The Linear Canvas

When referring to a computer virus, there are many types that are easily confused. I tend to refer to all as Malware (malicious software). The bottom line is that they all do about the same things, in different ways, for different reasons. Some take control of your computer for nefarious purposes. Others were created just to make your life a little more difficult.

I have been asked several times recently about Personal Anti-Virus, a "rogue" program that had been infecting computers in the last few months with a Trojan Horse. I looked it up on search and anti-virus web sites. The response from Symantec (Norton) went something like, "Had you had our product installed, this wouldn’t have happened to you." Not very diplomatic or helpful, but probably true. Some of the other responses I found were to use other "rogue" sounding programs that probably would make it worse.

Malware Removal

There were some helpful posts around the web in my search for a remedy for the Personal Anti-Virus, which if one had enough computer knowledge, they could eliminate pretty much the whole threat. Unfortunately some directions I found were more complete than others, leading to immediate re-infections by the rogue program. I don’t think most casual computer users would have the patience to continue past that point.

In many cases, the Malware is spread to so many places on the computer hard drive that removing it manually is not worth the effort. Some times the existing Anti-Virus program has been uninstalled or crippled by the Malware as well. Often the most obvious way of ridding the system is using specifically created software for Malware removal or by doing a system restore of one kind or another. After removal, Anti-Virus program re-installation may be necessary too.

Sometimes the way to get rid of malware can be to use Windows System Restore. It is fast and mostly simple way to return to a time when there was no problems with Windows operations. Hopefully you have a Windows restore point unaffected by any Malware program. Usually there are also files on the computer that need to be deleted before the system is restored. A search of the web can usually turn up any that need to be thrown away.

Microsoft and How To Geek.com do a pretty good job explaining how to use System Restore, so click the link below, in case you’re unsure how to use it.

For Windows XP
http://support.microsoft.com/kb/306084

For Windows Vista
http://www.howtogeek.com/howto/windows-vista/using-windows-vista-system-restore/

Windows System Restore can restore your computer for many reasons. It is an excellent tool that has saved me more than a few times. You can always undo any changes the restore makes. I have never had a problem using this feature. It has been available in Windows since about 2000. Strangely, the only version of Windows without it during that time was Windows 2000.

If the restore option is not possible, then most computer manufacturers provide a Restore Disk. Usually this returns the computer back to the point when it was purchased new. It not only wipes out all malware, but also all of your data including documents, e-mail, and games. That should be a last resort and will be the help most will receive from the manufacturers support line if you call it. Hopefully someone made a current data backup before all this started.

In the case of the Personal Anti-Virus, I found that a manual removal method was available and effective. It also came to my attention there was a free software download that could remove it called Malwarebytes Anti-Malware. The reason I had any faith in the product to start with, is that it was recommended by PC World magazine. I generally have a lot of faith in them. I know for certain it took care of the Trojan Horse that was attached to Personal Anti-Virus. It also detected and removed a registry entry on my wife’s computer that would not allow Norton Anti-Virus to run properly. It is a free download, but also is available as a paid version that provides real-time protection. The free version only works when you start the program manually. I have not used the paid version, but if the free version works for you, you should buy the paid version and support the programmers. Newer threats are added as they are recognized. Malwarebytes Anti-Malware and all other Malware removal tools need to be updated occasionally.

Download Malwarebytes Anti-Malware:
http://www.malwarebytes.org/mbam.php

PC World also recommends SRI International’s Bot-Hunter. It can find Bot’s on a common network or on an individual machine. It is available for several operating systems.

Download SRI International’s Bot-Hunter here:
http://www.bothunter.net/

Microsoft has free Malware removal software called Malicious Software Removal Tool. It can be obtained via Windows Update and can also be downloaded directly from Microsoft. It is updated monthly and runs in the background on the second Tuesday of every month. (seriously) I have seen it run a couple of times on my computer and am not sure if it has ever helped. If you want to acquire a copy of the tool to run on demand, it is available at:
http://www.microsoft.com/security/malwareremove/default.aspx

Is Free Always Cheapest?

All of the people I talked to about Personal Anti-Virus had been using free Anti-Virus software. I wasn’t affected and I run Norton software. I heard several stories why the free was best, and why I was wrong about Norton being better. But the free Anti-Virus certainly was not effective in this case or helping at all.

No matter what anyone says about Symantec, they have the best product. Their Norton line of products routinely win in comparisons done by reputable computer labs, I have bought Norton Internet Security, which includes Norton Anti-Virus, for the last six plus years. I am usually able to find it with upgrade and competitive rebates, etc. I rarely pay more than twenty dollars for it. The retail price is around sixty-nine dollars. I never buy the subscription update as buying the full product yearly is always less expensive. I usually get it at Staples. You can use it on up to three computers too.

As I said, I run Norton Internet Security on my main computers and have little trouble. I surf the web a lot, but never download anything that I don’t trust. After adding Malwarebytes Anti-Malware to my existing security suite, I feel pretty confident I am protected against most threats. I run Computer Associates Internet Security on my older computers. It is free from my Internet provider, RoadRunner. I rarely use those computers and feel that it is enough protection in that case. But it includes a software firewall and a few other enhancements over a free product. I would recommend checking to see if a good Internet Security Suite is available from your Internet provider over a free bare bones security program, in most cases.

I am not sure what it would take to rid computing of Malware. Real laws and some real enforcement would help. A good start would be for users to understand the difference in real system message boxes and Internet pop-ups that just look like one.