first off u should download SUPERantispyware and get the pro trial version. now start your computer in safe mode and scan with that. another program is ad aware and again u should scan in safe mode. after u get rid of the viruses i suggest u get comodo firewall pro and best of all it's rated as one of the best firewalls and it's also free.

2

I cleaned a client's computer (infectected with a smitfraud variant) this way:



Update (or get and update) anti-virus and spyware protection. (Free for personal use: AVG, Ad-Aware, and Spybot; you can get all three and many more at download.com.)



Turn off system restore (in XP: right-click on My Computer, Properties, Restore tab, click to turn off system restore). This will require restarting--restart in Safe mode. (F8 while restarting; else start, run, msconfig, and on the BOOT.INI tab, safeboot.)



Run full-system antivirus and spyware scans.



Restart your computer. If your problem is gone, then turn system restore back on (same sequence as above to turn it off, now check system restore on). If you have some remnant, as I did, run spyware scans again before turning on system restore.



Good luck.

For your PC to be OK, you have to protect it from viruses and hackers!

The virus is a small program that attach itself to other files from your computer and can harm your computer, by restarting it, freezing it or even by deleting your files or stealing your personal information.

To keep your computer safe from viruses you have to use an anti-virus program, like Norton, AVG, Kaspersky, Avast, Antivir, McAfee, Bit Defender. Some are free and others have trial versions.

Here you have some links to download the free versions of some of the best anti-virus programs, as well as other security tools:

http://kiete.com/download/security/

You can try to locate the virus and delete it, but try to do it right when you restart your computer that so your computer might catch it before the program starts running. Try to go into uninstall/change programs and try to find any programs that look suspicious and uninstall them if you can.

But if all else fails I would recommend wiping the slate clean and reinstall the OS. If you can, it would be best to backup important files on a storage device before doing so.

My suggestion to you is to run what is known as "online scanner from Kaspersky Russia. Rated # 1 in the world for virus detections. Allow the complete scan to run, may take upto two hours or more depending on how many running processes & how many programs you have installed. Kaspersky scanner will destroy all your viruses in real times. After the scan is complete, reboot.



http://www.kaspersky.com/virusscanner



Minddoctor, France

Virus - is a program written to alter the way a computer operates, without the permission or knowledge of the user, it hides in other program files. It replicates itself and executes.To know more about how viruses attaches itself to computers and to learn how to combat them. Check out http://sumiram2006.googlepages.com/combatproblems

you have 2 thoughts at this component: a million. reformat the no longer elementary rigidity and then reinstall your working equipment. 2. Take it to a working laptop or computing gadget restoration service. the subject you're having is severe and your thoughts are constrained. I had the same subject and ended up having to reformat. be attentive to now besides the shown fact that, reformatting erases each thing on the no longer elementary rigidity, so with any luck, you subsidized up each thing to an exterior disk or storage. stable luck, this may be a no longer elementary concern.

Try running AVG virus scan, which is free and rated highly, followed by Ad Aware by Lavasoft.



Works for me all the time

Virtumunde is torjon horse with a torjon horse downloader......and system spyer....



Note:: Torjan Horse dont replicate as virus do. But they may hide somewhere...



genraly make registry key entry and keep coming back cos key entry hadnt been deleted.





Solution::



get yourself



spyware remover



spy sweeper

http://www.download.com/Webroot-Spy-Sweeper/3000-8022_4-10405877.html



or

adware Se from lavasoft.





spy sweeper is effective against that virtumunde..cos i removed mine with that.



hope this will help!



Cheers:)

roll your computer back to the previous restore point. works better than any spyware removal program out there.



I set my comp to create a restore point every single night.

Malware Removal: Virtumundo

http://wiki.castlecops.com/Malware_Removal:_Virtumundo

This procedure is to remove Adware-Virtumundo (Vundo).Winfixer /WinAntiSpyware / WinAntiVirus and Adware-Virtumundo are not one and the same. Persistent WinAntiSpyware or WinAntiVirus popups which pester the user to purchase the program, are indicative of Adware-Virtumundo or a Vundo infection, for short, but it is also possible to have the program Winfixer program and its successors installed without Vundo accompanying it.



How to Remove WinFixer / Virtumonde / Msevents / Trojan.vundo.

http://www.bleepingcomputer.com/forums/topic18610.html

Tools needed for this fix:

* Vundo Fix

* VirtumundoBegone (if VundoFix does not work)



======================

Toolbar 888 Removal Guide

http://www.toolbar-888-removal.com.removal-instructions.com/removetoolbar_888.html

http://www.spywareremove.com/removeToolbar888.html

============================

SmitFraudFix

http://www.geekstogo.com/forum/How_to_use_SmitFraudFix-t109268.html

==================

Also run Malware Removal: SpyAxe Removal per

http://wiki.castlecops.com/Malware_Removal:_SpyAxe_Removal

SpyAxe belongs to the Smitfraud group of rogue antispyware programs. The following programs are also members of this group, and this same removal procedure will eliminate any of these Smitfraud infections:

-Security Toolbar

=============================

Smitfraud Variants including PestCapture, WinAntivirus Pro 2007,

and other similar Malware Removal Instructions and Help

http://www.pchell.com/support/smitfraud.shtml

================================

================================

All programs listed are free.



