Malware Tips
Sunbelt’s Vipre - My Closing Opinion - Part 1
Vipre performed really well at detecting and removing malware, but only in safemode (remember, strictly speaking on removal abilities here). Basically there were too many infections and not enough RAM (512MB).
When using Vipre in normal bootmode it was unable to remove about 80% of the active threats and once those threats were marked for deletion [...]
Watch Me Block Viruses!
Hi Everyone! I made a quick video to show you the power of Spyware Doctor with Antivirus. Watch me act like an unsuspecting user that (almost) gets duped into installing a virus or rogue application.
People often ask me why I like Spyware Doctor With Antivirus so much, so I’m going to give everyone [...]
Recent XP Antivirus 2008 Infections Stealing Data. Are You Protected!
I had probably one of the worst client calls of my career that other day. When I arrived to David’s house I immediatly saw the XP Antivirus 2008 infection and though…sweet, “i’ll be outta here in a few minutes”..boy was I ever wrong.
David had the latest generation of the XP Antivirus 2008 trojan…it’s a very [...]
Remove Vundo and Virtumonde Using Free Software
So, what is Vundo and how do you get infected with it?
Vundo is a pernicious Adware Trojan that is usually installed into your windows pc (Windows 2000, Windows XP, or Windows Vista) via an outdated Java Runtime Environment. Vundo, also known as Virtumonde and Virtumondo creates random letter DLL’s in C:\windows\system32 (tyeyavv.dll for example) [...]
Where Does Malware Hide
Malware hides in only a few spots (typically). The folders below should be manually scanned with an anti-virus (kaspersky or Windows OneCare) and an anti-malware application (malwarebytes’ anti-malware) on a daily basis.
In Windows XP:
C:\Documents and Settings\
C:\Windows
In Windows Vista:
C:\Users
C:\Windows
Most of the very malicious malware resides in C:\windows\system32
As a IT consultant I need to move [...]
USB Malware: INF/autorun prevention and removal
INF/autorun is USB malware (aka - a USB virus) that is automatically installed to your PC via an autorun.inf file. Since USB drives are so popular these days most of the new malware released also copies itself to the USB flash drive and waits to travel to a new PC.
The USB malware threat [...]
Dont run Smitfraudfix from CD
FYI - don’t run Smitfraudfix from cd because it will not extract properly. Copy Smitfraud fix to the desktop or another temporary folder and then double click to run.
antispyware shield removal
antispyware shield is rogue antimalware (an antimalware product that does nothing but charge you). This rogue is installed via a trojan and can be difficult to remove.
There are 2 ways to remove antispyware shield:
1. Use Smitfraud in safemode (version 2.3)
2. Or, use MalwareBytes rogue remover
virtumonde removal
Virtumonde removal can be successfully accomplished via the following steps below. Please note that this fix only works on Windows XP. NEVER RUN COMBOFIX ON WINDOWS VISTA!!!
Warning: The fix below is a manual process and should only be attempted by professional anti-malware techs.
If you want to remove any [...]
Vundo Remover
My favorite Vundo Remover is VundoFix from Atribune.org. There are a couple of other Vundo Removers such as vundobegone and symantec’s vundo remover. All vundo removers will fail (in my experience) if you do not run them in safemode.
