Tuesday, January 27, 2009
Spyware and Adware Knowledge
What is Spyware? Spyware is a term for software that stealth installs on computer systems without the user's knowledge that allows companies or people to monitor the user's computer or internet activity. This monitoring may include keyboard strokes, website visits, form submissions, email addresses, passwords or even bank account details. Spyware can infect computers systems by:
* Clicking a Pop up window
* Opening a spy carrying email attachment
* Exploiting a security flaw
* Visiting a website which has a drive-by-download. 1 in 62 domains perform drive-by-downloads. Websites that offer pirated software are the worst offenders.
* Downloading a spy hidden in another program. 5% of downloadable programs contain piggybacked spyware. Freeware, peer-to-peer networks, pirated games, crack files, movie and celebrity websites pose the greatest risk.
What is Adware? Adware is a term for software that displays advertisements. It is usually free of charge and earns income for the vendor by displaying advertisements. Adware can monitor the user's internet activity, sending and receiving information with its home server so that targeted advertising can be spawned in the form of pop-up windows and/or toolbar links. Adware can infect computers using the same unethical methods employed by spyware, so adware can also be spyware.
Symptoms
Spyware and adware can sometimes severely degrade computer performance. A slow running computer could be an indication of an infection. Other signs of spyware or adware infections may include:
* excessive pop up ads
* browser homepage changed/hijacked without the user's knowledge, which either cannot be changed or will come back to haunt the user later
* unusual websites in favorites which may reappear after being removed
* a new browser toolbar installed without the user's knowledge, which cannot be removed or may reappear after being removed
* search requests are redirected to a search engine you don't normally use
* the phone bill has unexplained calls to 900 numbers
* anti-spyware or other security programs stop working normally
* fraudulent alert messages about spyware or virus infections
* the modem's send and receive lights blink when the user is not doing anything online
* everything appears normal (can only be detected by anti-spyware).
* Clicking a Pop up window
* Opening a spy carrying email attachment
* Exploiting a security flaw
* Visiting a website which has a drive-by-download. 1 in 62 domains perform drive-by-downloads. Websites that offer pirated software are the worst offenders.
* Downloading a spy hidden in another program. 5% of downloadable programs contain piggybacked spyware. Freeware, peer-to-peer networks, pirated games, crack files, movie and celebrity websites pose the greatest risk.
What is Adware? Adware is a term for software that displays advertisements. It is usually free of charge and earns income for the vendor by displaying advertisements. Adware can monitor the user's internet activity, sending and receiving information with its home server so that targeted advertising can be spawned in the form of pop-up windows and/or toolbar links. Adware can infect computers using the same unethical methods employed by spyware, so adware can also be spyware.
Symptoms
Spyware and adware can sometimes severely degrade computer performance. A slow running computer could be an indication of an infection. Other signs of spyware or adware infections may include:
* excessive pop up ads
* browser homepage changed/hijacked without the user's knowledge, which either cannot be changed or will come back to haunt the user later
* unusual websites in favorites which may reappear after being removed
* a new browser toolbar installed without the user's knowledge, which cannot be removed or may reappear after being removed
* search requests are redirected to a search engine you don't normally use
* the phone bill has unexplained calls to 900 numbers
* anti-spyware or other security programs stop working normally
* fraudulent alert messages about spyware or virus infections
* the modem's send and receive lights blink when the user is not doing anything online
* everything appears normal (can only be detected by anti-spyware).
Friday, January 23, 2009
Download PCMAV 1.92 Plus Autoit: PCMAV 1.92 Update Build2
Best of Free Indonesian Antivirus, majalah PC Media edisi 02/2009 Autoit: PCMAV 1.92 Update Build2 update available now!. PCMAV is a free antivirus software created by PC MEDIA Magazine. PCMAV have 2.493 +20 Update Build antivirus signatures and can be joining with clamav 0.94 antivirus signatures. Alternative antivirus for local virus.
Whats Changed:
* Fixed, false alarm (heuristhic miss detection) for some application and script
* Updated, chanhes for virus names according their new variants
* Fixed, few minor bugs found and internal code improved.
