Aliases: Win32/Elerad.4041
Variants: N/A

Classification: Malware
Category: Computer Virus

Status: Active & Spreading
Spreading: Slow
Geographical info: Asia, North and South America, and some parts of Europe and Australia
Removal: Easy
Platform: W32
Discovered: 08 Jan 2003
Damage: Low

Characteristics: W32.Elerad. 5041 is a virus that attacks only Windows XP and a lot of portable executable files. As such, the virus may corrupt an infected file. This virus contains a patch that will also spread the virus. These files are called Self-extractor or installer programs. Its infection process consists of searching kernel32.dll image base and function. Normally, if a compromised computer is running on a different Windows Operating System, the infection will not run.

More details about W32.Elerad.5041

This virus will only be fully functional on Windows XP platform. It finds.exe files that are in the same folder as the one from which the virus was executed. It always deals with portable executable files with .exe extension. If it is successful, it will patch itself at the end of this particular file. Infected files are inoperable even if they have been quarantined or repaired. Files cannot be also restored when the virus has already appended itself to the file. One sympton of this virus infection is the message “ PKV by Radix16/ELEMENT I am sorry: MessageBox is my..haha.” You will then be prompted to click the “Ok” button. Clicking the button will automatically execute the file.

When removing the W32.Elerad.5041 program from your computer, make sure everything associated with it is also removed. This can be easily done by downloading a trusted antivirus program from the Internet, install it in your computer, and run a complete system scan. You will see a list of infected files. Delete all of them; however, you should first disable the system restore temporarily; otherwise, all the files you deleted will only be restored. After the complete system scan, modify and restore the original values back through the CD ROM Windows back-up system or Operating System.