Mickey was repairing a computer and got a first hand look at a computer with a few viruses on it. Here’s a some screenshots he shared with me during his long tireless battle. After endlessly working with and fighting the computer, he selected Emsisoft’s Free Emergency Kit 3.0 to remove the viruses along with several other anti-malware programs.
If you have not disabled Java or have not updated Java, you should before you experience a long removal process or re-installing your OS and software.
This flaw (Java 7) can be exploited on Linux and Mac operating systems also. Yes, these users are included too. The malicious programmers didn’t leave anyone out.
So you went into safe mode, ran a cleaner (ccleaner or bleachbit) and ran an anti-malware program and when you restart, your PC becomes infected again. So what happened?
Many times, the virus is in the startup group and has been copied to your program files or programdata folder. Even though the cleaners removed the virus, the virus may be dynamic and when restarted, it spawns (polymorphic) and reinfects the computer. The virus has cloned itself and is basically regenerating itself when Windows reboots.
You can get to the source of the problem and delete the virus and left over files just after you clean it in safe mode.
Run msconfig from the search box
Locate the virus – it will usually be a string of numbers and letters
Navigate to the folder it is in and delete the virus manually.
Run your anti-virus and malware again to insure it has been removed (traces)
Run a registry cleaner such as MV-Regclean
Update and use a quality anti-virus program
MSConfig (Finding the rogue software)
Navigate to the folder and delete the files. You will see a pattern of odd files.
Properties of the file
Note: Executing the file by identically clicking on it will reinfect the computer. If single click is on (Mouse), turn off the single mouse click option prior to navigating to the folder containing the virus.
Skilled professionals can capture the virus and practice removing the virus by using an old pc or a virtualized operating system in an educational environment. This should be in a controlled lab. Anytime you work with viruses (removal or educational), it must be controlled and infected computers should be backed up and removed from the network.
How do I remove the virus and what programs should I use? Link
The Sirefef/Zaccess family of Trojans – designed to download other malware, disable the machine’s security features, and often make lasting changes to the computer – is usually distributed to unsuspecting victims via email spam campaigns.
But its peddlers have lately changed tack, and have begun bundling the malware with codecs, game installers and crack/keygen applications, Trend Micro warns.
Emsisoft Emergency Kit 2.0 protects against malware infections of any kind. It is fully portable and therefore requires no installation whatsoever, ready to be launched directly from storage media devices. (shared by addthis) Read more at Help Net Security
If Microsoft Security Essentials is not updating on your computer, there are a couple of things you can do to get it working.
Open up services on your computer (Go to search and type services.msc or go to Administrative Tools under the control panel and double click on services). Find Windows update and make sure it is set to Automatic.
Windows updates must be on. MSE will check for updates when definitions are greater than 24 hours old.
Verify your computer’s time is correct.
Also if you are a heavy user, go to settings and make sure the Start the Scheduled Scan is unchecked (when my PC is on but not in use).
I’ve used Microsoft Security Essentials for over a year now with zero problems. Microsoft is offering an edition upgrade for MSE. Go over and install or upgrade now. Link
Already have it? You can do a Windows Update and it will upgrade you to 4.0 for you. DO NOT click on any emails promising an update. Use our link above, go to Microsoft.com, or use Windows Update ONLY.
Part of our curriculum is reviewing blogs such as Bill Mullins and other popular tech blogs. Rhett Turner a current student mentions Bill quite often in class when Bill reviews of software are posted on his site. A recent review of Ultra Virus Killer on Bill’s site showed how this program uses many programs to help remove malware and viruses. The combination of many powerful malicious software removal programs makes Ultra Virus Killer a software to add to your collection.
Which anti-malware should you use when removing a virus or malware? Here’s a list if removal is tough. These programs can be used for system maintenance. You should use cleaners such as Glary or CCleaner to clean your computer first. So boot into safe mode and uncheck all startup items (NOT process) by typing msconfig in the run line. Then run these programs when removing a virus / malware.
The newly published Symantec Internet Security Threat Report Trends for 2010 counted some 6,253 new bugs — the most ever in a year — that were mostly driven by malware attack toolkits. The ease of deployment that comes with these kits resulted in some 286 million new malware variants, according to Symantec…more
Microsoft now has a Safety Scanner that helps to remove Malware and Viruses. At approximately 70 mb, the Safety Scanner comes in both 32bit and 64bit. An excellent utility to download and run on your computer or an infected computer. MSS expires (for a good reason – I’ve seen people scan a computer and say that it is clean but the file was old -thus the virus was not detected) every 10 days.
Remember to run an anti-virus on your computer and to keep it up-to-date!