PCMAV versi 1.92 (PC MEDIA ANTIVIRUS) release 17 Januari 2009 :
PCMAV 1.92 winrar download mirror1
PCMAV 1.92 winzip download mirror2
PCMAV 1.92 winrar download mirror3
Update: New Update Build2 for PCMAV 1.92 release 23 January 2008
Update Build2 for PCMAV 1.92 download mirror1
Update Build2 for PCMAV 1.92 download mirror2
Update Build2 for PCMAV 1.92 download mirror3
To obtain and use PCMAV update:
simply download the .vdb file and replace the existing one on current PCMAV folder. Beside this method, PCMAV also has auto-online update feature and probably it was the easiest way to update your current virus databases if you have direct internet connection.
Full Performance!! PCMAV Plus Clamav. Get it Now!
Clamav 0.94 + MSVCRT80 :
ClamAV Virus Databases:
main.cvd ver. 49 released on 22 Oct 2008 22:03 +0000
daily.cvd ver. 8897 released on 23 Jan 2009 12:59 +0000
How to combine CLAMAV and PCMAV:
1. Turn off PCMAV rtp or PCMAV cln when active.
2. Download Clamav 0.94, Clamav virus database (main.cvd & daily.cvd) above.
3. Enter all the files into the folder where PCMAV are.
4. run again PCMAV rtp or PCMAV cln.
virus PCMAV 1.92 Update Build2:
Autoit.CE
Autoit.CF
Autoit.CF.inf
Autoit.CG
Autoit.CH
Autoit.CI
Autoit.CJ
Autoit.CK
BudiDarma
Clara
LoveStory
MoneyMy
Nimbuzz
Nimbuzz.bmp
Nimbuzz.inf
Nimbuzz.ini
Valeria.C
Valeria.C.htt
Valeria.C.ini
Valeria.C.txt
Best of Free Indonesian Antivirus, majalah PC Media edisi 02/2009 Autoit: PCMAV 1.92 Update Build2 update available now!. PCMAV is a free antivirus software created by PC MEDIA Magazine. PCMAV have 2.493 +20 Update Build antivirus signatures and can be joining with clamav 0.94 antivirus signatures. Alternative antivirus for local virus.
Whats Changed:
* Fixed, false alarm (heuristhic miss detection) for some application and script
* Updated, chanhes for virus names according their new variants
* Fixed, few minor bugs found and internal code improved.
PCMAV versi 1.92 (PC MEDIA ANTIVIRUS) release 17 Januari 2009 :
PCMAV 1.92 winrar download mirror1
PCMAV 1.92 winzip download mirror2
PCMAV 1.92 winrar download mirror3
Update: New Update Build2 for PCMAV 1.92 release 23 January 2008
Update Build2 for PCMAV 1.92 download mirror1
Update Build2 for PCMAV 1.92 download mirror2
Update Build2 for PCMAV 1.92 download mirror3
To obtain and use PCMAV update:
simply download the .vdb file and replace the existing one on current PCMAV folder. Beside this method, PCMAV also has auto-online update feature and probably it was the easiest way to update your current virus databases if you have direct internet connection.
Full Performance!! PCMAV Plus Clamav. Get it Now!
Clamav 0.94 + MSVCRT80 :
ClamAV Virus Databases:
main.cvd ver. 49 released on 22 Oct 2008 22:03 +0000
daily.cvd ver. 8897 released on 23 Jan 2009 12:59 +0000
How to combine CLAMAV and PCMAV:
1. Turn off PCMAV rtp or PCMAV cln when active.
2. Download Clamav 0.94, Clamav virus database (main.cvd & daily.cvd) above.
3. Enter all the files into the folder where PCMAV are.
4. run again PCMAV rtp or PCMAV cln.
