I checked with one of my friends who has taken this little nasty apart. He passed on the info you need to fix this. When the SirCam virus infects your machine, the default value of the registry key:
is set to
C:\recycled\sirc32.exe "%1" %*" This change to the registry ensures that the virus runs first each time you try to run any executable. If the removal process used eliminates the sirc32.exe file but does not correct the registry, then no executables will be able to run, as the file no longer exists. To get around this, the file regedit.exe will need to be renamed to regedit.com and the key corrected to read:
@= "%1" %*" There is a batch file that will make this fix available here.
Dig Deeper on Information security policies, procedures and guidelines
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.