Securing a Personal Machine

http://safecomputing.umn.edu/studentchecklist.html



When should I re-format? How should I reinstall? (#10063)

http://www.dslreports.com/faq/10063





OS Reinstallation vs. Virus Removal

http://safecomputing.umn.edu/guides/rebuild_repair.html



---------------------------------------------------------

Update your antivirus and run a full scan in safe mode



If you do not have full time (active) virus protection install (only one) all are excellent:



AVG Antivirus 7.5 Free Edition

http://free.grisoft.com/freeweb.php/doc/avg-anti-virus-free/lng/us/tpl/v5

http://www.download.com/AVG-Anti-Virus-Free-Edition/3000-2239_4-10669237.html?tag=lst-0-1

or

Free antivirus - avast! 4 Home Edition

http://www.avast.com/eng/avast_4_home.html

or

AOL Active Virus Shield

http://www.activevirusshield.com/antivirus/freeav/index.adp

---------------------------------------------------------

Install Windows Defender (full time spyware protection)

Perform a full scan.

http://www.microsoft.com/athome/security/spyware/software/default.mspx

---------------------------------------------------------

Install the following five programs and run weekly or at least monthly. You need all five. They will greatly increase your protection. They are not a substitute for full time spyware and virus protection.



Ad-Aware SE Personal (update + full scan)

http://www.lavasoftusa.com/products/ad-aware_se_personal.php



Spybot Search & Destroy (update + immunize + scan)

Do not enable Tea Timer and SDHelper

After installation: update + scan + immunize

http://www.safer-networking.org/en/mirrors/index.html



SpywareBlaster: Update then open and click “enable all protection”.

http://www.javacoolsoftware.com/spywareblaster.html



SUPERAntiSpyware free version: (update + scan)

http://www.superantispyware.com/



CCleaner: Do not install toolbar option

Removes tracking cookies, unneeded files, history

In options.

Set to run when computer starts.

Place cookies you want to keep in save list

http://www.ccleaner.com/

-------------------------------------------------------------

Note if a scan detects a problem but is unable to remove, start the computer in safe mode with the internet line disconnected and run a full scan.



In severe cases your system restore files will also be infected. In these cases you will need to turn off system restore to prevent malware hiding in the system restore files and reinfecting the computer during removal or during a future system restore. Turning off system restore deletes the system restore files.



Right click on "my computer"> Properties > System Restore Tab > Check box turn off system restore



After the malware is removed turn on system restore.

---------------------------------------------

McAfee Site Advisor: Internet Explorer and Firefox

http://www.siteadvisor.com/

Indicates if a site is unsafe and can link to a page to explain why it is unsafe.

-------------------------------------------------------------

Run this time only.



CWShredder: run

http://www.trendmicro.com/cwshredder/



Roguefix.bat

http://www.internetinspiration.co.uk/roguefix.htm#uninstall



Shoot The Messenger

http://www.grc.com/stm/shootthemessenger.htm



SmitFraudFix

http://www.geekstogo.com/forum/How_to_use_SmitFraudFix-t109268.html



Vundo Fix and

VirtumundoBegone (if VundoFix does not work)

http://www.bleepingcomputer.com/forums/topic18610.html



VX2 tool for Ad-Aware and run tool (Install and run)

http://www.lavasoftusa.com/support/securitycenter/vx2_cleaner.php



----------------------------------------------------------------------

Additional run this time and monthly.



Microsoft Update "Custom Mode" install everything

http://update.microsoft.com/microsoftupdate/v6/default.aspx?ln=en-us



Microsoft OneCare Live, run “full service scan”

Updates windows, virus and spyware scan, disk cleanup, disk fragmentation (if needed), backs up registry and then cleans registry, and checks for open firewall ports

http://onecare.live.com/site/en-us/default.htm



Malicious Software Removal Tool (run “full scan”)

http://www.microsoft.com/security/malwareremove/default.mspx

-------------------------------------------------------

RootkitRevealer v1.71

http://www.microsoft.com/technet/sysinternals/Security/RootkitRevealer.mspx



Rootkit Removal Guide

http://safecomputing.umn.edu/guides/scan_unhackme.html



Rootkits Removers

Pick any 2 install and run one each month



AVG Anti-Rootkit

http://www.grisoft.com/doc/products-avg-anti-rootkit-update-app-art/?ver=1.1.0.29



F-Secure BlackLight

http://www.f-secure.com/blacklight/



Trend Micro Rootkit Buster

http://www.trendmicro.com/download/rbuster.asp



Sophos Anti-Rootkit

http://www.sophos.com/products/free-tools/sophos-anti-rootkit.html

----------------------------------------------------------

----------------------------------------------------------

Online Free Scanners:

Run Trend Micro, Kaspersky, and Panda Scan now.

Run a different one each month.



Trend Micro: HouseCall Free Scan (removes what it finds)

http://housecall.trendmicro.com/

BitDefender Online Scanner http://www.bitdefender.com/scan8/ie.html

Kaspersky Labs Online Scanner http://www.kaspersky.com/virusscanner

McAfee http://us.mcafee.com/root/mfs/default.asp?affid=294

Panda ActiveScan Free Online Scanner http://www.pandasoftware.com/products/activescan?

Symantic Online Scanner http://security.symantec.com/sscv6/ssc_eula.asp?langid=ie&venid=sym&plfid=23&pkj=ALUFRHYTINMHDKDCWLL&vc_scanstate=2

-------------------------------------------------------

Additional Information read:

http://wiki.castlecops.com/Malware_Removal_and_Prevention:_Overview

http://wiki.castlecops.com/Malware_Prevention:_Prevent_Re-infection

http://www.castlecops.com/f67-Hijackthis_Spyware_Viruses_Worms_Trojans_Oh_My.html

http://aumha.org/a/quickfix.htm

http://aumha.org/secure.htm

http://aumha.org/a/parasite.php

http://www.castlecops.com/t102301-Hijackthis_Guidelines_Read_Before_Posting.html

http://www.techsupportforum.com/security-center/hijackthis-log-help/15968-updated-important-read-before-posting-log.html

http://forum.aumha.org/viewtopic.php?t=4075&sid=901703d08c2ace3