virus PCMAV 1.92 Update Build2:
Autoit.CE
Autoit.CF
Autoit.CF.inf
Autoit.CG
Autoit.CH
Autoit.CI
Autoit.CJ
Autoit.CK
BudiDarma
Clara
LoveStory
MoneyMy
Nimbuzz
Nimbuzz.bmp
Nimbuzz.inf
Nimbuzz.ini
Valeria.C
Valeria.C.htt
Valeria.C.ini
Valeria.C.txt
Best of Free Indonesian Antivirus, majalah PC Media edisi 02/2009 Autoit: PCMAV 1.92 Update Build2 update available now!. PCMAV is a free antivirus software created by PC MEDIA Magazine. PCMAV have 2.493 +20 Update Build antivirus signatures and can be joining with clamav 0.94 antivirus signatures. Alternative antivirus for local virus.
Sunday, January 18, 2009
Download PCMAV 1.92 Plus Valeria.C: PCMAV 1.92 Update Build1
Best of Free Indonesian Antivirus, majalah PC Media edisi 02/2009 PCMAV 1.92 Update Build 1 update available now!. PCMAV is a free antivirus software created by PC MEDIA Magazine. PCMAV have 2.493 +10 Update Build antivirus signatures and can be joining with clamav 0.94 antivirus signatures. Alternative antivirus for local virus.
Whats Changed:
* Added, cleaner and removal database for new 48 viruses
* Added, special cleaner for virus Hatred
* Fixed, false alarm (heuristhic miss detection) for some application and script
* Updated, chanhes for virus names according their new variants
* Fixed, few minor bugs found and internal code improved.
PCMAV versi 1.92 (PC MEDIA ANTIVIRUS) release 17 Januari 2009 :
PCMAV 1.92 winrar download mirror1
PCMAV 1.92 winzip download mirror2
PCMAV 1.92 winrar download mirror3
Update: New Update Build1 for PCMAV 1.92 release 17 January 2008
Update Build1 for PCMAV 1.92 download mirror1
Update Build1 for PCMAV 1.92 download mirror2
Update Build1 for PCMAV 1.92 download mirror3
To obtain and use PCMAV update:
simply download the .vdb file and replace the existing one on current PCMAV folder. Beside this method, PCMAV also has auto-online update feature and probably it was the easiest way to update your current virus databases if you have direct internet connection.
Full Performance!! PCMAV Plus Clamav. Get it Now!
Clamav 0.94 + MSVCRT80 :
ClamAV Virus Databases:
main.cvd ver. 49 released on 22 Oct 2008 22:03 +0000
daily.cvd ver. 8874 released on 18 Jan 2009 05:02 +0000
How to combine CLAMAV and PCMAV:
1. Turn off PCMAV rtp or PCMAV cln when active.
2. Download Clamav 0.94, Clamav virus database (main.cvd & daily.cvd) above.
3. Enter all the files into the folder where PCMAV are.
4. run again PCMAV rtp or PCMAV cln.
virus PCMAV 1.92 Update Build1:
BudiDarma
LoveStory
Nimbuzz
Nimbuzz.bmp
Nimbuzz.inf
Nimbuzz.ini
Valeria.C
Valeria.C.htt
Valeria.C.ini
Valeria.C.txt
Best of Free Indonesian Antivirus, majalah PC Media edisi 02/2009 Valeria.C: PCMAV 1.92 Update Build1 update available now!. PCMAV is a free antivirus software created by PC MEDIA Magazine. PCMAV have 2.493 +10 Update Build antivirus signatures and can be joining with clamav 0.94 antivirus signatures. Alternative antivirus for local virus.
Whats Changed:
* Added, cleaner and removal database for new 48 viruses
* Added, special cleaner for virus Hatred
* Fixed, false alarm (heuristhic miss detection) for some application and script
* Updated, chanhes for virus names according their new variants
* Fixed, few minor bugs found and internal code improved.
