Al Lustie's Tips and Tricks

I have worked on several computers that were blasted by the Antivirus Pro 2010 mlaware.  This one is NASTY!  Nothing prepares average users for this attack.  Having had to work with it I am now suggesting to my clients that if they get it, they do not move the mouse, but either press the on/off switch on their computer and hold it down for 10-15 seconds until the machine turns off, or unplug it (or turn their surge protector switch off).  Then call me.

The screen that comes up can be seen at
http://remove-malware.net/how-to-remove-antivirus-system-pro-rogue-anti-spyware/

Go to :  http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html 
to obtain a useful tool. 

For the rkill program, go to: BleepingComputer.com



It may look a little different each time one sees it, but notice the shield to the upper left that looks like it came from Microsoft.  I have been told that either clicking the X in the upper right hand corner to close the window or (in some cases) passing the cursor arrow over it can caust it to download itself (more than once).

I removed it on a couple of computers using instructions found on the web, rkill and Malwarebytes Anti Malware and, in one ase, Spyware Doctor.  In other cases when I had not been called until the client used her computer for several days after it first appeared, I had to backup her data files, use killdisk to scour the hard disk, and reinstall windows.  Even doing the manual cleaning of the registry (in safe mode) did not find all the instances.  It kept coming back and bringing it's cousins.

If you are my client and have this problem, please call ASAP.  If you are a tech faced with this problem, at the very least disconnect from the Internet, use rkill after downloading it on another computer and putting a copy on a USB stick or CD and boot into safe mode.  Then use the tooks recommended or do the manual work and try it again.  If that does not work, you may have to back up data files (external hard drive), disconnect the external drive, reboot using Killdisk (get it fro the web and make a bootable CD) and scour, scour, scour.  Then reinstall windows, Malwarebytes program, and maybe Spyware Doctor.  Connect the external drive and test it for any instances of this nasty thing.

Finally reconnect to the Internet and see what happens.  Be careful, use protection, and stay alert. 

Use two monitors.  If your computer was a super-winner it came with a two-port graphics card.  If not, you may have to purchase one by ATI or nVidia.  If you have an extra monitor, great.  Or find a good buy on an LCD type monitor at a local store  Even Costco and Sam's Club carry them.

You will have to open the case on most Windows computers to install the card.  On the iMac you have a video port (but need a converter cable available from Apple).

Why two monitors?  convenience, efficiency and ease of use come to mind.  With heavy duty programs such as Photoshop, Illustrator or Lightroom the tools and all can be on one monitor while the program is on the other.  Or you an keep your browser and emai on one screen and get serious work done on the other.  Even using Word with Excel or Access is way easier with two monitors.  If you have questions, leave a comment.  It really is not hard.

I wrote about the necessity of performing backups.  If you use a MAC it is pretty easy.  It comes with the Time Machine application.  Add an external hard disk, enter Time Machine and set it up.  The initial backup will backup your entire hard disk and may take a couple of days.  After that you want it to only back up those files which have changed -- it's called an "incremental backup".

On a Windows computer you have the built in program.  Get to it by going to the Start button, All Programs, Accessories and System Tools.  (It may be slightly different in Windows 7).

But you must either back it up manually OR use the Windows Scheduler.  There are easier ways.

Here is a link to a comparison chart:
http://www.ghacks.net/2009/04/26/the-10-best-windows-backup-software-programs/ 

I have successfully used TRUE IMAGE for both backing up and restoring.   There are many other programs, some free, some quite expensive.  Do a search on "Windows Backup Software" to find possibiities that will help you.

One last word:  if you can manage an external hard drive large enough to do a full DISK IMAGE, everything including Windows, programs, etc -- do one of those when you get your computer set up, virus free, ready to use and save it somewhere safe.  If things go badly with a rootkit you cannot remove, etc., you may need to remove everything from your hard disk, and restore the disk image.  Then restore your data from another external hard drive.  This can save hours, even days.

Then let Windows Update bring your version of Windows up to date with security patches.  THEN make another disk image.  Get the idea?