I recently was plagued with a Adware/Trojan Virus masked as a: C:\Windows\System32\ati2dva.dll

I tried everything, nothing worked. I could not delete the file either manually, in Safe Mode, Command Prompt Safe Mode, and either within the Registry {regedit]. I tried BitDefender System check, Norman Malware Removal, Spybot, and MSRT, with zero luck, they only program that actually saw this was BitDefender... which blocked it, but was unable to delete it.

After doing a Google search, I found that many people were having the same problem. I stumbled upon some solutions, none of which worked. A software solution called Prevx, and after saying in particular they could move that exact file, I fell victim to the old trick, of showing me they found the virus, but hey now I have to pay $29.99 to complete the removal process.

I don't pay for stupid solutions such as that, and I don't even know if it would have worked. So I tried a program called "Hijack This", you can find it via a http://www.download.com search. Basically you can run a scan, and target a suspicious file (and it found the file as suspicious), I then targeted it, but it was to slick. No luck.

I then tried "Avenger2", see below for detail, which is a custom program someone wrote, to basically have it execute a command pre-boot and delete the file in particular. It then zips/contains it and drops it into a specific location. No luck!

Avenger: http://swandog46.geekstogo.com/avenger2/download.php
Pasted this into the prompt: Files to delete:
C:\WINDOWS\system32\ati2dva.dll

Then I gave a program called "ComboFix" a try. What a gem this thing is.
ComboFix: http://www.bleepingcomputer.com/combofix/how-to-use-combofix

I created a new TXT file via Window's Notepad, and pasted this information in there (Registry portion not authentic).

File::
c:\windows\system32\ati2dva.dll
Registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{63608544-DEE0-49CA-BE63-C03E148FABBF}]

The information you pasted, is determined by the actual file location, see "File::". And then the registry location, see "Registry". The registry information will fluctuate, and you can't simply copy/paste the registry path above. You need to go to regedit [Start>Run>regedit] and click the root directory and search the file "ati2dva.dll". Then copy the folder structure up unto the long hex number.

You drag the TXT file onto the ComboFix executable. It will open a window and warn you about running Virus software simultaneously with the following processes it is about to perform. It will warn you twice, I ignored the warnings, and let my Virus software run. I did this because my Virus app could not delete the virus that I was in the process of deleting, but it was able to block it from attacking my computer, just not delete it (which would attack sporadically, yet be blocked.)

ComboFix, will then check your Windows Restore software, and if you don't have it, it will actually connect you with Microsoft for built-in download with the program itself. It then runs it course, reboots, and creates a log file. I forgot to mention it found 4 other suspicious registry issues, and repaired other areas as well.

Love this program!

Microsoft's Xbox 360 allows you to connect your console with your computer via Media Center, even if you don't have Media Center version of Windows, you can still rig it so it works. Another alternative is to use TVersity, which streams videos and music to your Xbox360, the great thing about this application is it converts video to the suitable codec on the fly. TVersity also works with PS3, you can find it here: http://tversity.com/

What I did instead, was just plug in a huge hard drive to my Xbox 360. As long as your AVIs aren't using odd audio codecs (or are beyond MPG and AVI/DIVX/XVID) you'll be fine. In the event your audio codec is off, you can download many utilities to update your audio codec (i.e. Lame MP3).

The Xbox 360 uses a Fat32 partition, and will not read NTFS. Also, if you try to format your hard drive on your PC (to a Fat32 partition), even from the command prompt, it will fail, because it will be unable to format a hard drive over 2GB. What you can do is download a application (Partition Magic) to fix this. I took the easy way out and just formatted the drive from a mac (OSX). It had no problem formatting the drive in a Fat 32 compatible partition.

Now I have a 1TB drive with thousands of movies and songs. The only catch is that Microsoft charges you, I think, $3.99, for a one time download to play DIVX movies. I also use USB keys (FAT32) and just plug it into the front of the console to view/listen to recent media.

Norton Security/Virus Scan:
http://security.symantec.com/sscv6/WelcomePage.asp

The above link provides a point where you can perform a security or virus scan of your computer over the internet, with Norton's up-to-date security definitions. You can also download a program that can automate the scanning once per week. All of which are free.