PCMAV versi 1.92 (PC MEDIA ANTIVIRUS) release 17 Januari 2009 :
PCMAV 1.92 winrar download mirror1
PCMAV 1.92 winzip download mirror2
PCMAV 1.92 winrar download mirror3
Update: New Update Build1 for PCMAV 1.92 release 17 January 2008
Update Build1 for PCMAV 1.92 download mirror1
Update Build1 for PCMAV 1.92 download mirror2
Update Build1 for PCMAV 1.92 download mirror3
To obtain and use PCMAV update:
simply download the .vdb file and replace the existing one on current PCMAV folder. Beside this method, PCMAV also has auto-online update feature and probably it was the easiest way to update your current virus databases if you have direct internet connection.
Full Performance!! PCMAV Plus Clamav. Get it Now!
Clamav 0.94 + MSVCRT80 :
ClamAV Virus Databases:
main.cvd ver. 49 released on 22 Oct 2008 22:03 +0000
daily.cvd ver. 8874 released on 18 Jan 2009 05:02 +0000
How to combine CLAMAV and PCMAV:
1. Turn off PCMAV rtp or PCMAV cln when active.
2. Download Clamav 0.94, Clamav virus database (main.cvd & daily.cvd) above.
3. Enter all the files into the folder where PCMAV are.
4. run again PCMAV rtp or PCMAV cln.
virus PCMAV 1.92 Update Build1:
BudiDarma
LoveStory
Nimbuzz
Nimbuzz.bmp
Nimbuzz.inf
Nimbuzz.ini
Valeria.C
Valeria.C.htt
Valeria.C.ini
Valeria.C.txt
Best of Free Indonesian Antivirus, majalah PC Media edisi 02/2009 Valeria.C: PCMAV 1.92 Update Build1 update available now!. PCMAV is a free antivirus software created by PC MEDIA Magazine. PCMAV have 2.493 +10 Update Build antivirus signatures and can be joining with clamav 0.94 antivirus signatures. Alternative antivirus for local virus.
Saturday, January 10, 2009
Download Recycler variant: PCMAV 1.91 Update Build4
Best of Free Indonesian Antivirus, Recycler variant: PCMAV 1.91 Update Build4 update available now!. PCMAV is a free antivirus software created by PC MEDIA Magazine. PCMAV have 2.445 +41 Update Build antivirus signatures and can be joining with clamav 0.94 antivirus signatures. Alternative antivirus for local virus.
Whats Changed:
* Added, cleaner and removal database for new 96 viruses
* Added, special cleaner for virus Hatred
* Fixed, false alarm (heuristhic miss detection) for some application and script
* Updated, chanhes for virus names according their new variants
* Fixed, few minor bugs found and internal code improved.
PCMAV versi 1.91 (PC MEDIA ANTIVIRUS) release 20 Dec 2008 :
PCMAV 1.91 winrar download mirror1
PCMAV 1.91 winzip download mirror2
PCMAV 1.91 winrar download mirror3
PCMAV 1.91 winrar download mirror4
Update: New Update Build4 for PCMAV 1.91 release 9 January 2008
Update Build4 for PCMAV 1.91 download mirror1
Update Build4 for PCMAV 1.91 download mirror2
Update Build4 for PCMAV 1.91 download mirror3
Full Performance!! PCMAV Plus Clamav. Get it Now!
Clamav 0.94 + MSVCRT80 :
ClamAV Virus Databases:
main.cvd ver. 49 released on 22 Oct 2008 22:03 +0000
daily.cvd ver. 8850 released on 10 Jan 2009 23:20 +0000
How to combine CLAMAV and PCMAV:
1. Turn off PCMAV rtp or PCMAV cln when active.
2. Download Clamav 0.94, Clamav virus database (main.cvd & daily.cvd) above.
3. Enter all the files into the folder where PCMAV are.
4. run again PCMAV rtp or PCMAV cln.
