If there are no more problems or signs of infection, you should Create a New Restore Point to prevent possible reinfection from an old one
. Some of the malware you picked up could have been backed up, renamed and saved in System Restore
. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back
" to a clean working state.The easiest and safest way to do this is
- Go to Start > Programs > Accessories > System Tools and click "System Restore".
- Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
- Then use Disk Cleanup to remove all but the most recently created Restore Point.
- Go to > Run... and type: Cleanmgr
- Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
- Click the "More Options" tab, then click the "Clean up" button under System Restore.
- Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
- Click Yes, then click Ok.
- Click Yes again when prompted with "Are you sure you want to perform these actions?"
- Disk Cleanup will remove the files and close automatically.
and Windows 7
users can refer to these links: Tips to protect yourself against malware and reduce the potential for re-infection:
• Keep Windows and Internet Explorer current
with all security updates
from Microsoft which will patch many of the security holes through which attackers can gain access to your computer. When necessary, Microsoft releases security updates on the second Tuesday of each month and publishes Security update bulletins
to announce and describe the update. If you're not sure how to install updates, please refer to Updating your computer
. Microsoft also recommends Internet 6 and 7 users to upgrade their browsers
due to security vulnerabilities which can be exploited by hackers.Avoid gaming sites
, porn sites
, pirated software
), cracking tools
, and keygens
. They are a security risk which can make your computer susceptible to a smörgåsbord of malware infections
, remote attacks, exposure of personal information, and identity theft. In some instances an infection may cause so much damage to your system that recovery is not possible
and the only option is to wipe your drive, reformat
and reinstall the OS. Avoid peer-to-peer (P2P) file sharing
programs (i.e. Limewire, eMule, Kontiki, BitTorrent, uTorrent, BitLord, BitLord, BearShare). They too are a security risk
which can make your computer susceptible to malware infections. File sharing networks are thoroughly infected and infested with malware according to Senior Virus Analyst, Norman ASA
. Malicious worms
, backdoor Trojans IRCBots
, and rootkits
spread across P2P file sharing networks, gaming, porn and underground sites. Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads
and malicious Flash ads
that install viruses, Trojans, and spyware
. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users. The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications.
• Beware of Rogue Security software
as they are one of the most common sources of malware infection
. They infect machines by using social engineering
and scams to trick a user into spending money to buy a an application which claims to remove malware. For more specific information on how these types of rogue programs install themselves and spread infections, read How Malware Spreads - How did I get infected
• Keeping Autorun enabled
on USB (pen, thumb, jump) and other removable drives has become a significant security risk
as they are one of the most common infection vectors for malware which can transfer the infection to your computer. Many security experts recommend you disable Autorun
as a method of prevention. Microsoft recommends doing the same
If using Windows 7
, be aware that in order to help prevent malware from spreading, the Windows 7 engineering team made important changes
and improvements to AutoPlay
so that it will no longer support the AutoRun functionality for non-optical removable media.
• Always update vulnerable software
like Adobe Reader
and Java Runtime Environment (JRE)
with the latest security patches. Older versions of these programs have vulnerabilities that malicious sites can use to exploit and infect your system
• Change all passwords
: Anytime you encounter a malware infection on your computer, especially if that computer was used for online banking, has credit card information or other sensitive data on it, all passwords should be changed immediately
to include those used for banking, email, eBay, paypal and any online activities which require a username and password. You should consider them to be compromised
and change passwords as a precaution in case an attacker was able to steal your information when the computer was infected. If using a router
, you need to reset it with a strong logon/password so the malware cannot gain control before connecting again.
• Security Resources from Microsoft:
• Other Security Resources:
• Browser Security Resources:
• Finally, if you need to replace your anti-virus, firewall or need a reliable anti-malware scanner please refer to:
Edited by quietman7, 26 November 2010 - 08:55 PM.