Archive for the ‘ANTIVIRUS & SECURITY TIPS’ Category

Remove New Folder.exe virus and gain Access Back to task Manager, Folder Option, Regedit Back…..


Hey Friends,

New folder.exe virus is the most  irritating virus. It infects your every folder and creates a useless folder with the name New Folder or with the same name of your folder. This folder is itself a replicating virus in form of executable files.

This virus will also disable your task manger, Folder Options, RegEdit so that user is unable
to disable this virus
Manual steps to remove this virus:-
Step 1: Cut Supply line
1.    Search for autorun.inf file…. right click>properties> un-check the read only option…..  Now Open this  file in notepad and delete everything and save the file.

2.   Now Again make the file read only….  so that the virus could not get access again.
3.   Go to start > run and type msconfig and click ok
4.   Go to startup tab look for regsvr and uncheck the option click OK.
5.   Click on Exit without Restart, because there are still few things we need to do before we can restart the PC.
6.  Now go to control panel> scheduled tasks and delete the At1 task listed their.
Step 2: Get registry access back

1.    Go to start > run and type gpedit.msc and click Ok.

If you are Windows XP Home Edition user you might not have gpedit.msc in that case download and install it from Windows XP Home Edition: gpedit.msc and then follow these steps.

2.   Go to user’s configuration> Administrative templates> system

3.   Find “prevent access to registry editing tools” and change the option to disable.
4.   Once you do this you have registry access back.
Step 3: Del the Virus Files from registy
1.    Go to start > run and type  regedit and click ok
2.   Go to edit> find and  search for regsvr.exe,
3.   Delete all the occurrence of regsvr.exe; remember to take a backup before deleting.

Note:  regsvr32.exe is not to be deleted. Delete regsvr.exe occurrences only.

4.   At one ore two places you will find it after explorer.exe in theses cases only delete the regsvr.exe part and not the whole part. E.g. Shell = “Explorer.exe regsvr.exe” the just delete the regsvr.exe and leave the explorer.exe
Step 4:Del some remaining Virus’s Files
1.    Click on start>search> All  files and folders.
2.   Type “*.exe” as filename to search for and Click on ‘when was it modified ‘option and select the specify date option and Type from date as 1/31/2008 and also type to date as 1/31/2008 press Search.
3.  Once search is over select all the exe files and shift+delete the files, caution must be taken so that you don’t delete the legitimate exe file that you have installed on 31stJanuary.
4.  Also find and delete regsvr.exe,  svchost .exe (notice an extra space between the svchost and .exe)


Step 5: Gain Access back to task Manager, Folder Option, Regedit Back…..

Download RRT  which will  give you back the control over your own computer by enables all the disabled programs by virus.

Download Now  http://www.megaupload.com/?d=08BW4ZOI



Finished 🙂 Yuppieeee….


Tested on: Windows XP

Be safe

 

If you want more information and tutorials about Antivirus and Security, check out other posts under category Antivirus and Security Tips.
Advertisements

What if Attackers come Doctor’s Dress up……….. Be Alert!!!!!!


 

yesterday was very hectic for me…. when I caught by a virus in form of an  antivirus…..really it was a big deal for me  to come out  from  this problem as it restrict to use all other programs like system restore, any other antivirus, internet connection and all .
The day before yesterday my dad installed a sw named Personal Security. And he was very happy to find such software which detected all viruses very efficiently. But only one problem was there that it was not a registered version and to delete all the detected viruses one has to buy the activation key of this software.
I was also very happy with all this and happily I thought to check for activation key of this sw on internet. But as I opened the very first resulted site I got shocked :O ….. Yeah exactly like this.
What I found written on web page which shocked me??????
“Personal security is not an antivirus it’s a Virus also known as a fake antivirus program. Personal Security will tell the user that their computer is infected and will use tactics to convince the user to purchase it. It will also use other tactics, such as the use of pop ups to warn the user and it don’t uninstall by add and remove program.”
On the very next moment I just tried to uninstall this software but I can’t…… I tried many other procedures to manually delete a sw or to restore the system. But the virus has disabled all these. But even not these only but all the icons on deck top and in start menu also. Finally I come out with this problem that I will tell u later. Before this I will tell you about many other types of software which are really virus in form of antivirus……
How to remove these Viruses:-
1.   Open window in safe mode.
2.   Install the antivirus Malware bytes’ Anti-Malware.
3.    Update this software and then scan your system.
4.   If you can not update in safe mode then first scan your system and then Del a folder named Pers Security exists in program files folder of c: now restart your computer and update your antivirus now and remove the remaining files.
That does all……be happy now…you are out of problem.
But for next time promise with urself that you will never install any sw like this….same as my dad did… 😉
Be safeJ