Recycler variant. Recycler.J, K and L, new variants found. The typical of this virus is how it spread technique. All of the variants that we have, Recycler variant done the same, namely masquerade as Recycle Bin. For example is when virus attacks the flash disk. In the flash disk of the victim will be the folder with the name of Recycler in which there is a folder using the name of alpha numeric example "S-1-5-21-1482476501-1644491937-682003330-1013" with the icon is similar to the Recycle Bin icon. If this folder, click on or accessed from the Explorer, the file the virus will not be visible. To view them, you can go to command prompt with the command "dir / a".
virus PCMAV 1.91 Update Build4:
Acha
Acha.exe
Acha.ini.A
Acha.ini.B
Acha.ini.C
Acha.txt.A
Acha.txt.B
Acha.txt.C
Acha.txt.D
Acha.txt.E
Acha.txt.F
Allya.vbs.B
Aurel.vbs
Aurel.vbs.inf
Autoit.CA
Autoit.CB
Autoit.CC
Autoit.CD
Autorunme.C
Bekedek
Fdshield
Formalin.E
Kadaj.C
Malingsi.C
MoontoxBro.C
MoontoxBro.C.bat
MoontoxBro.C.inf
Piranha
Purwo.C
Raider.vbs.H
Real
Recycler.J
Recycler.K
Recycler.L
Rieysha-Sma
Rieysha-Sma.inf
Rieysha-Sma.vbs
Robert.B
Valeria.B
Windx-Maxtrox.B
Windx-Maxtrox.C
To obtain and use PCMAV update:
simply download the .vdb file and replace the existing one on current PCMAV folder. Beside this method, PCMAV also has auto-online update feature and probably it was the easiest way to update your current virus databases if you have direct internet connection.
The new Recycler variant: PCMAV 1.91 Update Build4 has capable to detect and remove new 2.445 + 41 Update viruses and its variant that reported and found in the world.
Whats Changed:
* Added, cleaner and removal database for new 96 viruses
* Added, special cleaner for virus Hatred
* Fixed, false alarm (heuristhic miss detection) for some application and script
* Updated, chanhes for virus names according their new variants
* Fixed, few minor bugs found and internal code improved.
PCMAV versi 1.91 (PC MEDIA ANTIVIRUS) release 20 Dec 2008 :
PCMAV 1.91 winrar download mirror1
PCMAV 1.91 winzip download mirror2
PCMAV 1.91 winrar download mirror3
PCMAV 1.91 winrar download mirror4
Update: New Update Build4 for PCMAV 1.91 release 9 January 2008
Update Build4 for PCMAV 1.91 download mirror1
Update Build4 for PCMAV 1.91 download mirror2
Update Build4 for PCMAV 1.91 download mirror3
Full Performance!! PCMAV Plus Clamav. Get it Now!
Clamav 0.94 + MSVCRT80 :
ClamAV Virus Databases:
main.cvd ver. 49 released on 22 Oct 2008 22:03 +0000
daily.cvd ver. 8850 released on 10 Jan 2009 23:20 +0000
How to combine CLAMAV and PCMAV:
1. Turn off PCMAV rtp or PCMAV cln when active.
2. Download Clamav 0.94, Clamav virus database (main.cvd & daily.cvd) above.
3. Enter all the files into the folder where PCMAV are.
4. run again PCMAV rtp or PCMAV cln.
Recycler variant. Recycler.J, K and L, new variants found. The typical of this virus is how it spread technique. All of the variants that we have, Recycler variant done the same, namely masquerade as Recycle Bin. For example is when virus attacks the flash disk. In the flash disk of the victim will be the folder with the name of Recycler in which there is a folder using the name of alpha numeric example "S-1-5-21-1482476501-1644491937-682003330-1013" with the icon is similar to the Recycle Bin icon. If this folder, click on or accessed from the Explorer, the file the virus will not be visible. To view them, you can go to command prompt with the command "dir / a".
