Win32.Vitro
Win32.Vitro is a relative of the Virut family of viruses and shares Win32.Virut's tactics and structure. Win32.Vitro may use polymorphic techniques to conceal itself from anti-virus software, infect .exe files, hide Win32.Vitro's files in a fake Recycle Bin, open a backdoor in your security, download and install other harmful programs and run itself whenever Windows starts. Since Win32.Vitro has traits of both a virus and a Trojan and is a serious threat, you should delete Win32.Vitro by relying on a security program that's designed to scan for threats like Win32.Vitro instead of trying to uninstall Win32.Vitro without assistance.
Win32.Vitro: The Counterfeit Recycle Bin on Your Desktop
Win32.Vitro infections have been seen in 2010 and 2011, although the Virut family of viruses that Win32.Vitro is linked to is older still. Most victims of a Win32.Vitro attack report that the infection occurred after they downloaded a fake codec or other software update from a free movie website. As a virus, Win32.Vitro may also spread by infecting .exe files on removable drives and in network-shared locations of your computer.
The first thing Win32.Vitro does on your PC is disable your real Recycle Bin and create a fake duplicate. This clone of your Recycle Bin is even registered with a desktop.ini file so that the Recycle Bin appears to be identical to a normal one in all ways. Win32.Vitro then hides Win32.Vitro's primary files in this fake Recycle Bin to avoid being detected or deleted.
From this safe hiding place, Win32.Vitro can launch several different attacks by using behavior that borrows tactics from viruses as well as from Trojan threats.
The Barrage of Win32.Vitro Hostilities Against Your PC
Win32.Vitro may engage in some or all of the following behavior, all of which are harmful to your computer:
- Advertise for other threats, particularly rogue security programs. Some rogue security programs that are linked to Win32.Vitro infections include Antivirus 360, System Protector and Antivirus 2008.
- Install other harmful software. Typical Win32.Vitro payloads can include rogue security programs, other Trojans or spyware such as keyloggers.
- Infect .exe files on your computer over all available drives. This includes drives that access CDs and other removable storage devices. Longterm Win32.Vitro infections can attack .exe files to the point of making your PC unable to operate.
- Create a hole in your network security by opening ports or adding exceptions to your firewall.
- Making unauthorized contact with IRC servers and remote IP addresses for the sake of sending or receiving potentially damaging information.
The advanced nature of a Win32.Vitro infection requires equally advanced removal techniques; simply deleting Win32.Vitro's fake Recycle Bin will cause other errors and may even make your PC unable to function. Remove Win32.Vitro by using an anti-malware program that can reverse all of Win32.Vitro's changes, including Registry alterations.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.