Hi Brushstroke,
All that you had as separate backup's on DVDs, or USB sticks can be considered as rescued, all that you had online can be recovered, all on the infected machine cannot be trusted.
The main machine must be considered compromised until it has undergone a complete re-install, the hard disk wiped clean, a new format of it, and reinstall of drivers, OS etc. - so-called total recall method.
The Vitro file infector tries to infect all files it finds indiscriminantly, fails some, fails others partly, and is successful at infecting executables for instance but it does so in a random, and buggy way, making restoration of the files very questionable, but seen from being able to ruin the OS the malware works in a very, very sophisticated way, so the builder of this malcreation must be a very apt programmer to circumvent the Windows File Protection and firewall and run as sytem under the radar to infect as much files as it can infect, the way it launches the infection vector and how is explained in the other extensive forum thread of this malware, where I wrote on it extensively. If indeed you got this mishap from a Torrent Site I would also change all your passwords etc. because the machine as it was cannot be trusted anymore, compromised that is end of argument period.
People should know as this form of Torrent Site computing is not appreciated much by certain parties and the way P2P-ing is considered upon by the content industry, that persisting into these online activities without protective measures is not for the unaware, because the risk of getting infected with malware etc. is very real and substantial as you just experienced, but also trusted sites are getting malware infested more and more, because webmasters do a bad job in protecting visitors from malware-injecting.
When you get your machine back when it is clean, make regular back-ups and stash these away safe in case of such a disaster, upgrade and patch all your third party software using Secunia PSI 1.0.0.4,
download the latest patches for your Operational System, and install apt layered protection, e.g. only one resident av-solution like avast, some non-resident av tools to close the vulnerability window like DrWebCureIT latest version for instance on a pendrive or the portable non-resident ClamWin av,
two free anti-malware scanners like MBAM, SAS to give them a swirl every fortnight fully upgraded and updated, these proggies are free, SpywareBlaster for resident protection and a free software Firewall to top your protective measures. Stay safe and secure is the wish of,
polonus (malware fighter)
