Home > Computer > How-to remove Winfixer, Virtumonde, Msevents, and Trojan.vundo (ATLDistrib Object)
Donation Goal
Donate Now Goal amount for this year: 799 USD, Received: 100 USD (13%)
Please donate to help support this website. The funds will be used to purchase owned license of LiteSpeed Web Server Enterprise (2-CPU). It provides superior performance in terms of raw speed, scalability and anti-DDoS capabilities.

How-to remove Winfixer, Virtumonde, Msevents, and Trojan.vundo (ATLDistrib Object)

Posted By Raymond In Category: Computer

Feb
7
2006

My website raymond.cc blog statistic has always been monitored by BlogPatrol.
I find it quite good because it provides some very useful tracking stats such as real-time site statistics, reports, graphs and etc.
Few days ago whenever I visited BlogPatrol to check my web statistics, there is a very real popup with a notice as below:
NOTICE: If your computer has errors in the registry database of file system, it could cause unpredictable or erratic behavior, freezes and crashes. Fixing these errors can increase your computer’s performance and prevent data loss.
Would you like to install WinFixer 2005 to check on your computer for free? (Recommended)
How-to remove Winfixer, Virtumonde, Msevents, and Trojan.vundo (ATLDistrib Object)
There is an OK and Cancel button.

I noticed that there is a small Internet Explorer browser being opened at the below right corner of my screen.
How-to remove Winfixer, Virtumonde, Msevents, and Trojan.vundo (ATLDistrib Object)
I believe this is the window that has the codes to popup the Notice above.
After taking a look at the popup carefully, I believe that this is some kind of spyware named WinFixer.
I clicked on Cancel button and I thought it should go away and not bother me anymore but I was wrong!


Another window poped up and showing me an animation of scanning through my computer’s registry, shortcuts and harddrive for errors and believe it or not, it says that the free scan has found 42 System Errors.
How-to remove Winfixer, Virtumonde, Msevents, and Trojan.vundo (ATLDistrib Object)
I got fedup of this and closed this window again.

Another noticed popup again and it says:
NOTICE: You have not completed the errors scan. If your computer has errors in file system or Windows registry, it could cause unpredictable or erratic PC behavior, freezes, crashes and loss of data.
You need to install WinFixer 2005 to scan for and, if found, fix system errors now (Recommended)?
How-to remove Winfixer, Virtumonde, Msevents, and Trojan.vundo (ATLDistrib Object)
Looks like this WinFixer spyware will not give up in conning me.

I clicked on Cancel button and I got a shock because I got another popup saying:
WinFixer 2005 will scan your system for errors now.
Please select “RUN” or “OPEN” when prompted to start the installation.
This file has been digitally signed and independently certified as 100% free of viruses, adware and spyware.
How-to remove Winfixer, Virtumonde, Msevents, and Trojan.vundo (ATLDistrib Object)
I’ve got no choice but to click on the OK button.

Now it finally prompt me whether to download WinFixer.
How-to remove Winfixer, Virtumonde, Msevents, and Trojan.vundo (ATLDistrib Object)
I cancelled everything and finally no more popup.

As you can see, if you accidently chosen the wrong selection, WinFixer might have just installed on your computer.
I’ve got infected by WinFixer before and trust me, it’s a pain in the a$$.
I tried cleaning it with Spybot Search & Destroy together with Ad-Aware but couldn’t clean it 100%.
I found the 2 methods below to remove Winfixer, Virtumonde, Msevents, and Trojan.vundo (ATLDistrib Object) and it works effectively.

Please download VundoFix.exe to your desktop.
How-to remove Winfixer, Virtumonde, Msevents, and Trojan.vundo (ATLDistrib Object)

  • Double-click VundoFix.exe to run it.
  • Put a check next to Run VundoFix as a task.
  • You will receive a message saying vundofix will close and re-open in a minute or less. Click OK
  • When VundoFix re-opens, click the Scan for Vundo button.
  • Once it’s done scanning, click the Remove Vundo button.
  • You will receive a prompt asking if you want to remove the files, click YES
  • Once you click yes, your desktop will go blank as it starts removing Vundo.
  • When completed, it will prompt that it will shutdown your computer, click OK.
  • Turn your computer back on.

    • Alternate fix: (use only if the above fix didn’t work)
    Please download VirtumundoBegone to your desktop.
    How-to remove Winfixer, Virtumonde, Msevents, and Trojan.vundo (ATLDistrib Object)

  • Run VirtumundoBeGone.exe and follow the instructions. Do not worry if you see a BLUE SCREEN “Fatal Error” Message, this is normal and expected.
  • When it has finished, reboot.

    • Hope your computer is free from WinFixer Virtumonde, Msevents, and Trojan.vundo (ATLDistrib Object) after scanning and cleaning using the methods above ;)


    No related posts.

    • http://www.blogpatrol.com BlogPatrol

      Hi there, I run the BlogPatrol service and have removed popunder ads from the site as a result of important feedback such as your blog entry. Thanks for using our service and for us to keep the site running at a high level.

    • http://www.azam.biz Nadeem

      Thank for the screenshots etc. I’m horrified, but not surprised. Worst thing is the companies thrusting their wares into people’s faces are multi-million dollar entities pretending they are providing a ‘service’. Nadeem. http://www.Azam.biz

    • http://www.blogpatrol.com BlogPatrol

      Nadeem, if you are disparaging BlogPatrol, then I must take exception with your comment. I want to clarify that the very reason that our site has stopped running pop under ads is that the ad brokers we have been using did not keep their end of the bargain, which is to make sure that malware is not being served by the ads that they broker. Upon finding out that this was going on, we decided to pull the advertising from our site. We have suffered a loss in revenues by doing so, but that is a necessary loss because we respect our users. There ARE things more important than money.

    • Ankit

      Hi as u have told above that u have withdrawn the ads from the site due to some problem so then how do u finance ur needs.

    • dragin

      Hi Ray,

      Much thanks on shedding light on this great program (Vundofix). It removed an annoying trojan that started up with windows boot-up.

    • http://www.7milesdown.com trench

      This was a lifesaver. SpyBot could not get rid of those files in the System32 folder but this did the trick!

    • http://hubpages.com/hub/Virtumonde-Removal-Tools Virtumondeo

      I wonder why they called the pest Virtumondo/Vundo, but this disaster can become a screenplay for a horror hi-tech movie like Net, The.
      I think Virtumonde virus showed how actually vulnerable and imperfect popular antivirus suites are. People bundle their computers with loads of security programs only to find out that virtumonde feels just great in their protected systems.
      At Yahoo Answers it’s often recommended to install a dozen of all kinds of malware removers. Takes quite some time, but not always helps to clean out the pest.
      Quite unexpectedly, best virtumonde removal tools so far are free and don’t need installation.

    • http://www.virtumonde.net Virtumonde Removal Man

      Atribune has updated their Virtumonde tool to version 10. It still only works about 50% of the time at removing Virtumonde but at least it is still free. Some other good programs that are free that you can try out are Smitfraudfix and Spybot Search and Destroy. Still I would recommend you purchase real protection so this does not happen again.

    Copyright © 2005-2012 - Raymond.CC Blog