Scan Suspecious Files Online> Through 39 Best Antiviruses in one time


Hi Friends,
Many time we need to scan any downloaded software to scan before installation, and check email attachments for viruses….. yeah we normally have one antivirus in our pc to scan all this… but after scanning can we say surely that the result is correct…. ofcourse NoT!!!!
So How it would be if you scan your file from one antivirus and got results from many and best antiviruses of world like AVG, McAfee, Avira, Symantec, Microsoft, kaspersky and many more……

Yes, You can do it by scanning the suspecious files online using Virustotal.com…..
About Virus Total.com 
VirusTotal is a service developed by Hispasec Sistemas, an independent IT Security laboratory, that uses several command line versions of antivirus engines, updated regularly with official signature files published by their respective developers.
This is a list of the companies that participate in VirusTotal with their antivirus engines.
  • AhnLab (V3)
  • Antiy Labs (Antiy-AVL)
  • Aladdin (eSafe)
  • ALWIL (Avast! Antivirus)
  • Authentium (Command Antivirus)
  • AVG Technologies (AVG)
  • Avira (AntiVir)
  • Cat Computer Services (Quick Heal)
  • ClamAV (ClamAV)
  • Comodo (Comodo)
  • CA Inc. (Vet)
  • Doctor Web, Ltd. (DrWeb)
  • Emsi Software GmbH (a-squared)
  • Eset Software (ESET NOD32)
  • Fortinet (Fortinet)
  • FRISK Software (F-Prot)
  • F-Secure (F-Secure)
  • G DATA Software (GData)
  • Hacksoft (The Hacker)
  • Hauri (ViRobot)
  • Ikarus Software (Ikarus)
  • INCA Internet (nProtect)
  • K7 Computing (K7AntiVirus)
  • Kaspersky Lab (AVP)
  • McAfee (VirusScan)
  • Microsoft (Malware Protection)
  • Norman (Norman Antivirus)
  • Panda Security (Panda Platinum)
  • PC Tools (PCTools)
  • Prevx (Prevx1)
  • Rising Antivirus (Rising)
  • Secure Computing (SecureWeb)
  • BitDefender GmbH (BitDefender)
  • Sophos (SAV)
  • Sunbelt Software (Antivirus)
  • Symantec (Norton Antivirus)
  • VirusBlokAda (VBA32)
  • Trend Micro (TrendMicro)
  • VirusBuster (VirusBuster)
 How to Scan files using Virus total>>>
1. Email Attatchments>
        Create a new message with scan@virustotal.com as destination address of your email.
  1. Write SCAN in the Subject field.
  2. Attach the file to be scanned. Such file must not exceed 20 MB in size. If the attached file is larger, the system will reject it automatically.
  3. You will receive an email with a report of the file analysis. Response time will vary depending on the load of the system at the time of placing your request.
2.Files On Computer>>>
   There are 2 methods To scan files on computer;
   1. Go to http://www.virustotal.com/ and browse file from your pc and send it.
   2. Download the VirusTotal Uploader to directly send files from your system using the context menu as showing in picture below>

 Download virus Total uploader> Download Now http://www.megaupload.com/?d=X57N4C42
Be safe☺

 

If you want more information and tutorials about Antivirus and Security, check out other posts under category Antivirus and Security Tips.

