Brought to me this morning is an XP system which has a brand new, undetectable variant of either Virux or Virut.
I have restored the registry to 9/10/2009 (thank you ERUNT!), deleted several trojan (.SYS) files using a Dos boot CD, and scoured the system; even running AVG's Virut removal tool (V1.22+) and nothing is detected (period) But; even in Safe Mode, running Sysinternals Autoruns, it starts to load, dissapears, and the Autoruns.exe file is then corrupted. Even better, it has been set so I can't copy it to send out for analysis!
The owner of the system was initially attacked on 9/30/2009.
Full Version: Brand New Virut or Virux variant
Virux and Virut are bad already. Possibly most people's worst nightmares in terms of computer viruses (along with sality - i think 
? ) so any new varient isn't welcomed!
? ) so any new varient isn't welcomed!
Wow... that is scary 
A virus destroyed one of my older computers, it was infected with the old Virux. Now i'm hoping to work in the field of Computer Secuity.
A virus destroyed one of my older computers, it was infected with the old Virux. Now i'm hoping to work in the field of Computer Secuity.
What I can't fathom is how ZIEF.PL keeps coming back online even though that is where the HTML version of the attack pulls the code from!
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.