PeerBlock|Block Malicious P2P Connections,Spyware And Malware
Now a day’s many Computer and internet users are facing risk of getting hacked by bad neighbours, in many cases hacking exposes the data of the users and risks privacy. Generally hacking activities disclose very sensitive information’s, such as personal details, contact lists, credit card information, bank transaction’s data, etc. Computer’s hackers are often aiming at home and office computers. They are connected to the internet, and they spread and inject the various malware, viruses, and key loggers into victim computers.
Categories: Spyware And Virus Threats Removal Instructions Tags: Information sensitivity, PeerBlock, Security, Spyware
Trick to Inspect Your Computer Antivirus Working or Not
There are plenty of antivirus software’s are in the market. However, it is difficult to identify, which is the best antivirus. Every antivirus has its own algorithm for detecting a virus, but every antivirus is not capable of detecting malicious scripts and threats. So here is a simple trick to check your antivirus well working or not.
Categories: Spyware And Virus Threats Removal Instructions Tags: Antivirus, Security, Software, Spyware
Easily Scan & Find Malware on Hacked Websites for Malicious Script
Recently I written post about How I Recovered My Hacked WordPress Blog. You can check your website also for malware and dangerous script, while surfing I found an very useful website, URLVoid –Online Website Scanner which is beta service offering free scanning of website content for malicious script and malware.
Steps to Remove Win32:Rootkit-gen[Rtk] Virus And ur0 Virus
Win32:Rootkit-gen[Rtk] is harmful Virus, this virus normally slowdowns your system and interferes with system process.
Symptoms of this virus attack:
• Win32:Rootkit-gen[Rtk] virus infection notice by your Antivirus.
• Resides in ur0.com file which happens to be a virus itself.
• Also resides in System Volume Information folder.
• May also prevent double click opening of a drive.
Steps to remove Win32:Rootkit-gen[Rtk] Virus
• The only reason why this virus infects the PC again is that, it has been saved in the System Restore files.
• So turn off the System Restore now (Right click on My Computer-> Properties-> System Restore tab-> click on Turn off System Restore on all drives).
• Reboot the PC to let the restore files to get deleted.
• Now just turn on the system restore.
The virus has been removed!!
Steps to remove ur0.com virus
• Run Task Manager, End the ur0.com process, if any.
• Go to Start click on run type msconfig,click on startup disable unnecessary application along with ur0.com .
• Reboot into safe mode, search the ur0.com file,from windows search tool and remember to include hidden files option as well.
• Permanently delete the files found.
Related :How to Remove regsvr.exe from startup
Categories: Spyware And Virus Threats Removal Instructions Tags: Antivirus, Malware, Remove Spyware, Spyware, Virus Removal, Virus threats
Prevent Keylogging With Free DataGuard AntiKeylogger
Dataguard AntiKeylogger is a Freeware and which protect your data against all type of keyloggers.
Dataguard is well known Antikeylogger uses heuristics method to detect and neutralize all types of keylogging activities. Unlike your traditional signature based anti-spyware programs, Dataguard will protect privacy, data and information effectively. This is very clever program, doesn’t need any user intervention, and thus avoids the possibility of factor error. But also provides customization options for advanced users. Generally Keylogger entrance path is web browsers application loop hole,messaging service loop holes, and direct attack on keyboard driver.
Some Advanced Features of DataGuard Antikeylogger
DataGuard Antikeylogger
· Doesn’t need anti-virus signature database;
· Offers effective Protection against keystroke logging; clipboard capturing, capturing text from opened documents and windows;
· Prevents hidden screen capturing and directrix based keylogging;
· Prevents kernel level keylogging and monitors keyboard filters.
Download DataGuard Antikeylogger
Related: 10 Preventive Measure to protect against keyloggers
Quick Fix To “This operation has been cancelled due to restrictions in effect on this computer” Error
When I am working as a Computer Service Engineer,i faced this problem at customer place in Windows XP Operating System,while opening internet explorer and fixed this problem by recovering corrupted registry.
This error not only arises due to corrupted registry some other causes for this Error
- By changing default Web-Browser from Internet explorer to other may cause this problem.
- Another possible cause for this error is Group Policy Editor, in some time it restrict execution of certain application
- Another common cause is a corrupt registry key in Internet Explorer. The registry location is HKEY_Local Machine\Software\Classes\htmlfile\shell\open\command
is either damaged or corrupt. - Older versions of Internet Explorer is also another possible cause for this error
Some Tips to Fix this Error
Error Message
Solution 1:
Go to Control Panel -> Add Remove Programs, click on Set Program Access and Defaults. Then Open up the configuration then change the default web browser to something else.
Change Default Browser
Solution 2:
If you are using old version of Internet Explorer try latest version by upgrading your current browser.
Solution 3:
Open registry editor by typing regedit in Run box of start menu and search (Ctrl + F) for the value nocontrolpanel. Change its value from 1 to 0.
Change Registry Value from 0 to 1
Solution 4:
If problem caused by corrupted registry, just download this file,unzip it and double click to extract the registry.
Let us know these solutions works or not.
