Antivirus Guide & User Reviews.

Nipun

Nipun

Whompy Whomperson
MyGeekTips said:
My favorite virus here sality. :mrgreen:

I've been infected by this virus 3 times in last few years but never able been to disinfect it. I had KAV in 2007 it failed to disinfect it :-x then in 2009 I had norton it wasn't able to disinfect it. :-x & in 2011 I was infected with it to remove this virus I ran Quickheal Boot Scan 3 times still it wasn't able to disinfect it. :shock:
Click to expand...

Is this a bike that kicking it thrice will start it?
 
MyGeekTips

MyGeekTips

script-kiddie geek
Nipun said:
Is this a bike that kicking it thrice will start it?
Click to expand...

LOL No, In first time it disinfected all files then after the restart cpu usage was high so I scanned second time all same files were disinfected......still same so I tried third time but no avail. :(
 
coderunknown

coderunknown

Retired Forum Mod
MyGeekTips said:
My favorite virus here sality. :mrgreen:

I've been infected by this virus 3 times in last few years but never able been to disinfect it. I had KAV in 2007 it failed to disinfect it :-x then in 2009 I had norton it wasn't able to disinfect it. :-x & in 2011 I was infected with it to remove this virus I ran Quickheal Boot Scan 3 times still it wasn't able to disinfect it. :shock:

This virus is a polymorphic file infector. It keeps on injecting it codes in every executable file in the pc. It keeps on continuing the never ending process. :p
As it is a polymorphic virus it re-generates everytime it is deleted. :-x :-x

I would only advise doing a reinstall of windows in this situation. If you still wishes to give a last try to clean it try using these:

1. Download Win32/Sality Remover 1.2.0.616 Free - A useful tool for deleting the Win32/Sality virus from your computer - Softpedia

2. How to disinfect my computer from Virus.Win32.Sality?

Another way to disinfect is to remove the payload code in last line of every infected file. :p

I may analyze your system if you provide these logs:

1. HJT Log

2. MBAM Log

3. OTL Log

4. GMER Log
Click to expand...

there are many variants of sality. sality.b is safer. problem is the pure sality. it simply deleted .exe file. once infected, it takes a few minutes and you'll have a desktop full of dangling shortcuts.

a friend of mine got rid of it by installing QuickHeal (2008 it was i guess) and doing an immediate boot time scan. even avast detects it, of course if Avast can be installed.

dashing.sujay said:
Where does this comes from? :|
Click to expand...

back of my head :wink:

MyGeekTips said:
LOL No, In first time it disinfected all files then after the restart cpu usage was high so I scanned second time all same files were disinfected......still same so I tried third time but no avail. :(
Click to expand...

disable system restore.
 
dashing.sujay

dashing.sujay

Moving
Staff member
^You've a point.:) But from what experience I have, cracks generally don't contain such harmful viruses. (but no wonder, they can)
 
topgear

topgear

Super Moderator
Staff member
here's you all need to know about Sality ;-)

W32.Sality | Symantec

W32.Sality once infected my HDD - the only solution : I had to format the entire HDD ;-)
 
utkarsh73

utkarsh73

Journeyman
Sam said:
if you are using an illegal version of IDM, remove it. instead try DAP. even though it displays some banner, its the next best choice for you.

also do a boot time scan using avast. and also try avira A/V without the shields (deselect during installation). Avira have lot better detection rate than Avast when it comes to cleaning these trojan horses & spywares. i personally use this trick once every few month.
Click to expand...
I regularly use DAP but for some reasons I installed 30 day trial version of IDM. To check if there is problem is with IDM only, I uninstalled IDM and installed FDM but still the problem is same. And one more thing, the problem never happened with DAP.
I can't even reinstall windows as I have not got the original disk. I can only restore it to factory settings. Does restoring the system partition to factory settings serve the same purpose as reinstalling windows?? *EDITED*
One last time I m going to boot scan my HDD with avast and Kaspersky Rescue disk. Lets see what happens.

topgear said:
here's you all need to know about Sality ;-)

W32.Sality | Symantec

W32.Sality once infected my HDD - the only solution : I had to format the entire HDD ;-)
Click to expand...
Seems like I have to do the same...:-( But I have not got any external HDD to backup important data.
 
Last edited by a moderator:
topgear

topgear

Super Moderator
Staff member
utkarsh73 said:
I regularly use DAP but for some reasons I installed 30 day trial version of IDM. To check if there is problem is with IDM only, I uninstalled IDM and installed FDM but still the problem is same. And one more thing, the problem never happened with DAP.
I can't even reinstall windows as I have not got the original disk. I can only restore it to factory settings. Does restoring the system partition to factory settings serve the same purpose as reinstalling windows?? *EDITED*
One last time I m going to boot scan my HDD with avast and Kaspersky Rescue disk. Lets see what happens.


Seems like I have to do the same...:-( But I have not got any external HDD to backup important data.
Click to expand...

Just backup those to a pen drive - the pen drive will be infected for sure the if the important files are some word, excel, pdf, access file - not any kind of executable file that sality can infect then you are safe to copy those to the pen drive. Format the entire HDD - install a good AV program and update it - make sure USB autorun is disabled and AV guard is on - now plug in the pen drive - Sacn it with the AV app - the AV app will detect all the sality virus files in the pen drive and clean - now you can use those backup files and the pen drive like as before ;-)
 
utkarsh73

utkarsh73

Journeyman
topgear said:
Just backup those to a pen drive - the pen drive will be infected for sure the if the important files are some word, excel, pdf, access file - not any kind of executable file that sality can infect then you are safe to copy those to the pen drive. Format the entire HDD - install a good AV program and update it - make sure USB autorun is disabled and AV guard is on - now plug in the pen drive - Sacn it with the AV app - the AV app will detect all the sality virus files in the pen drive and clean - now you can use those backup files and the pen drive like as before ;-)
Click to expand...
Now there are many .exe, .doc, .xls files along with many .flv and .mp4 files. If I convert all the exe files to .rar file, can they be prevented from infection??
And I m thinking of taking backup in an external HDD. Will it make a difference??
 
coderunknown

coderunknown

Retired Forum Mod
i have a feeling most of the exe files are already gone. why not try a rescue disc. from Avira or Kaspersky? cause A/V installed from inside windows has failed to disinfect your PC. maybe these can.
 
dashing.sujay

dashing.sujay

Moving
Staff member
^ +1, the virus would must have infected all exes, as it seems. Even if all viruses are removed, OS will create problems. Better format and scan with a bootable disk. (updated)
 
topgear

topgear

Super Moderator
Staff member
utkarsh73 said:
Now there are many .exe, .doc, .xls files along with many .flv and .mp4 files. If I convert all the exe files to .rar file, can they be prevented from infection??
And I m thinking of taking backup in an external HDD. Will it make a difference??
Click to expand...

there's no chance for the .exe files - but you can backup the doc, xls, flv and mp4 files - so better backup those asap ;-)
 
utkarsh73

utkarsh73

Journeyman
Ok. Now I have made up my mind to format the Hard Disk. I have never formatted the hard disk before. Which is the best way?? Boot with the windows disk and format all the partitions??
 
You must log in or register to reply here.
Top Bottom