Win32:Vitro. What is is?

I am not one to use scare tactics when talking about a virus that is spreading, but this one is a doozie.

Get malware alerts all the time. Subscribe to my free newsletter at savemybutt.com

There is a new variation of the Virut Trojan, which began life in 2007, going around called Win32:Vitro. You obtain and install Vitro by visiting websites that ask you to install a video codec that is fake, before you can watch free movies online.

Vitro injects itself into ALL .exe files on your computer slowly and over time, making them unable to run. This includes Notepad, Paint, WordPad, Word, Excel, Outlook and Outlook Express, Quicken, Adobe products, and all of you browsers, and any software you have installed.

It also invites and installs fake clean up tools like Ant-Virus 360 and System Protector as well as others.

You will know you have it if you can not open a program that opened just a minute ago or recently or if your anti-virus tells you that a needed .exe file is infected with Win32:Vitro.

The Vitro Trojan WILL, I repeat, WILL require you to back up your data, format your hard disk, then do a wipe of your drive, then reinstall Windows, all of the service packs and updates, all of your software, then restore your data. This IS the only way to get rid of it.

If you have any older software that you do not have the original installation disk to, say goodbye. There IS not way to repair them.

Also, if you use a USB drive, external, thumb, jump, or any other USB storage device that has .exe files on it, they WILL also become infected. That means the will HAVE to be deleted by formatting and wiping that drive as well.

You will not get this virus by visiting You Tube, Hulu, Netflix, Amazon, TV networks, or any other known big name site to watch video. If you frequent some porn sites, illegal movie sites, download illegal movies, or sites that you never heard of to watch video, your chances of getting this virus are huge.

If you are using a product like Acronis True Image to make full image backups onto an external drive, you are in better shape. However, if you backed up since you were infected with Vitro, your backup is now infected as well.

Avast, Norton, McAfee, and all of the good anti-virus programs detect Vitro. But, Vito cannot be removed or repaired. You MUST FORMAT and WIPE the drive to get rid of it.

If you can play movies from YouTube or Netflix you don’t need any video codecs. If they are offered for download and installation, get the heck off that site NOW! And, don’t click on anything on the site.

If you do click on something that says you need it to play video, shut your machine off NOW! Your computer will have to be taken into a reputable service center to try and clean it up before any damage is done. This cannot be cleaned up via remote control either. Make sure the service center backs up you data, photos, and music before they do anything.

Please be careful with visiting sites and clicking on anything that is not familiar. This is not cause by a security hole in Windows or any of your software. You get infected with this because you give it permission to install by clicking on malicious software installations offered to you on malicious or unknown websites. Use common sense and read what pops up on the screen.

If you don’t know what it is or don’t understand what it is saying, leave that site immediately and call someone for assistance.

Mike DiMichele
savemybutt.com

Website Wednesday Night
WGN Radio 720AM - Chicago