TROJAN VIRUS REMOVAL

Do you need to get rid of Vundo? If you have been struggling with removing this stubborn virus then you know just how difficult it can be. Many times, common antivirus programs may detect a Vundo Trojan infection but they may not completely remove it. If this is the case, the Trojan infection just comes right back the next time your computer is restarted.

The following is a very basic malware removal procedure that has proven effective many times for getting rid of Vundo. These basic steps will outline how to remove Trojan Vundo and other similar types of malware from an infected system under normal circumstances. I will assume that you are familiar with a few advanced Windows techniques such as backing up and editing the registry, using the MSConfig and Task Manager utilities and restarting your PC in ‘Safe Mode’. If you are unfamiliar with any of these tasks then you should enlist the help of someone who is comfortable with working “under the hood” of the Windows operating system.

First, we need to stop any running processes that are associated with the Vundo Trojan. Restart the PC into ‘Safe Mode’. After the PC has restarted, use the MSConfig utility (under the ‘Startup’ tab) and disable ALL startup entries. Next, with the computer still in safe mode, fire up the registry editor. BEFORE MAKING ANY REGISTRY EDITS, MAKE A FULL REGISTRY BACKUP (PLEASE DO NOT SKIP THIS IMPORTANT STEP)! Now, navigate to the following key: HKLMSoftwareMicrosoftWindowsCurrent VersionRun. In the right hand pane, find and delete any values that are obviously associated with the Vundo Trojan infection. These are usually easy to spot because they refer to .dll and .sys files with random character names such as “dnhllkw.dll” or “bgjulmk.sys”. If you are not ABSOLUTELY SURE which files are legitimate and which are malware, DO NOT DELETE THEM. Also, many times you won’t find any suspicious files here and that’s OK. If they are there delete them and if not, just close the registry editor.

What we’ve just accomplished is (hopefully) disabling any auto start entries for the malware. At this point you should reboot the computer in normal mode. If you don’t get any more pop-ups after you reboot the computer, you should be able to install and run antivirus tools to delete Vundo related files.

Download and run Malwarebytes Anti-malware (be sure to update it after installing and do a COMPLETE system scan). After MBAM has removed any threats it finds, download and run SuperAntiSpyware and run a complete scan with that. Note: MBAM and SAS both have free versions available that will suffice for this project. However, both are very good products and, although they are not a replacement for a full-featured Internet Security program, they are both WELL worth the cost of the paid version. They make a very good compliment to your regular antivirus program.

Now that your PC is rid of Vundo, it’s very important that you protect it from future attacks of this or any other malware. As a working PC tech, I have tried many different Internet Security Products and in my opinion AVG Internet Security is BY FAR the best product out there. It’s the only Internet Security Product that I use on all my computers.  You should try to learn more and find out why I recommend it so highly. Whether you want to follow my advice and try AVG or you would rather keep using your existing antivirus  is up to you, just make sure you use a reputable product and keep it updated.