how to kill brontok virus/all my downloaded antivirus did not set up because brontok automatically shut down?

Question

about brontok virus

Answer 1

Reboot in safe mode w/ network support, (Hold down F8 when you reboot befor the Windows splash is displayed.) go to start menue RUN type regedit, go to Hkey, Local Machine Software/Microsoft/windows/currentversion/run and anyhing that looks like virses or spyware delete it. THIS CAN KILL THE OS MAKE A BACK UP FIRST you want to do this to current user aswell. and you want to clear all the temp files explore drive C under the tools button on the window. select the "Show Hiden Files." Unhide the other buttons. then open all the folders under C/Docs & settings \ user\Cookies
C/Docs & settings \ user\Local settings\History
C/Docs & settings \ user\Local settings\Temp
C/Docs & settings \ user\Local settings\Temporary Inet
MT the recycle bin
Then go to antivirus.com and run a free scan.

Answer 2

2

Answer 3

Manual removal steps:
Disconnect your computer from the network and disable file sharings, if any.

Disable System Restore (for Windows XP/Windows Me only).

For Windows XP:

Click Start.

Right-click My Computer, and then click Properties.

Click the System Restore tab.

Select "Turn off System Restore" or "Turn off System Restore on all drives" check box.

For Windows Me:

Click Start, point to Settings, and then click Control Panel.

Double-click the System icon. The System Properties dialog box appears.

Click the Performance tab, and then click File System. The File System Properties dialog box appears.

Click the Troubleshooting tab, and then check Disable System Restore.

Click OK. Click Yes, when you are prompted to restart Windows.

Start your machine in Safe mode.

How to start a computer in safe mode, pls refer to:
http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001052409420406?OpenDocument&src=sec_doc_nam

Update your Anti-virus software with the latest signature files and scan your computer withthe Anti-virus to detect the worm and delete any files detected as the worm by clicking the DELETE button.

Delete the value from the registry.

You need to back up the registry before making any changes to it. In correct changes to the registry can result in permanent data loss or corrupted files. Modify the specified subkeys only.

How to make a backup of the Windows registry, pls refer at:
http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/199762382617?OpenDocument&src=sec_doc_nam

Click Start > Run.
Type regedit
Click OK.

Note: If the registry editor fails to open the threat may have modified the registry to prevent access to the registry editor. You can used a tool to resolve this problem.

Download this tool. Once downloaded, ‘right-click’ the UnHookExec.inf file and click install. Then continue with the removal steps.
http://securityresponse.symantec.com/avcenter/venc/data/tool.to.reset.shellopencommand.registry.keys.html

Other alternative way to enable registry, please refer to:
http://www.patheticcockroach.com/mpam4/index.php?p=28

Navigate to the subkey that was detected by the anti-virus and delete the value.

Exit the Registry Editor.

If you are still unable to open your registry, you may try the following steps.

Boot up the infected computer, but do not login to the server, leave it at the login prompt.

Start up another clean computer, worm-free computer which has an updated anti-virus software running and an active firewall running preventing all inbound connections.

From the clean computer, start REGEDIT.EXE and click on File -> File -> Connect Network Registry. Connect to the infected computer.

Modify the following values in HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\NT\CurrentVersion\Winlogon to the following values:

"Userinit" = "C:\WINNT\system32\userinit.exe,"
"Shell" = "Explorer.exe"

(make sure that you enter the correct path to where Windows is installed. For example on NT4.0 it is WINNT)

After completing the above steps, reboot the infected computer.

Using the clean computer, map the C$ share and scan it using the up to date anti-virus to remove any infected files on the infected computer. Then, you should be able to boot to the computer and then follow Steps 6 - Steps 11.

Run a full system scan using an updated version of Anti-virus software and delete any files detected as worm.

Download and run a process management tool or process viewer to kill all worm processes running on the infected machine. The process management tool or the process viewer is available according to the machine's platform and can be downloaded free from the Internet. For example users can download and use the following process viewer:
http://www.sysinternals.com/Utilities/ProcessExplorer.html

Delete the scheduled tasks added by the worm. Click Start, and then click Control Panel. (In Windows XP, switch to Classic View.) In the Control Panel window, double click Scheduled Tasks. Right click the task icon and select Properties from pop-up menu. The properties of the task is displayed. Delete the task if the contents of the Run text box in the task pane matches the worm.

Enable the System Restore (for Windows XP/Windows Me only).

Re-scan your computer with an updated version of Anti-virus to confirm the computer is clean.

Re-connect your computer to the network once confirmed clean.

NOTE: As your computer is disconnected from the network, use a clean computer connected to the network to download tools and references.

You may refer to the below URL on protecting/securing your computer:
http://www.mycert.org.my/homepcsecurity.html

Prevention
Install the latest computer updates/patches.

Enable and use up-to-date antivirus software.

Close all ports except your http port otherwise you need to filter the ports to authorized users only.

Enable a personal firewall on your computer.

Practise safe email practices. You may refer at:
http://www.mycert.org.my/faq-safe_email_practices.htm

You may refer to the below URL on protecting/securing your computer:
http://www.mycert.org.my/homepcsecurity.html

Answer 4

clean the junk out time:
speed up the pc free up hard drive space
speed up your internet
its clean out junk time
have your system & internet running at top speed

System Mechanic 6 ... if you have a firewall/ anti virus ... get this version

System Mechanic professional 6 ... if you want firewall/anti virus get this version

when on the website click on Try it free for 30 days

you can only run 1 anti virus/firewall
on your system

DO NOT USE : DriveScrubber® 2 :ONLY IF YOU WANT TO HAVE ALL DATA REMOVED OFF THE PC
DriveScrubber® 2
Securely wipe all data on your drives.// only use this if you want too
remove all data from all hard drives //flash drives



System Mechanic 6 &
System Mechanic professional 6


has won these
coveted awards and received these rave reviews:

Contains all the great tools from System Mechanic Personal (See below). 6 Award winning products in one! The Ultimate Arsenal of Tools to Safely Speed-up, Fix, Optimize and Maintain Your PC 24 Hours a Day!

Features

system information check
click on maintain ..tab
click on system information report
cpu /memory check
to check your system
click on maintain ..tab
click on system information report
full list of system information
processor
memory
motherboard
bus
video
monitor
storage
audo
network adapeter
ports



System Mechanic® 6
Find and fix problems
Antivirus Protection
Protection from viruses, trojans, worms, and more
Internet Firewall
Protection against Internet threats
Search and Recover™ 3
Recover deleted data
DriveScrubber® 2
Securely wipe all data on your drives.

The only tool you'll need to keep your PC running fast, smooth, and error-free. New PC TotalCare™ combines all of the System Mechanic power into a single one-button interface for the perfect blend of absolute power and effortless simplicity.
Computer become cluttered, disorganized, and sluggish if not regularly cleaned. Automatically remove
system junk using the new PC Cleanup Wizard, keeping Windows fresh and fast
Using the new PC Acceleration Wizard, you can automatically optimize system settings and eliminate velocity bottlenecks for maximum gains in overall performance.

Automatically find and repair Windows security flaws that leave you open to attack from computer enemies such as spyware, adware, viruses, hackers, and identity thieves.
Use the new PC Repair Wizard to automatically diagnose and fix hundreds of problems with hard drives, system components, installed software, hardware, and more.

The System Mechanic antivirus technology repeatedly places first in independent tests. Work and play without fear of infection form viruses, worms, trojans, and other nasty enemies that can wreak
unnecessary havoc.

The System Mechanic Spython™ tool effectively eliminates spyware infection and uses proprietary methods to stop parasites before they start.

System Shield protects your PC from unwanted attempts at uncovering private or confidential data. Shield yourself against identity theft or personal misrepresentation.


