Help Needed with self-loading computer trojan

[not2sharp]

A couple of days ago I was hit by the Virumonde.a (aka vundo) trojan virus. The thing self-downloaded while I was on the Drudge Report; and neither Norton antivirus, or MS Windows Defender have been able to completely clear this thing out.

This is one of the most vicious bugs that I have encountered on the Internet; Within a matter of minutes it had downloaded dozens of other viruses, altered registers, and even created something called a "Tunnel adapter Teredo Tunneling Pseudo-interface: under my IPconfig.

Have anyone come across this one; and if so, can it be safely removed or disabled with anything less then a complete reinstall of the whole operating system?

n2s

As of this time, the infected PC is no longer able to establish a connection to the internet, although nothing is showing up on either scan.

 

[spyder10]

Try using this
Avira AntiVir Rescue System

It is a bootable cd and virus scanner. This means that your computer never loads windows and runs off the operating system on the CD, so the virus will not be able to run and the antivirus scanner can easily clean up your system.

 

[ronsec]

I got hit with the same virus 2 weeks ago. Very hard to remove, but I found a website that advised doing a system restore to a previous date when it was working OK. They said it didn't always work but was worth a try. I got lucky - it fixed my problem. I then ran a scan with McAfee and it found the rest of the files. Been working OK since! Good luck!

 

[vret]

+1 For the Avira Rescue Disk. After you run that I'd suggest Malwarebytes Anti-Malware. I've had the best luck with that particular anti-malware program, and I've used a bunch in my efforts to keep the networks I manage malware free.

Oh, and try disabling your System Restore. A lot of malware hides in there since many programs won't scan those files for some reason.

 

[ipm]

teh message seem to be to go to anohter anti-virus site and get a scan done. amy do this: kasperky, mcafee, etc. nortons reputation is not great.

i sugest you look into NOD32 or kaspersy for anti-virus. they are best right now.

for a firewall try online armor or comodo. boit are excellent.

have alook here as well: www.matousec.com to see real, independent comparisons, not those by magazines, or paid editors.

in any case get rid of teh norton spy-ware they call anti-virus.

 

[Rat Finkenstein]

I had a trojan problem that disabled my system restore and made registry changes.

SDFix fixed it. http://www.myantispyware.com/2007/11/09/sdfix-free-trojan-remover-tool/

 

[not2sharp]

Thanks, for the help. After fighting this thing for a week, I decided to do a full system recovery and rebuild and start fresh. I lost some data; but, I have most of it back up and running correctly.

I would suggest putting these criminal hackers right behind pirates in line for the noose.
n2s