Virus removal?

January 28th, 2010
Momma Jette asked:

What is the best free virus removal program? I’ve tried 3 different ones these past few days and some of them pick nothing up at all, the others pick TONS of things up and I know they’re there. Which is the best free one to use??

Caffeinated Content – Members-Only Content for WordPress

Tags: , ,

Windows 7 Upgrades Things not to do.

December 11th, 2009

Spent the week upgrading an office from XP to Windows 7.  Everything worked after the upgrade, but I found that if you are upgrading from Vista to Windows 7 it will go fast.  If you are moving from Windows XP to Windows 7 you have your work cut out for you.  I used the file transfer wizard to backup the xp files and then during the upgrade I used the same user name that was on the old PC, but that name was part of the Domain, so when I joined the PC to the Domain and logged in it created a second user name with the domain name at the end. So when I ran the file transfer back onto the pc, it put the files in the wrong location.  So when upgrading and starting the install, when working with a domain, use a PC name not a user when it ask for a name.

The Fake Virus Protections are on the rise.

December 11th, 2009

In the past week I have been on 7 calls to remove the fake anti-virus.  They seem to getting worse, just found one (System Protection) it makes the computer so you can’t boot into Safe mode, it’s removed the Alt + Ctrl + Delete.

I have to use my Minipe disk and create a new Admin user profile to login to the pc to clean it.

The latest Fake Alert Scam

September 26th, 2009

Windows Police Pro, it installs a root kit, so it really gets in there. This one thou is not that disruptive. I was able to use Alt + Ctrl + Delete to get to the task manager, there it was listed as Police Defender Pro and I could end the task but it came back, so I looked under services and found the new one pav services. I ran that then Malwarebytes was able to run and update.

Google Local Map Listing

September 19th, 2009

In one day one company in Las Vegas hi jacked the Google local map listing. I have spent a week trying to find out how one company can take over computer repair las vegas. In short Hi jacking the biggest search engin. I need help from anyone who can shed some light on this.

I took my comments to the Google online help form and have yet to get a response.


Malvertising – Making Life Unbearable

September 18th, 2009

Malvertising (malicious Advertising) is a process of installing unwanted or outright malicious software on your pc.    I first noticed it with Anti-virus 2008, which popped up on your screen and started running a scan of your Computer to see if you have any viruses.  It pops up with a whole list of thing that is infecting your computer and for a fee $50 to $100 it will clean your pc.  What in fact is happens is this program hijacks your computer, and will hold you hostage until you pay the price, figure out to remove the problem or call in the computer repair people.  That is me, I am a full time I.T. guy who spends his day find and fixing this problems.
As I battle the increase of new forms of this, (the list now ranges for PC Protector, to System security) they all look very official.  Now the part of this that is becoming the problem is, they are spending a lot of time and energy to make this work without having your real anti-virus software pick it up
Some of the stuff disables your task manager so you can’t even turn it off.    There are some great programs out there to help you clean your pc when infected.  Malwarebytes is one.  But as this Malvertising gets better at what it dose, it disable to the sites like from updating the software to remove their program.
Here are some ideas to try if you get infected.  If you can still access your task manager (Alt + Ctrl + Delete) the program is running in the process tab.  One of the most recent one I fixed with Personal Anti-virus, this program was running the process pav.exe.
I was able to end the process then clean the pc.


Green AV

August 25th, 2009

The Newest addition to the Fake Anti-virus list. Green AV, this one can be ended by going into the Task Manager and ending process gav.exe

Work Groups

July 14th, 2009

I just found a Big problem with work groups  Only 10 pc can connect to a XP pro box.  If someone knows of a way about it please let me know.

Conficker Worm Test

July 14th, 2009

Conficker Worm Test

 Reports that the Conficker computer worm is “now parading as an anti-virus program called Spyware Protect 2009. The worm takes users to a fake security Web site, asks them to pay $50 for a spyware program that actually is the Conficker worm, then keeps your credit card information to boot.”

Symptoms of infection:

  • You can’t go to any security Web sites, such as Trend Micro, Symantec or McAfee.
  • If you try to power down your computer and it doesn’t want to.

If your computer is infected:
Using an uninfected computer, download Conficker Removal Tool from Symantec’s Website. Install and run the tool in the infected system. Note: If you have an Apple computer, chances are you’re not infected.

Here’s an easy test you could do on your own to see if your computer is infected. If you arrived at this page and

  • can see all 6 logos below, you don’t have it. If you can’t see some of them, that’s a red flag.
  • if you click on each of the top 3 logos and they all open the security Websites, your computer is OK. If any of the logos fail to open the links, that’s another red flag.

Read the explanation below to determine the health of your computer. (This is adopted from the Conficker Working Group, for those of you wary of unfamiliar Websites.)

How to interpret:

If you see this above: It probably means this:
= Normal/Not Infected by Conficker (or using proxy)
= Possibly Infected by Conficker (C variant or greater)
= Possibly Infected by Conficker A/B variant
= Image loading turned off in browser?
Any other combination = Poor Internet connection?


Conficker (aka Downadup, Kido) is known to block access to over 100 anti-virus and security websites.

If you are blocked from loading the remote images in the first row of the top table above (AV/security sites) but not blocked from loading the remote images in the second row (websites of alternative operating systems) then your Windows PC may be infected by Conficker (or some other malicious software).

If you can see all six images in both rows of the top table, you are either not infected by Conficker, or you may be using a proxy server, in which case you will not be able to use this test to make an accurate determination, since Conficker will be unable to block you from viewing the AV/security sites.

F-Secure and the F-Secure Logo are trademarks of F-Secure Corporation.
SecureWorks and the SecureWorks Logo are registered trademarks of SecureWorks Inc.
Trend Micro and the T-Ball logo are trademarks or registered trademarks of Trend Micro Inc.

Don’t stop in the Middle of an XP Repair

July 2nd, 2009

When your PC dies, and you are trying to bring it back to life and you find that there is no system restore point, the best thing to do is to get your xp disc and boot to the OS load.  The first repair that comes up  is for a dos prompt repair you want to go past that then when it shows the loaded OS on the pc C:Windows  then press the r to repair.  Never stop it in the middle of this,  you will make a big mess.  Let it run then if  the problem is a windows problem it will fix it.