MSRT and check your startup services/programs for any traces.

**Joan Archer** · 12-18-2008

Did you try a System Restore to just before you got the infection ?

**johngalt** · 12-19-2008

Malwarebytes.org

That will help get rid of it for the most part - after that you can concentrate on backing up your data for the eventual re-install.

**Neverhavemoney** · 12-19-2008

Yep sounds like you need to do a system restore for a while back.

**tanuj_chadha** · 12-19-2008

I have a great mind. Before I got the infection i had cleaned my system using mcafee & also removed system restore points (accidentally).

12-18-2008	#1 (permalink)
tanuj_chadha Vista 32bit SP1 274 posts	Trojan Help Needed Hi All, My System seems to be infected with a Trojan Virtumonde virus . As per Trojan Remover. It states as the file is hidden. I have tried to find the file manually but was unable to find it. I have run scan using Mcafee, Malware Antibytes, Super Antispyware. But still the system is slow & Trojan remover reports the same infection again & again. Can anyone please give me any last minute idea's before I re-install the operating system. P.S.: Data is safe on other hard drive partitions.
My System Specs

12-18-2008	#2 (permalink)
Neverhavemoney Windows Vista™ Home Premium 402 posts	Re: Trojan Help Needed tanuj_chadha, DONT REINSTALL YET! WAIT A LITTLE LONGER SINCE ALL YOUR DATA IS SAFE! Post this in our Security Team Forum and we will be happy to help you. Just post there! Ben
My System Specs

12-18-2008	#3 (permalink)
barman58 Windows 7 RC x64 Vista HP x86 1,683 posts	Re: Trojan Help Needed Hi Tanuj, Have you tried the Malwarebytes scan in safe mode, most up to date info I have suggests that that should remove this pest, of course it's so adaptable that you could be unlucky enough to have a new variant which is evading everything if that's the case then a re-install or re-image might be the most time efficient solution
My System Specs

12-18-2008	#4 (permalink)
Airbot Vista Ultimate SP2 x64 Windows 7 Ultimate x64 TECHNET 1,657 posts	Re: Trojan Help Needed Have you ran Microsoft Windows Malicious Software removal tool yet? Malicious Software Removal Tool Try running virtumonde fix as well. Virtumonde Removal
My System Specs

12-18-2008	#5 (permalink)
tanuj_chadha Vista 32bit SP1 274 posts	Re: Trojan Help Needed I have tried to run malware removal tool in safemode it found approx 35 infections. Removed all of them. Then ran super antispyware & it also removed a trojan from the system. After that ran a scan through trojan remover got the same infection again. What I don't understand is that it states that it has found an infection & the file is hidden. But I am unable to find that file. I have also run the virtumonde fix & rouge fix. I have not yet run Microsoft Windows Malicious Software removal tool. I would run when I get back home.
My System Specs

12-18-2008	#6 (permalink)
Airbot Vista Ultimate SP2 x64 Windows 7 Ultimate x64 TECHNET 1,657 posts	Re: Trojan Help Needed Quote: Originally Posted by tanuj_chadha I have tried to run malware removal tool in safemode it found approx 35 infections. Removed all of them. Then ran super antispyware & it also removed a trojan from the system. After that ran a scan through trojan remover got the same infection again. What I don't understand is that it states that it has found an infection & the file is hidden. But I am unable to find that file. I have also run the virtumonde fix & rouge fix. I have not yet run Microsoft Windows Malicious Software removal tool. I would run when I get back home. Virtumonde/vundo is notoriously hard to get rid of. It likes to replicate itself over and over and stay in the memory. Run MSRT and check your startup services/programs for any traces.
My System Specs

12-18-2008	#7 (permalink)
Joan Archer Vista Home Premium SP2 32bit / Windows 7 Home Premium 32 bit 1,069 posts	Re: Trojan Help Needed Did you try a System Restore to just before you got the infection ?
My System Specs

12-19-2008	#8 (permalink)
johngalt Vista Ultimate x64 MAK, OpenSolaris 5, Gentoo 2008.1.... 3,848 posts	Re: Trojan Help Needed Malwarebytes.org That will help get rid of it for the most part - after that you can concentrate on backing up your data for the eventual re-install.
My System Specs

12-19-2008	#9 (permalink)
Neverhavemoney Windows Vista™ Home Premium 402 posts	Re: Trojan Help Needed Yep sounds like you need to do a system restore for a while back.
My System Specs

12-19-2008	#10 (permalink)
tanuj_chadha Vista 32bit SP1 274 posts	Re: Trojan Help Needed I have a great mind. Before I got the infection i had cleaned my system using mcafee & also removed system restore points (accidentally).
My System Specs

Similar Threads
Thread	Forum
Help needed regarding a trojan found and possible relation to mouse troubles	System Security
Trojan Pop Up	Vista security
Help with a trojan	Vista security
trojan	Vista security
trojan?	Vista security