Protection Against Viruses from USB in 3 steps


 

Hello Friends,
Viruses attack through USB is a very common problem….
Today i m gonna tell you 3steps to protect your PC from Viruses incoming from Your USB drive also how you can del those viruses from USB….
here i will cover these 3 steps>
1. Disable AutoRun Functionality
2. Manually deletion of viruses through USB drive
3. Scan USB using Antivirus
**Never Open any USB without checking for Viruses using the step 2 and 3.
Detailed description of these steps>>>>

1. How to Disable Autorun Factionality:
well, i guess all of you know, what is autorun…. so i just step forward to tell you how to disable it.

Group Policy settings to disable all Autorun features in Windows

  1. Click Start, click Run, type Gpedit.msc in the Open box, and then click OK.
  2. Under Computer Configuration, expand Administrative Templates, and then click on System.
  3. In the right side you will see Turn off Autoplay,right click on it and then go to Properties.
  4. Click Enabled, and then select All drives in the Turn off Autoplay box to disable Autorun on all drives.
  5. Click OK to close the Turn off Autoplay Properties dialog box.
  6. Restart the computer.

Edit Registry to disable all Autorun features in Windows

  1. Click Start, click Run, type regedit in the Open box, and then click OK.
  2. Locate and then click the following entry in the registry:
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\NoDriveTypeAutorun
  3. Right-click NoDriveTypeAutoRun, and then click Modify.
  4. In the Value data box, type 0xFF to disable all types of drives. Or, to selectively disable specific drives, use a different value as described in the “How to selectively disable specific Autorun features” section.
  5. Click OK, and then exit Registry Editor.
  6. Restart the computer.
2. Manually deletion of viruses through USB drive:
In this step you will learn, how to manually check USB for viruses using Command prompt and how to delete them……
First, i m gonna tell you how to check USB for viruses>
  1. Click Start, click Run, type cmd , and then click OK.
  2. Now go to my comuter to check, what drive location is assigned to USB from A: ,B: ,C: ,D: ,…etc….
  3. Type that location in Command prompt and press enter.
            For Example…..   if USB drive location is F:
            then type F:
            as result you will got something like this F:/>
    4. Now check all the files and directries in USB. for this:
  •  Type Attrib and press enter….. By this you will get list of all the files
  • and to see directries type dir  and press enter…………..
        Check the list throughly for any virus….
            Now the question arrises which file could be a virus. how you can know about that????? 
  • Well, for this you should know names of files and directories that you have copied in USB.
  • Any suspecious file that you did’t copy, can be a virus as viruses copy automatically with other filles.
  • Mainly Suspeuscious files having extension  .exe or .inf  and suspeciouse Directories with some Bad names or a very Attractive name….. can be virus .
  • Suspecious file with extension .exe and attributes SHR,  could be definitely a Virus.
Secondly, I will tell you how to delete these Suspecious Files from USB>

5. Continuing after step 4,  Type suspecious file name followed by del and Press enter.

                 For Example> if i want to del autorun.inf, then i will write like this
                                  F:/>del autorun.inf
    6. If any suspecious file have attrib SHR or SH…… then it will not delete directly. For deleting these files first you have to remove their attrib…
                   To remove SHR attrib type> attrib -r -h -s filename
                   To remove SH attrib type> attrib -h -s filename
after removing their attributes, delete these files also.
3. Scan USB using Antivirus
At last Don’t Forget to scan your USB drive using a good and Updated Antivirus.
4. Step Four………… Nooo no, No more steps, You can open your USB drive……your PC is safe now.
Tested on: Windows XP
Be Safe

 

If you want more information and tutorials about Antivirus and Security, check out other posts under category Antivirus and Security Tips.