Formatting your hard drive does not remove or erase your data. Many programs can recover data from a formatted drive. With DriveScrubber®, you can securely overwrite and remove all data to ensure 100% security.

Get back deleted pictures, videos, MP3s, e-mail, documents, spreadsheets, system files, and any other file or folder on your hard drive, CD/DVD media, MP3 player, digital camera, memory card, or other portable device using the new powerful Search and Recover StrongScan™ technology.


Key Features and Benefits

Eliminate Spyware
Protect Against Viruses
Defend Against Internet Threats and Hackers
Recover Deleted Data
Rescue Data from System Crashes
Protect Against Identity Theft
Wipe Data from Drives
Defrag Hard Drives
Solve stubborn PC problems
Award-winning virus protection
Advanced spyware protection
Accelerate performance up to 300%

Enabling Homepage Guard will keep your Internet home page from changing without your knowledge. It stops malware, adware, viruses and other Web sites from taking you anywhere you do not want to go.

Enabling Search Page Guard keeps your Internet search page from changing without your knowledge. It stops malware, adware, viruses and other Web sites from taking you anywhere you do not want to go.



Fix System Errors
Speed up Internet Access
Recover from Disaster
Clean up System Clutter
Defrag Memory
Optimize the Registry
Block Web Popups
Set up Scheduled Maintenance
Repair Windows Security Flaws
Repair drives after system failure
Rescue data from system crashes
One-click complete PC tune-up
Complete system cleanup



Stop Dangerous Programs from Starting
Make Windows Boot Faster
Uninstall or Relocate any Program
Tweak Hundreds of System Settings
Save and Compare System Snapshots
...and so much more!

IMPROVED! Spyware Protection

Advanced protection from spyware, malware, adware, and other PC parasites.

NEW! Disaster Recovery

Rescue PCs that won't start and revive damaged hard drives.

NEW! Startup Optimizer

Accelerate boot speeds by optimizing the programs that start with Windows.

FASTER! Disk Defrag

Defragment drives up to ten times faster than the Windows built-in defragmenter.

NEW! Fix Hard Drive Problems

Drive Medic™ fixes disk problems before they can cause data loss or system failure.

NEW! Comprehensive System Inspector Tool

Get ultra-detailed diagnostic reports of all hardware and software in your PC.

ENHANCED! Registry Optimization

Find and fix even more problems that can arise from the Registry and cripple your system.

NEW! Advanced Process Manager

Look under the hood and see what's running. Optionally block dangerous items from starting again.

Eliminate spyware

Defrag hard drives

Fix system errors

Speed up Internet access

Recover from disaster

Clean up system clutter

Defrag memory

Optimize the Registry

Block Web popups

Set up scheduled maintenance

Repair Windows security flaws

Stop dangerous programs from starting

Make Windows boot faster

Uninstall or relocate any program

Tweak hundreds of Windows settings

Save and compare system snapshots



http://www.iolo.com/sm/


Anti-Spyware Blocker 4.81
Block malware, recover Internet Explorer damage
spybot search & destory
spyware blaster
http://www.download.com


this will fix it
no1 trojan killer
XoftSpy 4.22 is the Latest and Most Advanced Spyware Detection and
< pop up spyware
Spyware
W32/Spybot
Browser Hijackers
Adware
Malware
Keyloggers
trojans
virus
toolband.dll
worms
back door trojans
Malicious mobile code
MALICIOUS SCRIPTS
toolbar trojans that dont show up
hacking trojans to take your email accout/passwords
screen name account passwords

download xoftspy422 and install it then run it stop the scan and click on scan settings tick every box and click on where it says >> click here to select a folder then tick the (c) thats your hard drive if you have 2 hard drives tick the 2 of them then click ok
then click start when the scan is done click on remove tab

http://www.paretologic.com/products.aspx...

ewido anti-spyware 4.0
http://www.grisoft.com/doc/10/lng/us/tpl...


ad-aware professional 6.0 /ad-watch 3.0
http://www.lavasoft.de/
ad-watch 3.0 block's all pop ups