Home / Parasites / Viruses / Virus:Win32/Virut.BN
Danger level 6
Type: Viruses
Common infection symptoms:
  • Connects to the internet without permission
  • Installs itself without permissions
  • Slow Computer
  • Slow internet connection

Virus:Win32/Virut.BN

VirusWin32Virut.BN is a malicious virus which infects .exe and .SCR Windows files. First released on 6 March 2010, it also creates backdoors to the system which makes it easier for other malicious threats to gain entry to the system. It will also connect to a remote IRC server which allows a remote attack to download and execute arbitrary files onto the infected PC. VirusWin32Virut.BN operates under various other aliases across the Internet, some of which are:

Win32/Virut.F
W32/Virut.AI!Generic
W32/Virut.gen
Win32.Virtob.Gen.12
Win32/Virut.17408
Win32.Virut.56
Win32/Virut.NBP
Virus.Win32.Virut.ce
W32/Virut.n.gen
W32/Virut.CX
W32/Sality.AO
Win32.Virut.cl
W32.Virut.CF
PE_VIRUX.J-2

This seemingly ubiquitous infection will go on to completely infect your entire system and will cause severe damage to your PC. It will afford criminal developers complete control of your system, allowing them to use it for seditious purposes such as Denial of Service (DoS) attacks, mass spamming campaigns and other nefarious purposes. Because of its surreptitious infiltration of the system and the fact that it completes all of its actions in the system’s background the user will find it difficult to detect and remove VirusWin32Virut.BN from the system without some help from a powerful security tool.

VirusWin32Virut.BN will disable the Windows System File Protection by injecting its code into the winlogon.exe Windows process. The code will patch the system file sfc_os.dll in memory which will allow the virus to infect files which are protected by Windows System File Protection. It will then go on to infect .exe and .scr files on access. This means actions like viewing or copying files with Explorer will result in files being infected and the virus will spread from one machine to another.

In order to limit the damage this malicious threat will be able to cause your PC you need to destroy VirusWin32Virut.BN with the help of a genuine security tool. This will not only obliterate VirusWin32Virut.BN for good but will also protect your PC against similar attacks in future.

Download Spyware Removal Tool to Remove* Virus:Win32/Virut.BN
  • Quick & tested solution for Virus:Win32/Virut.BN removal.
  • 100% Free Scan for Windows
disclaimer
Disclaimer

Comments

  1. Robert Bryant Apr 7, 2012

    I don't know which version it is but here's the infected reg. key:
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Windows Hosts Controller

    Also found in a file here:
    c:\WINDOWS\Fonts\unwise_.exe

    I catch this thing almost every month. Pure evil.

Post comment — WE NEED YOUR OPINION!

Comment:
Name:
Please enter security code:
 This is a captcha-picture. It is used to prevent mass-access by robots.

 
© 2006-2024 pcthreat.com  |  Terms of use |  Privacy policy |  About us |  Link to US