Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
(Canned Speech) Virut/Sality Reformat Speech
#1
I have unpleasant news for you. Sad In addition to some malwares in the system, one of the infections is identified as Sality or so-called Virut virus. It's a file infector, and as such our efforts in cleaning will be futile. You'll be better off to perform a reformat and reinstall (clean install).

Win32/Virut.BM is a polymorphic file infector that targets .EXE and .SCR files. This virus also opens a backdoor by connecting to an IRC server, allowing a remote attacker to download and execute arbitrary files on the infected computer. you may refer to the following thread.

http://www.f-secure.com/v-descs/sality_q.shtml
http://www.sophos.com/security/analyses/...ityaa.html

Backup all your documents and important items (personal data, work documents, etc) only. DO NOT backup any executable files (softwares) and screensavers (*.scr). It attempts to infect any accessed .exe or .scr files by appending itself to the executable.

If you need assistance in performing a clean install, here are a couple of good guides to walk you through the process:

http://www.google.com.au/url?sa=t&source..._w&cad=rja <<--- XP

http://www.windowsreinstall.com/ <-- All OS's

Good luck.


Code:
I have unpleasant news for you. :( In addition to some malwares in the system, one of the infections is identified as [b]Sality [/b]or so-called [b]Virut [/b]virus. It's a file infector, and as such our efforts in cleaning will be futile. You'll be better off to perform a reformat and reinstall (clean install).

Win32/Virut.BM is a polymorphic file infector that targets .EXE and .SCR files. This virus also opens a backdoor by connecting to an IRC server, allowing a remote attacker to download and execute arbitrary files on the infected computer. you may refer to the following thread.

http://www.f-secure.com/v-descs/sality_q.shtml
http://www.sophos.com/security/analyses/w32salityaa.html

Backup all your documents and important items (personal data, work documents, etc) only. DO NOT backup any executable files (softwares) and screensavers (*.scr). It attempts to infect any accessed .exe or .scr files by appending itself to the executable.

If you need assistance in performing a clean install, here are a couple of good guides to walk you through the process:

http://www.google.com.au/url?sa=t&source=web&cd=1&ved=0CCAQFjAA&url=http%3A%2F%2Fgrownupgeek.com%2Freformat&rct=j&q=reformat%20windows%20XP&ei=AbG6TNSzFI-uvgPMwcTxDQ&usg=AFQjCNG7vBAUfm4_q4Xkh7sME-UgrGES_w&cad=rja <<--- XP
http://www.windowsreinstall.com/ <-- All OS's

Good luck.


Possibly Related Threads…
Thread Author Replies Views Last Post
  (Canned Speech) Security Check --([-S7N-])-- 0 3,026 11-01-2010, 05:48 AM
Last Post: --([-S7N-])--
  (Canned Speech) All Clean --([-S7N-])-- 0 2,683 10-19-2010, 03:17 AM
Last Post: --([-S7N-])--
  (Canned Speech) Disable Ad-Watch --([-S7N-])-- 0 1,924 10-19-2010, 03:14 AM
Last Post: --([-S7N-])--
  (Canned Speech) Dr. Web CureIt --([-S7N-])-- 0 2,553 10-19-2010, 03:11 AM
Last Post: --([-S7N-])--
  (Canned Speech) F-Secure Blacklight --([-S7N-])-- 0 2,017 10-19-2010, 03:07 AM
Last Post: --([-S7N-])--

Forum Jump:


Users browsing this thread: 1 Guest(s)