From my understanding, this is not an active security application, it does not monitor your system activity, so to solely use this product without virus protection and spyware removal software would not be wise.

Also AVG provides the same solution, yet is more so an active living breathing application that monitors your system, as opposed to just finding viruses after the fact. I've heard mediocre results with this program. Anyhow, here it is:

http://free.avg.com/

I'm sure there'll be plenty of more web-based (like the Norton described) that will be appearing. I'm surprised that Firefox hasn't integrated spyware/adware monitoring via a built-in module.

Keep in mind that [see previous post] that you can save your computer from malware with Microsoft's MSRT and Norman's Malware Removal tool, all free.

Just wanted to share some info regarding Adobe installations.

From my experience, I was able to install one license 3 times successfully [allowing updates from Adobe and activation]. I've read elsewhere that you can only install 2 times. I've actually called during an installation of CS3 and I was told by Adobe tech support I was allowed to install 3 times.

After the 3rd installation, I simply called, and activated by phone. So it is possible to activate more than 2 or 3 times if you activate by phone. I simply stated that I did a rebuild of my PC, and they granted me an activation.

Thought this might help to those who own more than one computer.

Keep in mind that I'm speaking of legitimate software...

Just a quick figure sketch. I went with some gangly zombie hands.

See article here:
http://news.cnet.com/8301-13880_3-9862223-68.html

If you have "Show Hidden Files and Folders" turned on (see Tools>Folder Options>View tab...), you'll see a bunch of Uninstall folders (in blue text, with $ signs) in the root of your C:. You can delete these files. These are the uninstall files for Windows Update, that allow you to roll-back your system if an update doesn't compute with your system. I decided to remove mine since my computer is fairly new and I don't see a risk of not being able to uninstall an update I've done through Windows Update.

Anyhow, I deleted my folders, totaling approximately 2GB.

The article above does not state this, but I found this via some research. I left two folders, one being "$hf_mig$", and the folder "ie7" (which is in blue, yet doesn't have a $ sign or "Uninstall" in the folder name). I was told the following folders/files will be needed in future updates. I kept those two folders.

Thought this tactic was interesting, especially since I help maintain a netbook that has an incredibly paltry hard drive, and this really helped free up some space.

I recently found a Trojan virus in my old restore point files. In an earlier post I spoke of System Restore [Start>All Programs>Accessories>System Tools>System Restore]. You enable/disable this feature by right-clicking "My Computer" and going to "System Restore".

I found this hidden Trojan gem in my: C\System Volume Information

My virus program was unable to remove this, I also could not manually remove it, even in Safe Mode, neither at DOS prompt, or could I even see the file for that matter.

Since I was unable to actually jump into the folder and remove the virus, I did the following:

1. I disabled System Restore [As mentioned above by right-clicking "My Computer"]
2. I then checked for the folder C:\System Volume Information to delete it
3. I then deleted C:\WINDOWS\PCHEALTH\HELPCTR\PackageStore contents
4. I restarted my system
5. I enabled System Restore [see #1]

I reran my virus program, and no more virus.

I like how Firefox has the auto-sweep of your personal information (if you choose to, in the preferences), but I also dig how Google Chrome has Incognito mode. Nothing sucks more than spyware, so this will be yet another way to dodge tracking cookies.

The average way to access Chrome's Incognito mode is by simply going to the Wrench icon and clicking "New Incognito Window"... which can be a hassle and laziness will make you never go there.

So I just made an Icognito shortcut next to my Chrome shortcut in my Start menu.

Create a Chrome Incognito Mode shortcut:

1. Chrome is not in the average Program Files area, it's actually here:
C:\Documents and Settings\USERNAME\Local Settings\Application Data\Google\Chrome\Application
2. From the path above, create a shortcut from your "chrome.exe" file [alt+drag].
3. Right-click that shortcut, and choose "Properties"
4. In the "Target" area, just add " --incognito". So basically a space after the already existing target path, and then two dashes, and then the word "incognito". There will be quotes around the already existing path, just don't add another set after your text insertion.It should look like this:
"C:\Documents and Settings\USERNAME\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --incognito
5. Hit "Apply/OK". Then just rename your shortcut, I called mine "Incognito Chrome".
6. Right-click your new creation and choose "Pin to Start Menu".

If it didn't work, it's because you can't spell "incognito".