Tech Support Forum - View Single Post - [SOLVED] Please help

Ried · 07-05-2009, 09:02 AM

Hello floydster,

I can see by the dds.txt you posted that you indeed did have Virut on this system. A reformat was certainly in order. The only problem you may after the reinstall is if you backed up any files before you reformatted, and placed them back on the system after the reinstall.

Virut is a polymorphic file infector which affects the executable files (.exe) and screensaver files (.scr) corrupting them beyond repair in most cases.

DO NOT backup any executable files (softwares) and screensavers (*.scr). It attempts to infect any accessed .exe or .scr files by appending itself to the executable.

Also, try to avoid backing up compressed files (zip/cab/rar) files that have .exe or .scr files inside them. Virut can penetrate and infect .exe files inside compressed files too.

There is a recent variant of Virut which also infects .htm and .html files, so those should not be backed up either.

07-05-2009, 09:02 AM	#4 (permalink)
Ried Assistant Manager, TSF Academy; Moderator/Analyst Security Team Join Date: Jan 2005 Location: Ohio Posts: 26,945 OS: WinXP and Vista	Re: [SOLVED] Please help - Trojan horse PSW.Banker5.OGA Hello floydster, I can see by the dds.txt you posted that you indeed did have Virut on this system. A reformat was certainly in order. The only problem you may after the reinstall is if you backed up any files before you reformatted, and placed them back on the system after the reinstall. Virut is a polymorphic file infector which affects the executable files (.exe) and screensaver files (.scr) corrupting them beyond repair in most cases. DO NOT backup any executable files (softwares) and screensavers (*.scr). It attempts to infect any accessed .exe or .scr files by appending itself to the executable. Also, try to avoid backing up compressed files (zip/cab/rar) files that have .exe or .scr files inside them. Virut can penetrate and infect .exe files inside compressed files too. There is a recent variant of Virut which also infects .htm and .html files, so those should not be backed up either. __________________ Member of ASAP since 2005 Member of UNITE since 2006 "It is one life whether we spend it laughing or weeping." "Take the time to laugh--it is the music of the soul."