So I’m in between computers at work and during the process of getting my new one setup I somehow got a virus. Well, I figured out the culprit and as it turns out it snuck in through FileZilla via their SourceForge download link. I have many opinions with this for both FileZilla, and SourceForge, and they both stink…This really upsets me because I’ve been a fan for years, but to have went over to the dark side to allow malware to be packaged with your products is just a shame.

(steps off soap box)

Ok, maybe there is some other poor soul out there that ran into the same issue I just did, where they installed the latest FileZilla package and things went seemingly fine until they restarted their laptop and noticed the screen just went blank. By blank, I mean a completely black screen with nothing on it but a cursor. Well, if you are experiencing this then hopefully the below will help you out.

IMPORTANT: I’m not a hardware guy, so if someone here has some better insight then feel free to share in the comments below. Also, if you follow the steps I did then you are doing this at your own risk. I can’t promise this will work for you, and I can’t promise it won’t mess anything up further.

Displaying the desktop again

Don’t panic (like I did). You should still be able to get to the task manager by using ctrl+alt+del and selecting task manager. Once you have task manager running, locate a process labeled runonce.exe and see if there are two running. If so, stop one of them by selecting it and pressing end process.

You should now see your desktop again. If so, there is still lots to do. If you restart your computer you will still experience the black screen on reboot.

Uninstall Programs

So the first thing I did after my desktop was showing was go through and uninstall the most recently installed programs (which I know I didn’t install). The below were the two that popped up in my add/remove programs list.

  • Binkibar (couple of different installs of this one)
  • PC Optimizer

Uninstall both of those bastards, and anything that looks remotely close to them. The binkibar program had a couple of different flavors installed in my list, so make sure you get them all. Now that you have this done, let’s move on to the next step.

Cleanup all the files

So when the uninstall occurs above, I know it says “remove all instances and data on uninstall” but trust me, it doesn’t remove everything. You need to start by checking out a couple of different areas and removing/deleting all you can. While I’m not going to go into deep dark explanation here, go check the following areas and remove any instance of the above programs.

  • Startup Folder – Within your start menu
  • All Temp files within Local Data and App Data
  • Program files (named binki or pc optimizer)
  • Browser Cleanup – Addons, Homepages, Tabs, Default Search Engines, Cache etc.

Still not done yet…

Registry Cleanup

WARNING: This is not something you want to play around with if you are unsure what you are doing.

Open up your registry by going to the start menu and typing regedit.exe in the search bar. Once in it, click on the computer directory (parent) and press ctrl+f. From here, perform a search for pc optimizer, pcoptim, and binki. For each search, locate and delete the values/keys/classes respectively for the infected areas. Once you delete, press F3 to continue the search for the current scope. Repeat by starting back at the computer (parent) for the new scope until you have removed all instances of those nasty little programs.

Cross your fingers…

At this point, you should dump everything out of your recycle bin for good measure, and then shut down your computer. Let it shut down completely, then go ahead and restart your machine and give it a whirl. Hopefully, everything pops back up like normal and you are back in business. Unless of course, you deleted something you shouldn’t have and now you are in a bigger mess than you started. Hopefully that isn’t the case though and you can sit back and breath a sigh of relief.

Helpful Links

So I went through all of this through several links I found online, and I kind of mixed and matched what I needed in order to resolve. I did not install any of the software these sites referred to, as I’m a bit skeptical of them to begin with.

http://www.lavasoft.com/mylavasoft/company/blog/how-to-remove-optimizer-pro-by-pc-utilities-software-ltd

http://www.reddit.com/r/techsupport/comments/2uy5oj/was_an_idiot_and_installed_pc_optimizer_malware/

http://malwaretips.com/threads/filezilla-virus.41843/

Anyhow, hope this article helps you out and if you have any additional information on how to resolve, feel free to add it to the comments. Again, use this at your own risk, check out the links I’ve added as reference as those links have far more detail on what to look for.

Tags: