Your Questions About Virus Removal

Posted by softwareguru on July 24, 2014

Nancy asks…

Toshiba Satellite virus removal help?

I haven’t used my computer in a few weeks, I don’t know if my brother has or not, I don’t think he has… My Norton security help thing expired so it won’t do anything. Upon start up of my laptop it said that I have three viruses, all are labeled the same as “Trojan.ADH.2.” I’ve checked the Toshiba website with no result, I just want to see if there’s anyway to get this or these virus(es) removed from this laptop as easy as possible.

softwareguru answers:

Here is my guide to virus removal:

Consumer Reports has the following ratings:
Best 4 Free:
Avast
Avira
AVG
Microsoft Security Essentials

Best Paid:
G Data Internet Security
ESet Smart Security 6
F-Secure International Security
Kaspersky Internet Securityu
Avira Internet Security

There are always other opinions and tests:
http://www.pcmag.com/article2/0,2817,2372364,00.asp
http://www.consumersearch.com/antivirus-software
http://www.pcworld.com/category/antivirus-software/

How to remove a virus –
I) The best solution is to back up your data and perform a factory restore.

II) That not being practical for many, try either of the next two methods:
(Please note that it is important to use one of these two methods as you need to boot and scan knowing that no viruses are already in memory. If you try and install an AV product on a machine already infected then there is a decent chance that the virus will be able to hide/relocate from the scanner.)

A)
1) On a clean computer, download 1 or more free bootable AV products. Five I know of are Avira, AVG, Avast, Kaspersky, and G Data.

(There is a handy product called sardu (www.sarducd.it) which will create a flash drive/Cd capable of having multiple AV products built into it. It isn’t perfect yet, but it does do the job pretty well. I keep a copy on a flash drive for whenever I go to someone’s house to help with computer problems and I have a number of other diagnostic tools included as well.)

2) Create the bootable media and include the latest virus definitions
3) Boot the infected/suspect computer by using the bootable media and run a full/complete/deep scan of the computer using preferably at least two different ones. No AV product gets them all, but 2 different products should find and remove just about anything.

B) second alternative method:
1) remove the hard drive from the infected computer
2) slave the drive to a clean computer which already has at least one AV product already installed with the most current definitions. You can do this by installing it into the case (for a desktop) or by putting the drive in an external drive case which you can get for the low teens $. These can be USB (get at least USB 2.0) or eSata – if the 2nd computer has an eSata connection.

3) From the clean machine, run a full/complete scan of the slaved hdd. The computer should already be booted when you connect the external drive, with the AV product already in residential memory(It will have an icon down next to the clock). Then open the AV and run it on the drive. In an ideal world, you should really use two different AV products.

III) If you are unable to do the above, then download and install an AV product and then run it at its deepest level scan. This is not the ideal method as many viruses can hide from AV products if they are already in memory and running before the AV sofware is executed. There are numerous free ones. I strongly recommend two different AV products and one Adware/Spyware product. For free AV, I would typically recommend Avira, AVG, or Avast as the installed resident (always running) AV solution and Malwarebytes as a secondary, on demand AV product which I run on a weekly basis. For Spyware and Adware, the two top performers there are AdAware and Spybot Search and Destroy (adaware is a product of lavasoft and safer-networking.org produces Spybot Search and Destroy) Both offer a free and paid version. The free version is good, the paid version offers more bells and whistles, just like with the AV products.

Once the virus(es) is/are removed, change any and all passwords having to do with anything important like e-mail, financial-banking logins, etc. As those have probably been captured and sent to the author of the virus.

Robert asks…

trojan virus removal?

i have managed to get a trojan back door virus is there any good removal tools so i can destroy it from my computer

softwareguru answers:

Before attempting to remove malware you must switch off System Restore as back up files will be hiding in there, and it will just restore itself. Go to Start – programs – accessories – system tools – system restore.
Run your anti virus and anti spyware in Safe Mode. To get into Safe Mode repeatedly press the F8 key after the bios screen loads but before Windows loads. You’ll know if you made it because the screen will be at 800 x 600 and your pc will be slow.

Then beef up your security. Its easier to prevent malware getting on to your sytem in the first place rather than trying to remove it. All the following programs are free for personal use;

You need to install one firewall.
The Windows firewall doesn’t stop malware on your pc from dialling out.
Http://www.zonelabs.com Zone Alarm firewall
http://www.comodogroup.com/ – Comodo security suite.

You need to install one anti virus;
http://free.grisoft.com/freeweb.php/doc/2/ -AVG anti virus or
http://www.avast.com – Avast Antivirus

You need all three anti spyware programs;
http://www.ewido.net – AVG(Ewido) anti trojan.
Http://www.lavasoft.com – Ad-Aware SE Personal anti adware
http://www.safer-networking.org – Spybot Search and Destroy anti spyware

And these are useful utilities;
Shields Up security site;
https://www.grc.com – check your firewall works
http://www.grc.com/optout.htm – grc anti spyware program and info.

Http://www.mozilla.com/ Firefox web browser and Thunderbird e-mail program.
Http://www.opera.com/ Opera web browser
Instal both these web browsers, turn off javascript on one and use that browser for vising unknown websites. They don’t support Active X so thats one less way for problems to get on your pc.

Http://spywarewarrior.com/rogue_anti-spyware.htm – The Spyware Warrior site identifies fake anti spyware programs.
Http://www.ccleaner.com Cr*pcleaner Registry cleaner and privacy tool
http://www.mailwasher.net/ -spam filter
Winpatrol is a handy utility that tracks cookies on your pc and stops unwanted changes to your startup folder.
Http://www.winpatrol.com
Spywareblaster works with Internet Explorer and Firefox. It won’t uninstall spyware that is already on your pc, but it will prevent hijacks and other malicious changes to your browser.
Http://www.javacoolsoftware.com
http://www.siteadvisor.com -MacAffee Site Advisor warns about malware on sites you are about to visit.
Http://www.sys-shield.com – AbsoluteShield File Shredder
http://heidi.ie/eraser – Eraser file shredder
http://www.softpedia.com/get/Antivirus/Lavasoft-ARIES-Rootkit-Remover.shtml – Aries Rootkit remover.

Remember to update and run all of you anti malware programs at least once a week.

Powered by Yahoo! Answers

Comments are closed.