Stop Virus entering from USB to Pc and Vice versa


Hey Buddies,

In my previous post Protection Against Viruses from USB in 3 steps i have taken consideration on how to protect a pc and how to delete USB’s viruses.

In this post i am gonna tell to How to protect both PC and USB from Viruses. You must read my last post Protection Against Viruses from USB in 3 steps before going ahead.

Well, Do you know On what moments viruses transfer from USB 2 PC and PC 2 USB????

  1. At the time when we Open USB Drive for Copying a File from USB to PC
  2. During Copying a File from PC to USB

So if we do something to stop entering Viruses on these two moments then you can protect both PC and USB from Viruses.

Now the Question arises How we can do this……
Answer:

1. At the time when we Open USB Drive for Copying a File from USB to PC

  • On this time if we disable the Writing Property of USB drive then viruses can’t enter in the USB.

Now Steps to disable the Writing Property of USB drive:

1.  Click Start, click Run, type Regedit in the Open box, and then click OK.

2.  Go to HKLM > System > current control set > control

3. Right click on Control folder> new> key and give name ‘StorageDevicePolicies’

4. Now In the right side window right click > new > Dwrd value and give it a value ‘1’

5. Now close registry, restart PC.

2. During Copying a File from PC to USB
  • Always use ‘send to’ (right click on file that has to copy> send to > USB Drive) except copind and pasting file.
  • During Copying a File from PC to USB Remember to enable the Writing Property of USB drive by changing value 0 in step 4.
Direct shortcut to Enable and disable the Writing Property of USB drive

Note: Registry Modification will be in effect only after Reboot PC.

Be safe

If you want more information and tutorials about Antivirus and Security, check out other posts under category Antivirus and Security Tips.

10 Tips to Protect yourself from being Hacked!!!!


Before writing more about hacking, i was thinking to let the innocent people know about hacking and how hackers perform their hacking operation to get your accounts. So that you can protect yourself from getting hacked!!!!!!

I am giving here Tips that ‘ what you should not to do’ with explanation that ‘ why not to do’.



Tip 1. Use Strong Passwords: 

  • Always use passwords that hard to guess (Mix of digits + letters in Upper case and lower case both) for your all accounts. the longer your password, the better.
  •  Never use any common word, your name, spouse, parents, birthdate etc.

Explanation 1:

  • Week Passwords and be easily  hacked using a Brute Force method which do combination of numbers and letters until the real password comes.
  • Common passwords containing name, birthdate can be easily guessed by your friends, any known to you.

Tip 2. Carefully Click on Links: 

