Win32.Vitro Description

Win32.Vitro is a relative of the Virut family of viruses and shares Win32.Virut’s tactics and structure. Win32.Vitro may use polymorphic techniques to conceal itself from anti-virus software, infect .exe files, hide Win32.Vitro’s files in a fake Recycle Bin, open a backdoor in your security, download and install other harmful programs and run itself whenever Windows starts. Since Win32.Vitro has traits of both a virus and a Trojan and is a serious threat, you should delete Win32.Vitro by relying on a security program that’s designed to scan for threats like Win32.Vitro instead of trying to uninstall Win32.Vitro without assistance.

Win32.Vitro: The Counterfeit Recycle Bin on Your Desktop

Win32.Vitro infections have been seen in 2010 and 2011, although the Virut family of viruses that Win32.Vitro is linked to is older still. Most victims of a Win32.Vitro attack report that the infection occurred after they downloaded a fake codec or other software update from a free movie website. As a virus, Win32.Vitro may also spread by infecting .exe files on removable drives and in network-shared locations of your computer.

The first thing Win32.Vitro does on your PC is disable your real Recycle Bin and create a fake duplicate. This clone of your Recycle Bin is even registered with a desktop.ini file so that the Recycle Bin appears to be identical to a normal one in all ways.

» Learn more about SpyHunter's Spyware Detection Tool
and steps to uninstall SpyHunter.

Win32.Vitro then hides Win32.Vitro’s primary files in this fake Recycle Bin to avoid being detected or deleted.

From this safe hiding place, Win32.Vitro can launch several different attacks by using behavior that borrows tactics from viruses as well as from Trojan threats.

The Barrage of Win32.Vitro Hostilities Against Your PC

Win32.Vitro may engage in some or all of the following behavior, all of which are harmful to your computer:

  • Advertise for other threats, particularly rogue security programs. Some rogue security programs that are linked to Win32.Vitro infections include Antivirus 360, System Protector and Antivirus 2008.
  • Install other harmful software. Typical Win32.Vitro payloads can include rogue security programs, other Trojans or spyware such as keyloggers.
  • Infect .exe files on your computer over all available drives. This includes drives that access CDs and other removable storage devices. Longterm Win32.Vitro infections can attack .exe files to the point of making your PC unable to operate.
  • Create a hole in your network security by opening ports or adding exceptions to your firewall.
  • Making unauthorized contact with IRC servers and remote IP addresses for the sake of sending or receiving potentially damaging information.

The advanced nature of a Win32.Vitro infection requires equally advanced removal techniques; simply deleting Win32.Vitro’s fake Recycle Bin will cause other errors and may even make your PC unable to function. Remove Win32.Vitro by using an anti-malware program that can reverse all of Win32.Vitro’s changes, including Registry alterations.

Win32.Vitro Automatic Detection Tool (Recommended)

Is your PC infected with Win32.Vitro? To safely & quickly detect Win32.Vitro we highly recommend you run the malware scanner listed below.

Posted: April 10, 2009 | By
Rate this article:
1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 3.00 out of 5)
Loading ... Loading ...
Threat Metric
Threat Level: 8/10

Leave a Reply

What is 5 + 14 ?
Please leave these two fields as-is:
IMPORTANT! To be able to proceed, you need to solve the following simple math (so we know that you are a human) :-)