I got hit with this virus last night win7 64, it may have been active for 1-2hrs. I woke up this morning and caught it when I noticed my MS essentials would not run and my system kept rebooting.
Now, my questions.
I have a win7 system image backup from 3 months ago. I am restoring the image now (50% complete). Will this leave me clean? I am assuming it will be just as good as a fresh install?
Lastly, I had 2 disks on my system the OS and an old 300gig for some data. Currently I have disconnected my data drive as I am unsure if this virus could have planted something on a secondary disk. Is that possible or should my secondary disk be clean? If I connect and virus scan the secondary disk will that be good enough, or might it detect something and then the detection itself will re-install the virus.
Also, I took a backup of my infected PC's Desktop so that I can dip into any files since my system image was created. Mostly images and some website backups. Could sirefef have installed anything on my old systems desktop or do you think those files should be fine? I'll do a virus scan on them as well.
I just want to ensure I nuked this thing via system image restore. Thanks!!
***update*** my system restore seems fine so far. Just doing a full virus scan then need to do some windows updating. So glad I took that backup! Still it remains to be seen if my secondary disk is ok..
***update2*** system seems fine. I did a scan of my old desktop folder and it came up clean, but I only copied a few known files from it to my reimaged system. I have not hooked my "data" drive back up yet.
Edited by beakernz, 01 July 2012 - 12:22 AM.