virus PCMAV 1.91 Update Build4:
Acha
Acha.exe
Acha.ini.A
Acha.ini.B
Acha.ini.C
Acha.txt.A
Acha.txt.B
Acha.txt.C
Acha.txt.D
Acha.txt.E
Acha.txt.F
Allya.vbs.B
Aurel.vbs
Aurel.vbs.inf
Autoit.CA
Autoit.CB
Autoit.CC
Autoit.CD
Autorunme.C
Bekedek
Fdshield
Formalin.E
Kadaj.C
Malingsi.C
MoontoxBro.C
MoontoxBro.C.bat
MoontoxBro.C.inf
Piranha
Purwo.C
Raider.vbs.H
Real
Recycler.J
Recycler.K
Recycler.L
Rieysha-Sma
Rieysha-Sma.inf
Rieysha-Sma.vbs
Robert.B
Valeria.B
Windx-Maxtrox.B
Windx-Maxtrox.C
To obtain and use PCMAV update:
simply download the .vdb file and replace the existing one on current PCMAV folder. Beside this method, PCMAV also has auto-online update feature and probably it was the easiest way to update your current virus databases if you have direct internet connection.
The new Recycler variant: PCMAV 1.91 Update Build4 has capable to detect and remove new 2.445 + 41 Update viruses and its variant that reported and found in the world.
Thursday, January 8, 2009
Step to do If Your Computer Is Infected
Sometimes even an experienced user will not realise that a computer is infected with a virus. This is because viruses can hide among regular files, or camoflage themselves as standard files. This section contains a detailed discussion of the symptoms of virus infection, how to recover data after a virus attack and how to prevent data from being corrupted by malware.
Symptoms of infection
There are a number of symptoms which indicate that your computer has been infected. If you notice "strange things" happening to your computer, namely:
* unusual sounds or music played at random
* unexpected messages or images are suddenly displayed
* programs suddenly start on your computer
* your CD-ROM drive mysteriously opens and closes
* you receive notification from your firewall that some applications have attempted to connect to the Internet, although you did not initiate this, then it is very likely that your computer has been infected by a virus
Additionally, there are some typical symptoms which indicate that your computer has been infected via email:
* your mailbox contains a lot of messages without a sender's e-mail address or message header
* your friends mention that they have received messages from your address which you know you did not send
These problems, however, may not be caused by viruses. For example, infected messages that are supposedly coming from your address can actually be sent from a different computer.
There is a range of secondary symptoms which indicate that your computer may be infected:
* your computer slows down when programs are started
* your computer freezes frequently or encounters errors
* files and folders have been deleted or their content has changed
* the operating system is unable to load
* Microsoft Internet Explorer freezes or functions erratically e.g. you cannot close the application window
* your hard drive is accessed too often (the light on your main unit flashes rapidly)
90% of the time the symptoms listed above indicate a hardware or software problem. Although such symptoms are unlikely to be caused by a virus, you should use your antivirus software to scan your computer fully.
What you should do if you notice symptoms of infection
If you notice that your computer is functioning erratically
- Don't panic! This golden rule may prevent the loss of important data stored in your computer and help you avoid unnecessary stress.
- Disconnect your computer from the Internet.
- If your computer is connected to a Local Area Network, disconnect it.
- If the computer cannot boot from the hard drive (error at startup), try to start the system in Safe Mode or from the Windows boot disk
- Before taking any action, back up all critical data to an external drive (a floppy disk, CD, flash memory, etc.).
- Install antivirus software if you do not have it installed.
- Download the latest updates for your antivirus database. If possible, do not use the infected computer to download updates, but use a friend's computer, or a computer at your office, an Internet cafe, etc. This is important because if you are connected to the Internet, a virus can send important information to third parties or may try to send itself to all email addresses in your address book. You may also be able to obtain updates for your antivirus software on CD-ROM from the software vendors or authorized dealers.
- Perform a full system scan.
If no viruses are found during a scan
If no viruses are found during the scan and the symptoms that alarmed you are classifed, you probably have no reason to worry. Check all hardware and software installed in your computer. Download Windows patches using Windows Update. Deinstall all unlicensed software from your computer and clean your hard drives of any junk files.
If viruses are found during a scan
A good antivirus solution will notify you if viruses are found during a scan, and offer several options for dealing with infected objects.
In the vast majority of cases, personal computers are infected by worms, Trojan programs, or viruses. In most cases, lost data can be successfully recovered.
- A good antivirus solution will provide the option to disinfect for infected objects, quarantine possibly infected objects and delete worms and Trojans. A report will provide the names of the malicious software discovered on your computer.
