Author Topic: antivirus recommendation wanted  (Read 788 times)

jack

  • Member
  • **
  • Posts: 62
antivirus recommendation wanted
« on: February 12, 2020, 04:11:31 AM »
despite being careful, I suspect my PC is infected, what are your recommendations?


jack

  • Member
  • **
  • Posts: 62
Re: antivirus recommendation wanted
« Reply #2 on: February 12, 2020, 05:37:17 AM »
thanks Vortex, I am reading up on the links that you provided
I already did an offline MS-defender scan, and I had forgotten that I have a subscription to Sophos antivirus while on my Mac, so I installed it on my Windows PC and am scanning as I write.
this morning I booted into Windows from an external SSD because I like to keep my everyday system as light as possible to make backup and restore quick, as I have two versions of Visual studio on the SSD, but trying to access files from the internal C drive failed, got message that files were corrupt
I decided to reboot into the SSD and as it was booting it started "repairing" my internal C drive, it took a long time, was a bit concerned about this, so  tried to boot into the "repaired" C drive without success, luckily I have a 5 day old backup and restoration succeeded, whats the recommend procedure for checking for infected MBR/GPT ?

Vortex

  • Member
  • *****
  • Posts: 2334
Re: antivirus recommendation wanted
« Reply #3 on: February 12, 2020, 05:59:54 AM »
Hi Jack,

You can backup the MBR with disc dump ( dd ) which also has provides Windows binaries :

http://www.chrysocome.net/dd

MBRFix, I frequently use this tool, it's a component of my WinPE builds :

https://www.softpedia.com/get/System/Hard-Disk-Utils/MBRFix.shtml

Naturally, you can use live Linux CDs to backup the MBR.

Also, md5 is your friend to verify the authenticity of your MBR backups.

UEFI systems are complicated compare to the traditional BIOS devices. In the past, I used GPT fdisk to recover a UEFI system :

http://www.rodsbooks.com/gdisk/


hutch--

  • Administrator
  • Member
  • ******
  • Posts: 7539
  • Mnemonic Driven API Grinder
    • The MASM32 SDK
Re: antivirus recommendation wanted
« Reply #4 on: March 01, 2020, 12:59:43 PM »
There is a reasonably simple option, download KVRT.exe from Kaspersky. It gets updated every day so once you download it, run it then delete it.
hutch at movsd dot com
http://www.masm32.com    :biggrin:  :skrewy:

AW

  • Member
  • *****
  • Posts: 2583
  • Let's Make ASM Great Again!
Re: antivirus recommendation wanted
« Reply #5 on: March 01, 2020, 08:15:13 PM »
There is a reasonably simple option, download KVRT.exe from Kaspersky. It gets updated every day so once you download it, run it then delete it.

Hi Hutch,

Note that you are answering to a question posted on 11th February.
I hope Jack had solved his problems in the meantime, because this out of time answer will not be of much help, I believe.


What I mean, is that I did not find wrong to insert some humor here more than  2 weeks later, but you know better because you are da boss. 



hutch--

  • Administrator
  • Member
  • ******
  • Posts: 7539
  • Mnemonic Driven API Grinder
    • The MASM32 SDK
Re: antivirus recommendation wanted
« Reply #6 on: March 01, 2020, 08:40:34 PM »
What I try to do is keep a question coherent and while I have nothing against humour, it tends to kill a question when other extraneous material gets posted so I separated the posts between the original question and the extraneous material so that both interests were served.
hutch at movsd dot com
http://www.masm32.com    :biggrin:  :skrewy: