My client's personal computer was brought to me for check-up and repair. He said that whenever he attempts to open it, it automatically restarts. I have encountered this situation before and so I suspected that it is infected by a virus but not the same virus I encountered before. I've tried first to disk clean up the HDD to recover some space. I found out that the HDD has little amount of free spaces which is much less than the required amount of disk space. Take note that in order for a HDD to work properly we must maintain at least 15% of free HDD space. Otherwise, we can expect a slow performance and sometimes hang up. During defragmentation also, we also need 15% of free space to allow the procedure. I got tired of doing trial and error, so I decided to apply combofix to remove the viruses and those files infected.
After I applied combofix, for over 10 minutes, I was able to recover 35% of free spaces compared from the previous which is only 9%. or a total of 45% after combofix. Combofix did find the virus identified as Brontok. The Brontok worms have almost eaten up the free spaces that is why the computer suddenly restarts due also to bad registy. Combofix restored the registry and those hidden files which was unaccessible prior to applying combofix. Then I started again to disk clean up and defragmenting the HDD.
The Brontok worm is a virus originated from Indonesia which is an attachments to an e-mail named Kangen.exe. Kangen means I miss you so much. The Brontok is also known with other names.
The PC is back to normal. It works smoothly.
Tips:
1. Study and learn about viruses and its behavior.
2. Never open an email if it is from an unknown source.
3. Maintain the required amount of HDD space which is 15% of the total HDD capacity.
4. Apply Disk clean up and Defragmentation once or as needed.
5. Never forget combofix, it's effective!
No comments:
Post a Comment