I was working this morning when Paul gave me a call and ask me whether I can have a look of a student’s laptop that’s loaded with Chinese versions of XP. I went to his office and discovered that the laptop was having a Chinese version XP Pro. Paul told me there were viruses and trojans on the laptop, and for some reason, some functions like Windows Firewall just won’t start anymore. (we have checked the services related to Firewall). The laptop has been scanned with Sophos before, but since no anti-virus software can guarantee 100% detection rate, I bought the laptop with me and scanned it with Kaspersky to see whether I can find any more “bad guys” on the machine. The results turned out to be very interesting:
The trojans that you saw above are found on the laptop, it wasn’t detect / cleaned by Sophos…I was a bit disappointed, because 8 trojans is quite a lot, but then again as I said, there is no anti-virus software that knows every single virus out there.
The next step will probably be a reinstall of Windows, which is a common thing to most people who enjoy playing around with computers. From my experience, using a system that has been recovered from virus attacks is usually not a good idea (unless you have no choice), some how the system just aren’t as “stable” as before. There are many reasons; e.g. the virus was attached to a important system file, now the file has been deleted by the anti-virus software, Windows is no longer stable.
What I have learnt from this is that if you are using XXX anti-virus software and the built-in firewall in your Windows XP, you should use some kind of online scanner to check your computer every now and then just to make sure there are no viruses that has been “left behind” on your computer.
Free Virus Scanners:
Kaspersky : http://www.kaspersky.com/virusscanner
Trend Micro: http://housecall.trendmicro.com/