- In some cases, you may need a special utility to recover data that have been corrupted. Visit your antivirus software vendor's site, and search for information about the virus, Trojan or worm which has infected your computer. Download any special utilities if these are available.
- If your computer has been infected by viruses that exploit Microsoft Outlook Express vulnerabilities, you can fully clean your computer by disinfecting all infected objects, and then scanning and disinfecting the mail client's databases. This ensures that the malicious programs cannot be reactivated when messages which were infected prior to scanning are re-opened. You should also download and install security patches for Microsoft Outlook Express.
- Unfortunately, some viruses cannot be removed from infected objects. Some of these viruses may corrupt information on your computer when infecting, and it may not be possible to restore this information. If a virus cannot be removed from a file, the file should be deleted.
If your computer has suffered a severe virus attack
Some viruses and Trojans can cause severe damage to your computer:
- If you cannot boot from your hard drive (error at startup), try to boot from the Windows rescue disk. If the system can not recognize your hard drive, the virus has damaged the disk partition table. In this case, try to recover the partition table using scandisk, a standard Windows program. If this does not help, contact a computer data recovery service. Your computer vendor should be able to provide contact details for such services.
If you have a disk management utility installed, some of your logical drives may be unavailable when you boot from the rescue disk. In this case, you should disinfect all accessible drives, reboot from the system hard drive and disinfect the remaining logical drives.
- Recover corrupted files and applications using backup copies after you have scanned the drive containing this data.
Diagnosing the problem using standard Windows tools
Although this is not recommended unless you are an experience user, you may wish to:
* check the integrity of the file system on your hard drive (using CHKDSK program) and repair file system errors. If there are a large number of errors, you must backup the most important files to removable storage media before fixing the errors
* use other standard Windows tools, for example, the scandisk utility
* scan your computer after booting from the Windows rescue disk
For more details on using these utilities, refer to the Windows Help topics.
If nothing helps
If the symptoms described above persist even after you have scanned your computer, and checked all installed hardware and software and your hard drive using Windows utilities, you should send a message with a full description of the problem to your antivirus vendor's technical support department.
Some antivirus software developers will analyse infected files submitted by users.
After you have eradicated the infection
Once you have eradicated the infection, scan all disks and removable storage media that may be infected by the virus.
Make sure that you have appropriately configured antivirus software installed on your computer.
Practice safe computing.
All of these measures will help prevent your computer getting infected in the future.
source: http://www.viruslist.com/en/viruses/encyclopedia?chapter=153280800
Symptoms of infection
There are a number of symptoms which indicate that your computer has been infected. If you notice "strange things" happening to your computer, namely:
* unusual sounds or music played at random
* unexpected messages or images are suddenly displayed
* programs suddenly start on your computer
* your CD-ROM drive mysteriously opens and closes
* you receive notification from your firewall that some applications have attempted to connect to the Internet, although you did not initiate this, then it is very likely that your computer has been infected by a virus
Additionally, there are some typical symptoms which indicate that your computer has been infected via email:
* your mailbox contains a lot of messages without a sender's e-mail address or message header
* your friends mention that they have received messages from your address which you know you did not send
These problems, however, may not be caused by viruses. For example, infected messages that are supposedly coming from your address can actually be sent from a different computer.
There is a range of secondary symptoms which indicate that your computer may be infected:
* your computer slows down when programs are started
* your computer freezes frequently or encounters errors
* files and folders have been deleted or their content has changed
* the operating system is unable to load
* Microsoft Internet Explorer freezes or functions erratically e.g. you cannot close the application window
* your hard drive is accessed too often (the light on your main unit flashes rapidly)
90% of the time the symptoms listed above indicate a hardware or software problem. Although such symptoms are unlikely to be caused by a virus, you should use your antivirus software to scan your computer fully.
What you should do if you notice symptoms of infection
If you notice that your computer is functioning erratically
- Don't panic! This golden rule may prevent the loss of important data stored in your computer and help you avoid unnecessary stress.
