If you get the Virut.CF virus on your computer, you should resign yourself to wiping the hard drive and reinstalling. This particularly nasty virus bypasses Windows File Protection and actually infects pretty much every .exe that is accesses by the computer. In addition it can propogate over networks and flash drives, so be careful!
You have this virus if you notice .tmp files (bn1.tmp, bn2.tmp, a.tmp, 9.tmp, etc) running in your task manager.
If you see this behavior you should disconnect your computer from the network immediately. After doing so, remove the hard drive and attach it with a USB converter to a workstation with up to date antivirus (make sure this workstation is also disconnected from the network just to be safe). Then scan the hard drive using whatever antivirus package you have. More than likely it will find upwards of 500 infections. When it has finished, you may copy any data off of the drive that you want to keep. Then you must wipe the drive and reinstall. This is the ONLY way to insure the virus is gone for good. I have had this virus come back after cleaning systems thoroughly with multiple av and antispyware products.
No comments:
Post a Comment