  • Always Check the links carefully before clicking on that.
Explanation 2:
  •  To explain the this tip,I am taking to examples. Read the examples carefully.
    • Ex. 1: Please verify your Account….login here “http://okrut.com
    • Ex. 2:” we are upgrading our system. please verify your name, mail id, password etc. etc. before date blah blah…  here “http://yahoo.com/
    • Ex. 3: check this image… this screen shot i hv taken from a forum in Orkut.
Did you get what is Wrong here in these 2 Examples.hmmmm??? Ok let me explain you.
  • In Ex. 1: check the spelling of Orkut carefully in that link. It can take you on a Fake Orkut Login page. that is called Phishing attack. As soon as you login through that fake login page the hacker get the login name, password or complete information of your account.
  • In Ex. 2: is there anything wrong???? All the spellings are correct… dear ones, just click on the link, you will understand whats wrong. Don’t afraid to click… you r safe… Its just a tutorial to let you learn the things. So click the link……
    • hmmm…. Got my Point in ex. 2, Its showing you the link of yahoo. but as you click on it, It redirect you to this site. So Always check the link carefully. I recommend you to use “link preview addon” for your browser.
  • In Ex. 3: check the link carefully….. in last the extension is html… but just before html its written exe….. html is written here just to make you fool. so that you click on link. but as soon as you will click, an executable file will be installed into ur system. 
Tip 3: Never Open Email Attachments without scanning:
  • Don’t open any email attachment from any unknown person. And if the person is known then also first scan the email attachment before open or download it.
Explanation 3:
  • Email Attachments can contain Executable Virus files, that can harm your system. These files usually comes with extension .vbs, .bat, .exe.
  • image files with extension .Jpeg or .gif can also contain virus. Beware, Virus can be integrated with those jpeg files that are also auto executable. As soon as you open the virus infected picture, the virus will be install into your system.
  • Sometimes the file extensions are hided to make you fool.you can get an attachment with .txt extension(as txt files never contain executables) But in actual extension could be .vbs, .exe, .bat etc… check here for eg:http://en.wikipedia.org/wiki/ILOVEYOU
  • Word files, Excel Files can also contail macro viruses, that are very harmfull.
Tip 4. Never  get Trapped into attractive ads….Download only from reputed Sites.  
  • Attractive ads like:
    • Jackpot….”You have won $100000″ , “You are the lucky member today”, “Free recharge”,
    • Free screen-savers, Free wallpaper, Free Mouse Icons, Free Smiles
    • Free computer scan
    • Free Software
  • Don’t download Any software or anything else from just anywhere. Always check for reputed sites then download.
Explanation 4:
  • These ads are simply a  way to attract you to steal your identity and personal information. As soon as you click on it, the stealers get into your computer.
  •  Stealers are that which store all the matter you type including your username, password and send the information to the Hacker. The worst thing is these stealers are not come into notice by your antivirus.
Tip 5: Surf Internet From a limited User Account.
  • Create a limited user account on your system that does not have administrator rights. and surf web only from that limited account.
Explanation 5:
  • As limited Account does not have administrators right. So if anything does get into your system, will cannot change any main functions of your system.

Tip 6: Don’t tell Your IP to unknowns.

Explanation 6:
  • If you tell your IP to anyone then there may be chance that they can see Files in your system.
Tip 7: Turn off all java and java scripting by default
  • Turn of java scripting for your browser by default and only enable it for sites that you know you can trust.
Explanation 7:
  • This can change your account details, passwords, and can simply hack you.
  • Recently “Free Recharge Trick” on orkut is an Example of java script. It changes the victims complete profile, join unnecessary communities, leave scrap and comments on pictures of friends, and start a new community topic in forums congaing the Free Recharge trick’s link, to get more people into this trap.  See Profile of my one friend on orkut after using java script……

Tip 8: Never read an unsolicited e-mail

  •  Do spam unsolicited emails immediately without opening.
Explanation 9:
  • Coz just by opening mail, the sender can know your IP and probably can hack u!!!
Tip 9: Always use different different passwords
  •  Keep Password different  for some important account like paypal or any online banking account, other then your social account’s passwords
  • Try to use different passwords for your all accounts.
Tip 10: Keep your Antivirus Up to date.

Explanation 5: 
  • Antivirus updates contains the definitions of Viruses till date. So if you don’t  Update it regularly, then there can be chance to get infected your system from a latest coming Virus.
Be safe 🙂

 

If you want more information and tutorials about Antivirus and Security, check out other posts under category Antivirus and Security Tips.

Report a Suspected Phishing page or a mail containing Phishing page’s link


Dear All,

Phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details….
And these days the Hackers are very actively using the phishing page to hack Accounts.

So its our duty to just report about those phishing page, so that these pages and be removed, and no one get HAcked!!!!

How to know that which page is Phishing page:
well, for that read our the second tipin previous post…10 Tips to Protect yourself from being Hacked!!!!

Where to Report a Suspected Phishing page:

You can report phishing Pages here:

If you got any mail which contains a phishing page, then you can report about that mail here:

I report many pages daily 🙂  You also can help by reporting these pages to make web safe 🙂
TC

If you want more information and tutorials about Antivirus and Security, check out other posts under category Antivirus and Security Tips.