Solving different virus/malware attacks

Written by Pavan Kumar in Sunday, May 4th 2008 under computer   


Though I don’t receive much mails from contact page or through comments regarding viruses, almost every friend of mine ask me for solutions for modern day viruses/malwares which disables the task manager, folder options, hidden files, registry… and to be specific, one of my friend was infected by sharokh.exe, they used to spread through pen drives. Here I am going to share the solution for that and most of the threats of that kind.

Remove Restrictions tool

  • You need Remove Restrictions tool and your antivirus with full updates.
  • Restart your computer in safe mode. This will avoid all startup programs being run at system startup and only most needed services will be launched by the windows.
  • Clear all data in temp folder [usually c:\documents and settings\[user name]\local settings\temp], better key in that, as "local settings" being a hidden folder may not be visible for you.]
  • In system configuration utility [Click Start> Run > msconfig, click ok ], goto start up tab and remove all items which seem to be suspecious, they usually are found with names like service.exe, smss.exe, services.exe, csrss.exe, lsass.exe, svchost.exe, svvhost.exe… or any system file name but found in non system folders. Note down the location of such files and delete those files. Be careful, you may delete the system files or driver files. Don’t perform if you are unsure.
  • In same system configuration utility, goto services tab and check all and close it without restart. This is required as the such malwares might have disabled your antivirus or antispyware services for next start up. Even disabling some services may slow down your start up.
  • Check even service.msc for same issue and correct it.
  •  Run RRT tool downloaded from above said location. Check all the needed ones, if you are unsure, check all the options and click remove. This will help almost all problems your system got affected.
  • You are also recommended to check for rootkits and fix them.
  • Now, restart your sytem in normal mode, and check your task manager for unknown processes, if any such ones found, kill them. With your updated antivirus program, scan the entire system.

There are different free tools available from sergiwa for virus solutions. You may get it from sergiwa downloads page.

Popularity: 42% [?]

Share and Enjoy:
  • Digg
  • Sphinn
  • del.icio.us
  • Facebook
  • Mixx
  • Google
  • Furl
  • IndianPad
  • Live
  • Netvouz
  • Reddit
  • SphereIt
  • Spurl
  • StumbleUpon
  • Technorati
  • TwitThis
  • YahooMyWeb

Our Random Articles

--> Read about the latest web hosting news, tips and tricks. I really enjoy reading it and you can find your best suitable hosting on mytradedomain.com

12 Comments

MyAvatars 0.2
Rockstar Sid Said in Sunday, May 4th, 2008 @4:33 pm  

Hmmm never knew a tool like remove restriction existed..

MyAvatars 0.2
Pavan Kumar Said in Sunday, May 4th, 2008 @7:12 pm  

@ Rockstar Sid
I have even written about that in one of my previous posts, and also one more tool is a must need, that is “unhackme”, if you have not read my previous post, you are recommended to go through that article too. You can find it here:

http://www.techpavan.com/2008/02/16/combat-multiple-virus-problems/

MyAvatars 0.2
Pavan Kumar Said in Sunday, May 4th, 2008 @7:27 pm  

@ all

I have written wrongly as service.msc instead please read it as services.msc

MyAvatars 0.2
Siddharth Said in Sunday, May 4th, 2008 @10:39 pm  

Thats a nice tool :)
Although due to weekly AVG scanning spybot’s real time protection there are less viruses my computer is quite protected and any program making registry editing must first take my permission :D but due to technology getting advancer everyday latest things also get old and outdated :P

MyAvatars 0.2
Pavan Kumar Said in Monday, May 5th, 2008 @2:51 pm  

Yes sir, fully agree……….

Pavan Kumars last blog post..How hot is your motherboard [Pics]

MyAvatars 0.2
Ajay Said in Tuesday, May 6th, 2008 @8:01 pm  

thanks for sharing this cool tool with us :razz:

MyAvatars 0.2
mohan Said in Tuesday, May 6th, 2008 @8:08 pm  

from the past 2 weeks, had been trying to google for a fix for sharokh.exe.it always used to show no results.was surprised to see nobody else gettin the same problem. Finally got a valid result!! :grin:

MyAvatars 0.2
Pavan Kumar Said in Wednesday, May 7th, 2008 @12:04 am  

@Mohan

I use nod32 and it has already released fix for that, You might be using a older version, switch yourself to new. Anyway, though you may remove the virus files, to remove the effect of them like task manager…., you need this article.

Pavan Kumars last blog post..How hot is your motherboard [Pics]

MyAvatars 0.2
Pavan Kumar Said in Wednesday, May 7th, 2008 @12:07 am  

@ Ajay

Thanks bro….

Pavan Kumars last blog post..How hot is your motherboard [Pics]

MyAvatars 0.2
Pavankumar N Said in Friday, July 4th, 2008 @2:38 pm  

Hie,

Recently my system got attacked by FunnyUTS virus.. It is restricting from installing any type applications.

IF you know about the virus pls tell me the remedy, otherwise revert back for more information on the virus.

Thanks in advance.
Pavan

MyAvatars 0.2
Pavan Kumar Said in Friday, July 4th, 2008 @6:01 pm  

@ Pavan

I have never come across that virus, and even there are no good entries of that on google, try using safe mode method and also using unlocker, deleting file, removing startup entry… I think these can be understood when you read my other articles related with virus solutions.

http://www.techpavan.com/2008/02/16/combat-multiple-virus-problems/

http://www.techpavan.com/2008/05/08/solving-virus-malware-attacks-part-2/

Trackback & Pingback

  1. Solving virus/malware attacks: Part 2 | TechPavan.com mentioned about this post in Thursday, May 8th, 2008 @8:55 pm  
Leave Your Comments Here

Popular Articles
« Sunday Pastime #6: Gone April
How hot is your motherboard [Pics] »