Resources

ParetoLogic Antivirus was going to delete some Microsoft files along with the cookies. Why? Doesn’t Microsoft need to verify that I have all their files?

You’re right; Microsoft doesn’t want you removing important operating system files. This is one reason why the operating system hides many of its system files. Unfortunately, malware makers are smart. They know that if they name their virus after a legitimate Microsoft file, computer users are less likely to delete the file. After all, if a user thinks a file is a necessary Windows file, he’s not going to delete it.

Viruses as Imposters

It is not uncommon for malware makers to give their viruses the same names, or clever variations, of legitimate operating system files. For example, the “lsass.exe” (spelled with an “L”) file is a legitimate Microsoft operating system file but a file named “isass.exe” (spelled with an “I”) is malware. This is one of my favorite examples because depending on the font and case used, the “L” and “I” can be easily confused. For example, don’t the following two words look remarkably similar?

• lsass.exe
• Isass.exe

Another example is “systray.exe” versus “systemtray.exe.” If you’re thinking that Microsoft uses one of these files to control the “System Tray” area of the taskbar, you’re right; one of these files does do that. The other is a nasty imposter. Casual users aren’t necessarily equipped to know which one is which. That’s why we rely on antivirus products. In this example, the legitimate Microsoft file is systray.exe and the systemtray.exe file is part of the Bigfoot Trojan.

The svchost.exe file is another popular Windows file that virus makers like to name their viruses after. Below are a few filenames based on the svchost.exe name that have been used by known malware programs:

• svchosts.exe
• sychost.exe
• syshost.exe

While these are examples of malware that use a similar looking filename, many other viruses use the exact same name as a real Microsoft files or folders. For example, your Windows computer contains a legitimate operating system folder called System32, but you’d better be careful if you find an actual system32.exe file - it’s most likely malicious!

How Antivirus Programs Know Real Microsoft Files from Fake Files

It’s tough for computer users to know the difference, but not so tough for antivirus programs. After all, these programs use complex algorithms and huge databases to sniff out the malicious programs. These programs know where the legitimate files are supposed to be stored on the computer and recognize imposters hanging out in the wrong directories.

Therefore, if your computer’s antivirus program is telling you that it has found malicious files and these files appear to be Microsoft files, it’s highly probable that they are in fact malware. If you’re unsure, do a quick check on the Internet using a phrase such as, “Is the ___.exe file a virus?”    

I can’t download AVG free due to an invalid binary code error. I seem to be having problems with other downloads also.

This type of problem seems to be an intermittent problem that other computer users have experienced as well. AVG uses several binary files in order to run. If one or more of these aren’t actively working, you will not be able to complete the download. The solutions for this problem vary according to other individuals with the same type of problem. Go through the suggestions one at a time until you find one that works for you. Typically, however, the fix for this type of problem is simply to wait a few days and try again. AVG occasionally has a problem when they bring out a new version or update and it rights itself after a day or two.

Troubleshooting Download Problem - Invalid Binary Code: Check the Basics

Since more than one version of AVG Free is available, you need to make sure that you are trying to download the correct version for your operating system.

Make sure that your Internet connection is working properly since this could lead to problems downloading AVG. Open the “Control Panel” and select “Network Connections.” Select “Local Area Connection” and “Repair.”

Special rules apply if you are using a dial-up Internet connection. You’ll need to open AVG, enter the “Tools” menu, select “Advanced Settings,” select “Update,” and select “Dial up.” Now look to make sure that you have enabled the option to “Use dial up connections.”

Make sure that your clock/date settings on the computer are accurate. For some reason, if these settings are inaccurate, they sometimes leads to problems accessing website downloads.

Scan your computer for spyware/viruses just in case your computer has been infected. It is possible that the presence of some malware is interfering with your download.

Troubleshooting Download Problem - Invalid Binary Code: Start Over

If you are still experiencing problems with the installation, start over with a fresh installation. If you have a partial installation of AVG on your computer, you’ll have to uninstall it per the directions on AVG’s website and reinstall it.

Troubleshooting Download Problem - Invalid Binary Code: Wait a Day or Two

AVG is noted for fixing problems of this sort in just a few short days or so. It seems as though new updates or versions of AVG experience problems that generate an invalid binary code message. Other users of this application have expressed similar problems that were resolved by AVG. Therefore, if you try to download AVG in a few days, it might work without any problems whatsoever.

Can I get a free anti-virus program that will scan and get rid of viruses from my computer and if so, what is the site?

Yes, you can get free antivirus programs that will scan and remove viruses from your computer. However, before you do so, I want you to be aware of some of the pitfalls of freebies so that you can make the best choice possible for your limited budget.

Fake Antivirus Programs

The first warning is to be extremely careful! We get questions from our readers all the time asking how to remove a so-called free antivirus program. In most cases, it turns out that the downloaded program is actually a fake! These rogue antivirus programs often generate ads or alarming security alerts, prompting the user to pay for the full version of the product.

Search for free antivirus programs through trusted sites such as the developer or one of its partners. Do NOT click on advertisements for “free antivirus” programs as you never know who’s behind the ad or where the ad will direct you. In other words, do your research and go directly to the source.

The Pros and Cons of Free Antivirus Programs

Many good antivirus programs are available for free. However, keep in mind that free usually comes with a price as far as performance goes. You may not pay in money, but you may have to deal with manual updates, less frequent updates, or limited support. You may have to view advertisements in exchange for “free.” On the other hand, these tradeoffs may be just right for your needs.

We have done quite a bit of research into the more popular antivirus products on the market in 2009. Look through our reviews and you will find several reputable antivirus developers that offer free versions for personal use. Avira Antivir and Avast are both good choices that come to mind.

No matter which free antivirus product you choose, realize that your computer is not necessarily protected against all threats. Look for protection from spyware too.

I am interested in the ParetoLogic Antivirus Plus antivirus program. Is it safe for downloading and does it offer real time protection for PCs?

We do recommend ParetoLogic Antivirus along with several other reputable computer security products here at Filetonic.com quite often. When considering any antivirus product, it’s smart to research it thoroughly to ensure that you are getting a good product that will protect your computer from harm. Below are a few considerations.

Choosing an Antivirus Program

There are a few important factors to consider when choosing an antivirus program. One of the most important considerations is the frequency of updates. Since there are new malware programs and viruses issued daily, antivirus companies need to stay on top of the threats. The best way to do that is with daily virus definition updates. While free programs are attractive due to being free, a major drawback of most free antivirus programs is that they don’t include automatic updates. This means that people have to check for updates manually, which they often don’t.

Paretologic Anti-Virus PLUS Active Protection

The Paretologic Anti-Virus PLUS program offers real time protection against viruses and other threats, updating its definitions and issuing updates constantly. With its Active Protection, Paretologic Anti-Virus PLUS guarantees computer security against all manner of online threats and dangerous downloads.

Quality Customer Support

Another important consideration is value. For the price of an antivirus product customers should feel that they are getting a superior program, and one that is easy and comfortable to use. Along with value is all-important customer support. Should you run into a virus problem after you buy your antivirus software, it is nice to know that the program technicians are there with support when you need it. Paretologic’s Anti-Virus PLUS program offers assistance from a software support team, dedicated to registered Paretologic customers. Working quickly and responsively, these techs will work with you to solve your problems and ensure your product satisfaction.

Beware of Rogue Programs and Impostors

You are right to ask about the safety of antivirus software programs that are available online, as hacker often use rouses like this to attract victims who unknowingly install malware on their systems. When choosing an online program, you want to make sure that you are on an official retail website, not an imitation. Rogue programs often have similar website names, in an attempt to fool people - like paretologic2009.com. Beware of imposters and only trust the original - paretologic.com.

Westcoast Labs Certified

The Paretologic Anti-Virus PLUS is a safe download and a superior program. Certified with an Anti Malware Checkmark by Westcoast Labs - an independent research and test center - the Paretologic Anti-Virus program is validated as a solution of the highest quality.

I have SpyHunter 3 as well as an older version of Norton that is just a free version now. I can scan my computer and come up clean and still end up getting stuff from “Personal AntiVirus” how do I get rid of this?

Personal Antivirus

As you know, Personal Antivirus is one of those rogue antivirus programs that is really malware. It usually arrives through a worm and then generates fake security alerts in an attempt at tricking you into purchasing the Personal Antivirus product.

Inadequate Virus Protection

Right off the bat, since you are still seeing Personal Antivirus messages or alerts, your computer may be under protected with its old version of Norton and SpyHunter3. While Norton products are good, I wonder if your older, free version of Norton is receiving updates with the latest protections against viruses and spyware. I looked up SpyHunter3 and apparently it is a legitimate antispyware product developed by a company called Enigma Software. However, since these two products in conjunction are not ridding your computer of the fake, Personal Antivirus program, it’s time for a new approach.

Before moving forward, check Norton and SpyHunter3 to see that they are updated with the latest updates from their developers. If not, update each program and run full system scans. If you have Windows XP or Vista, download Microsoft Windows Defender (it’s preinstalled on Windows Vista), update it, and run a full scan with this tool.  

