Sality Killer and Virut Killer

By // No comments:
Every exe in your computer can get infected with sality virus and virut virus if you are not aware of these. Once they get infected your system and other drives, the installation of avira antivirus is fatal as it quarantines all the exe infected virus including the explorer.exe and other all the system programs. Then it will lock you outside of your computer making it unaccessible to the user, forcing the user to reinstallation of the operating system. To fight against them, kaspersky has pretty two tools salitykiller and virutkiller, better says to run them in safe mode, but the virus is smart itself to disable the safe mode as well. They work pretty good in normal mode too but they are exposed to the infected system, themselves are infected with those two creepy virus. So better way run them in the zipped mode and run a full scan. It works.

Here too, its time consuming and the use might thing the formatting and reinstallation of the system may be the easy way to handle this. But the care should be taken to take the backups of user data in the system drive.

However even after the reinstallation if the care is not given the whole system can be reinfected if any one of the infected exe file from the other drivers are executed in the system. Even the drivers should not be installed b4 cleaning the whole system. Running a full scan after the reinstallation of the operating system will do.

Happy killing sality and virut. If you enjoy working with them, test them in virtual OS or vmware.

igfxwt32.exe

By // No comments:
Searching for the trouble at the Internet, its really not that hard to get. But the solution for the problem, thats really hard to get and one has to go for searching and searching to find the real one solution.
A little virus that resides on our computer and that adds an exception in the windows firewall with NETLAN or LANX or any name, its really annoying and moreover the C: drive these folders
c:\sanbox
c:\cwsanbox
c:\program files\wireshark

Everytime you delete it, it does not hesitate to get itself deleted but once your computer wakes up after reboot those folders are there with some exe files within them. The presence of this virus can be detected by autoruns tool at the startup tab with the name of Intel Wifi Service with the missing publisher name of the file, pointing to the file igfxwt32.exe in system32 folder of the system drive.

The unlocker tools also fails to delete the file igfxwt32.exe, it says it will be able to delete the file after the reboot but never will. The malware bytes which is free to try comes to the rescue in such case. But it will take too much time enough to install a new system. However that nuisance file can be deleted by from other bootable system. and then a fresh install of antivirus and full scan as well as that by malware bytes can free up the system. In some cases the malware bytes too hangs up with nothing doing itself other than NOT RESPONDING in the Task Manager.