- Disconnect your computer from the Internet.
- If your computer is connected to a Local Area Network, disconnect it.
- If the computer cannot boot from the hard drive (error at startup), try to start the system in Safe Mode or from the Windows boot disk
- Before taking any action, back up all critical data to an external drive (a floppy disk, CD, flash memory, etc.).
- Install antivirus software if you do not have it installed.
- Download the latest updates for your antivirus database. If possible, do not use the infected computer to download updates, but use a friend's computer, or a computer at your office, an Internet cafe, etc. This is important because if you are connected to the Internet, a virus can send important information to third parties or may try to send itself to all email addresses in your address book. You may also be able to obtain updates for your antivirus software on CD-ROM from the software vendors or authorized dealers.
- Perform a full system scan.
If no viruses are found during a scan
If no viruses are found during the scan and the symptoms that alarmed you are classifed, you probably have no reason to worry. Check all hardware and software installed in your computer. Download Windows patches using Windows Update. Deinstall all unlicensed software from your computer and clean your hard drives of any junk files.
If viruses are found during a scan
A good antivirus solution will notify you if viruses are found during a scan, and offer several options for dealing with infected objects.
In the vast majority of cases, personal computers are infected by worms, Trojan programs, or viruses. In most cases, lost data can be successfully recovered.
- A good antivirus solution will provide the option to disinfect for infected objects, quarantine possibly infected objects and delete worms and Trojans. A report will provide the names of the malicious software discovered on your computer.
- In some cases, you may need a special utility to recover data that have been corrupted. Visit your antivirus software vendor's site, and search for information about the virus, Trojan or worm which has infected your computer. Download any special utilities if these are available.
- If your computer has been infected by viruses that exploit Microsoft Outlook Express vulnerabilities, you can fully clean your computer by disinfecting all infected objects, and then scanning and disinfecting the mail client's databases. This ensures that the malicious programs cannot be reactivated when messages which were infected prior to scanning are re-opened. You should also download and install security patches for Microsoft Outlook Express.
- Unfortunately, some viruses cannot be removed from infected objects. Some of these viruses may corrupt information on your computer when infecting, and it may not be possible to restore this information. If a virus cannot be removed from a file, the file should be deleted.
If your computer has suffered a severe virus attack
Some viruses and Trojans can cause severe damage to your computer:
- If you cannot boot from your hard drive (error at startup), try to boot from the Windows rescue disk. If the system can not recognize your hard drive, the virus has damaged the disk partition table. In this case, try to recover the partition table using scandisk, a standard Windows program. If this does not help, contact a computer data recovery service. Your computer vendor should be able to provide contact details for such services.
If you have a disk management utility installed, some of your logical drives may be unavailable when you boot from the rescue disk. In this case, you should disinfect all accessible drives, reboot from the system hard drive and disinfect the remaining logical drives.
- Recover corrupted files and applications using backup copies after you have scanned the drive containing this data.
Diagnosing the problem using standard Windows tools
Although this is not recommended unless you are an experience user, you may wish to:
* check the integrity of the file system on your hard drive (using CHKDSK program) and repair file system errors. If there are a large number of errors, you must backup the most important files to removable storage media before fixing the errors
* use other standard Windows tools, for example, the scandisk utility
* scan your computer after booting from the Windows rescue disk
For more details on using these utilities, refer to the Windows Help topics.
If nothing helps
If the symptoms described above persist even after you have scanned your computer, and checked all installed hardware and software and your hard drive using Windows utilities, you should send a message with a full description of the problem to your antivirus vendor's technical support department.
Some antivirus software developers will analyse infected files submitted by users.
After you have eradicated the infection
Once you have eradicated the infection, scan all disks and removable storage media that may be infected by the virus.
Make sure that you have appropriately configured antivirus software installed on your computer.
Practice safe computing.
All of these measures will help prevent your computer getting infected in the future.
source: http://www.viruslist.com/en/viruses/encyclopedia?chapter=153280800
Subscribe to:
Posts (Atom)
