Virut.ce Removal Plan

Discussion in 'Malware Help (A Specialist Will Reply)' started by cyclone3211, Feb 10, 2009.

  1. cyclone3211

    cyclone3211 Private E-2

    My ZoneAlarm Suite has indicated the presents of Win32.Virut.ce and a long list of .exe files to destroy. It would appear that my hard drive is toast, or soon will be, and removal is my only effective option based on what I have been able to learn about the Virut virus.

    I need help on the Virut removal process.

    ZoneAlarm only indicated problems with files on my C drive. I immediately turn the machine off and currently using an older unit on my home network.

    I need confirmation in my plan to restore my main machine which is as follows:
    1. Other Drives. I have two other hard drives on that system. If no files on either of these two drives where included in the ZoneAlarm alert, can I conclude that they were not infected?

    2. Dell has a partition on the C drive to restore the machine to the original state as it was originally delivered. Can I just do that Dell PC Restore by Symantec or would that be infected?

    3. C drive. If I can use the Dell Restore, do I need to format the C drive prior to using the Restore function from the partition?

    4. Back Up. After the Dell Restore function is completed, I plan to do a complete backup restore to the C drive which is only a month old. This backup file is on an external drive which has not been on during this Virus attach but has been attached to this infected PC.

    If my step-by-step plan is faulty, would you please advise as to your recommendation.

    After your response to the above…………….I will go to it.
     
    cyclone3211, Feb 10, 2009
    #1
  2. cyclone3211

    cyclone3211 Private E-2

    Unable to provide the info as indicated in the Malware Removal Guide, I would if I could but I can not.

    The system will boot to what appears to be Windows Explorer screen but the screen is blank.

    I have tried to run Explorer from the Task Manager run command and can not. Every program exe file that I tried the same message was received, which was as follows:

    Windows can not access the specific device, path . or file. You may not have the appropriate permission to access the item.

    If there is a way that you can suggest that I would be able to comply with the guide at this point, please let me know.

    As ut stands, I just want to be clear of this and get it behind me.

    If you wish not to provide advice on the suggested plan or options, please let me know so that I can proceed on my own as I have described
     
    cyclone3211, Feb 11, 2009
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    Yes Virut is nasty and basically puts your PC into a totally unreliable and untrustworthy state where a reinstall it really the best option to take.

    Not necessarily. Executable files on thos drives could also be infected. You will have to scan them to find out.

    You should be able to reimage to the original factory shipped condition. I would still run a full scan with your protection software immediately afterwards.

    If you can run the restore procedure from Dell without having Windows working, like from the BIOS at boot up, then yes it would be good to format C first.

    Are you sure that your backup does not contain the infection. Sometimes infections like this take a little while to show their effects. Before doing any restoration, you should fully scan your backups.
     
    chaslang, Feb 13, 2009
    #3

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds