Lesson 14

Lesson 14
Anti virus Recovery Programs

You should run your antivirus program once a week to keep a check on your computer. If all of your updates are in place there should not be any problems. However if an update is downloaded after a virus has made its way into your computer then the following steps are recommended.
1. Run your update on your antivirus program by going to the symbol for the program and right clicking on it. Launch the updates for the program. You must be able to connect to the Internet to do this procedure.
2. Run your antivirus test program to identify the type of virus that has infected your machine.
3. Go to www.symantec.com You will find the following information at this source.
4. Disable System Restore (Windows )
5. Make a System Removal Tool Download to your Desktop of the virus you identified on your computer.
6. Norton recommends that you do a back up of your registry.
a. Click Start, and then Run. (The Run dialog box appears)
b. Type regedit in the box
Then click OK(The Registry Editor opens)
c. Navigate to and delete the following key:
HKEY_LOCAL_MACHINW\SOFTWARE\Microsoft\Windows\Current Version\Run\<random value>
d. Navigate to the key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
e. In the right pane, delete the value: “<random
Value>”=”System%\<random, filenames>.exe %1”
f. Exit the Registry Editor.
g. Restart the computer in Normal mode. You can do this by following the steps below and unchecking the safeboot box in the Systems Configuration Utility page.
7. Run your antivirus tool and then log off and restart your computer. Run the antivirus tool a second time to be sure that the virus is completely removed.
This information is available by Kevin Ha at Symantecs web page.
Starting your computer in Safe mode
Situation: This document tells how to start your computer in Safe mode.
Solution: Safe mode is the Windows diagnostics mode. When you start the computer in Safe mode, only the specific components that are needed to run the operating system are loaded. Safe mode does not allow some functions, such as a connection to the Internet. Safe mode also loads a standard video driver at a low resolution. Due to the low resolution, your programs and the Windows desktop may look different than usual and the desktop icons may have moved to different locations on the desktop.

Notes:
·This information is provided for your convenience. Safe mode is a feature of the operating system. If you need additional help with starting the computer in Safe mode, or if you want to start the computer in Safe Mode for an operating system that is not listed here, please contact Microsoft or the computer manufacturer.
·All Windows operating systems except Windows 3.1 and Windows NT can be started in Safe mode.

This document provides two methods for starting the computer in Safe Mode. One method uses the F8 key during system start up, and the other method uses the System Configuration Utility, which is a feature of some Windows operating systems. Please note the following:
· System Configuration Utility: If you try the System Configuration Utility and cannot start its dialog box, use the F8 method instead. If the System Configuration Utility method is not listed for your operating system, the utility is not available in that operating system.
·F8 key: Using the F8 key can be more difficult than using the System Configuration Utility because you must press the F8 key at just the right time. If the F8 method does not work, repeat the steps, but press the F8 key more quickly, or press it several times. If the F8 key still does not work, use the System Configuration Utility method instead. On some older computers, the F8 key method does not work because the computer has disabled the F8 key for this purpose or the computer is designed to use a different key.
Note:
· Due to the nature of Safe mode in Windows XP, it is not possible to install software while in Safe mode.
· When you finish the troubleshooting or removal procedure, if you are using the first (recommended) method, you must re enable Normal mode. Until you do this, the computer will continue to start in Safe mode.
· Normal mode is enabled by unchecking the System Configuration Utility Safeboot box as seen below.

Windows XP includes the System Configuration Utility. If you can start the computer normally and get into Windows, this is the easiest--and the recommended way--to restart the computer in Safe mode.

To use the System Configuration Utility method
1. Close all open programs.
2. Click Start, and then click Run. The Run dialog box appears.
3. As shown in this illustration, type msconfig and then click OK.

To view a picture of how to run msconfig click here
4. The System Configuration Utility appears, as shown in the following illustration. Check the "/SAFEBOOT" option, and then click OK.

To view a picture of how to see the System Configuration Utility click here
5. The computer restarts in Safe mode. (This can take several minutes.)
To view a picture of how to run System Configuration Utility click here

Perform the troubleshooting steps for which you are using Safe Mode.
6. When you are finished with troubleshooting in Safe mode repeat steps 1-5, but in step 4, uncheck "/SAFEBOOT"
7. Close all programs and restart the computer as you normally would.

To use the F8 method
Use this method only if Windows XP is the only operating system installed on your computer.
1. Start Windows, or if it is running, shut Windows down, and then turn off the computer.
2. Restart the computer. The computer begins processing a set of instructions known as the Basic Input/Output System (BIOS). What is displayed depends on the BIOS manufacturer. Some computers display a progress bar that refers to the word BIOS, while others may not display any indication that this process is happening.
3. As soon as the BIOS has finished loading, begin tapping the F8 key on your keyboard. Continue to do so until the Windows Advanced Options menu appears. If you begin tapping the F8 key too soon, some computers display a "keyboard error" message. To resolve this, restart the computer and try again.
4. Using the arrow keys on the keyboard, scroll to and select the Safe mode menu item, and then press Enter.
5. Perform the troubleshooting steps for which you are using Safe Mode.
6. When you are finished with troubleshooting in Safe mode repeat steps 1-5, but in step 4, uncheck "/SAFEBOOT"
7. Close all programs and restart the computer as you normally would.
8. Using the arrow keys on the keyboard, scroll to and select the Safe mode menu item, and then press Enter.
9. You then see the prompt to restart the computer. Click Restart.