Online Malware Removal Tools

A number of online removal tools are available from leading computer security developers such as Microsoft, Trend Micro, McAfee, and Norton. Let’s see if any of these free tools will work for you.

• Microsoft Malicious Software Removal Tool
• BitDefender Scan Online
• Trend Micro House Call
• McAfee Free Scan

Why Multiple Antivirus and Antispyware Tools are Necessary

I know it seems like overkill to run multiple anti-malware tools. Since each company develops its own products and discovers new threats independently, it makes sense that if one product doesn’t find a virus, another one (from a company that has already detected the threat and developed a fix) will.

I suspect that at least one of these free online tools will do the trick for you. If not, consider investing in a more modern antivirus product such as one of Norton’s latest PC security products or an Internet protection suite from one of the major computer security developers. If you are looking for a good antivirus/antimalware program, we reviewed numerous products earlier this year. All are reputable and several offered excellent protection for personal use at no charge. You can read the antivirus reviews at your leisure and decide which one makes the most sense for your system.

Earlier free AVG found numerous viruses and Trojans. Is it possible there are fragments left on laptop? The online scan at ESET showed about then variants of the Trojan “Viruits.” My home page has been replaced with a URL for Guarddog 2009 which is listed under AVG’s vault as dl.guarddog.generic13.ASQV.bm8 tem. In addition, my USB keyboard no longer works properly and my cursor acts up. Would you advise me to install a fresh copy of Windows or do full restore to factory setting to solve these problems? Is it safe to delete User Data found under Documents & Settings in C:/? Is it too late to use the Windows recovery disc?

Looks like you still have quite a few problems on your laptop, including remaining malware. Perhaps I should caution you to back up any data that you want to keep on the computer. Since it appears as if not all of the virus and malware infections have been removed from your computer, you will need to make sure that all of these malware entities have been removed before you reinstall, repair, or reformat the computer. If you don’t get rid of these infections first, then they will remain on the laptop, continuing to mess it up. After you get rid of all of the bad stuff, then you can take care of your Windows operating system. However, drastic measures such as reinstalling the operating system may not be needed once you remove these infections.

Scanning for Malware

One of the biggest problems with malware is that some of it slips by one anti-virus/anti-spyware application. This is why running two separate applications to remove the infections is a good idea. 

1. First, print these directions so you will have them to refer to. Then, close out all applications before running your anti-spyware/anti-virus applications. Hit the CTRL + ALT + DEL keys together to bring up the Windows Task Manager. It will show you if anything is still running on your computer. Simply select “Applications” in the upper left and close any programs that remain running.
2. Run AVG again and see what it comes up with on the laptop. It is important to note that this application doesn’t always catch things like tracking cookies which are also know to disrupt mice, keyboards, web browsing, etc.
3. Run a second application such as Anti-Virus PLUS, Ad-Aware, or PCTools to remove any remaining remnants of Trojans, spyware, or viruses. Anti-Virus PLUS offers a free scan and you can use this to see what type of infections remain on the computer. In particular, I’ve come across a lot of people who suggest that Malwarebytes does a good job of removing the KRYPTIK Trojan which you had listed in your original question. This should also remove guarddog2009.
4. Reboot and run your anti-spyware/anti-virus applications again to ensure that all malware has been removed.

Repairing Windows

Before making the decision that you need to completely repair of restore the computer’s operating system, why not try cleaning the registry and checking the hard disk to repair important files? You can use a registry cleaner such as RegCure and the chkdsk utility that comes with Windows.

To use chkdsk, click Start→ click Run→ Type cmd→ press Enter. Type in chkdsk volume:/r in order to locate bad sectors, repair errors, and recover readable information.

Of course, you can always use the installation disks to complete a recovery. If you follow these directions, your documents and files will be saved, but you will have to reinstall any programs and modify your personal settings:

1. Insert the installation disk into the CD drive while the laptop is on.
2. Turn the laptop off.
3. Wait a minute and turn the power on. The laptop should be able to boot up. If it doesn’t, press a keyboard key to get it to work/ follow prompts that appear/ try pressing “ESC” and “F1.”
4. Don’t press the “R” option for the “Recovery Console.” Press the “R” to “Repair” your system when the prompt appears.
5. Follow remaining prompts as they appear until finished.

Deleting User Data

User Data is created by Windows. It defines your User Profile and should not be tampered with unless you can identify it as data unnecessary for maintaining the profile.