Prevent Malware Attack With Free QualysGuard Malware Detection Scan
QualysGuard Malware Detection tool allows administrators to perform automatic scans of external-facing Websites. Automated Alerts is executed when Malware is detected and you can configure it so that you can get notification when certain object failed to scan. This online tool uses Behavioral and static analysis methods and it search for following elements of websites.
- JavaScript with suspicious content
- Tracking Codes loaded with websites
- Rogue Windows registry keys
- Executables files packages along with installation
- Monitors Disk activity
The Malware Detection tool is developed by Qualys and launched online for free use. This tool is user friendly, you can simply specify the URL of a website which you want perform scan. There is simple dashboard wizard through which you can initiate web server scan.
According to me this is an excellent free service, which provides automated scan and alert can proactively keep network administrators. Another feature is Web engine-specific scan is performed, so that it offers a good antivirus protection.
How to RemoveC:\A1\V1\try.exe Virus
It is a network-aware worm that replicate across the existing networks.So it is identified as a malicious trojan horse or bot that may represent security risk for the compromised system and its network
Symptoms of Virus Threat.
Infection1.The following directories were created:
a)c:\A1
b)c:\A1\V1
c)c:\Driver
d)c:\Driver\Files
Infection 2. The following files were created in the system:
a)c:\A1\V1\DesKTop.ini
b)c:\Driver\Files\Desktop.ini
b)c:\Driver\Files\Desktop.ini
c)c:\A1\V1\try.exe
d)C:\Documents and Settings\%UserProfile%\update.exe
d)C:\Documents and Settings\%UserProfile%\update.exe
Infection 3. Registry Modifications by threat
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{67KLN5J0-4OPM-61WE-AAX2-5657QWE232788}]StubPath = “c:\A1\V1\try.exe”
so that try.exe runs every time Windows starts along with explorer.exe
Steps to Remove A1\V1\try.exe.
- Press Alt+Ctrl+Del —>Go to Process —>end Explorer.exe
- Go to Run by Clicking File menu in Task Manager Type CMD in run box
C:\Documents and Settings\user> Type cd\ Press Enter
C:\> Type attrib -h -r -s A1 Press Enter
C:\ A1>Type CD V1Press Enter
C:\A1\V1\> type dir to acess try.exe Directory
C:\A1\V1\> type del try.exe
C:\>Type Del A1(Repeate only this command three times until Virus gone)
Ask for delete Confirmation Press Y
C:\>Type Del A1
Ask for delete Confirmation Press Y
C:\>Type Del A1.exe
If you got message Could not Find C:\A1 .Operation is Success Virus Should Be Gone!
C:\> Type attrib -h -r -s A1 Press Enter
C:\ A1>Type CD V1Press Enter
C:\A1\V1\> type dir to acess try.exe Directory
C:\A1\V1\> type del try.exe
C:\>Type Del A1(Repeate only this command three times until Virus gone)
Ask for delete Confirmation Press Y
C:\>Type Del A1
Ask for delete Confirmation Press Y
C:\>Type Del A1.exe
If you got message Could not Find C:\A1 .Operation is Success Virus Should Be Gone!
Now it is the time for deleting other dangerous created by Virus
a)Delete A1 Folder you can observe in C drive.If you able to find msupdate.exe in C drive you can delete that file also.
b)Delete msupdate.exe and update.exe from user C:\Documents and Settings\User
c)Delete Dialup connections Like a-connect,z-connect from Network Connection
d)Then delete the registry created by Virus.If you find difficulty you can use registry cleaners like Glary Utilities, or CCleaners etc.
If you find difficulty leave a comment or contact us.I will deffinately help you to resolve your issue.
Categories: News, Spyware And Virus Threats Removal Instructions Tags:
How to Fix Invalid Boot.ini Error while windows Loading
In some cases booting the computer in normal mode, you can see this error message in certain cases saying that “Invalid Boot.ini, loading from C:\Windows.So here is the solution to fix this error.
The error comes up while booting but after this windows loads normally.
Reason for This Error
The problem is caused due to corrupted boot.ini file which is usually located in the C drive.
Steps to Fix Boot.ini Error
We can fix the problem by providing the same boot.ini file with predefined properties.
1.Right click on My Computer ->Go to Advanced ->Click on Startup and Recovery, click Settings.
2. Now click on Edit button besides the line reading “To edit the startup options file manually, click Edit”.
3.This will open the boot.ini file if it isn’t there then click OK to create a new.
4.Now copy and paste the following code in it
——————————————————————-
[boot loader]
timeout=30
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS=”Microsoft Windows XP Professional” /fastdetect
——————————————————————–
5. Click save and exit.
6. A fresh file boot.ini will be created in the C drive, now we have to apply system attributes.
7. Open command prompt (type cmd in Run box).
8. Type the following command
attrib C:\boot.ini +s +h and Hit Enter.
9.The problem is fixed.
So just restart the pc to check the fix applied or not
Categories: News, Spyware And Virus Threats Removal Instructions Tags:
How to Remove System Shutdown Error
Some users whose computers have been infected may not notice the presence of the worm at all, while others who are not infected may experience problems because the worm is attempting to attack their computer. Typical symptoms may include Windows XP and Windows Server 2003 systems rebooting every few minutes without user input, or Windows NT 4.0 and Windows 2000 systems becoming unresponsive.
Shutdown error: - If your computer is infected, you may see this error message.
Steps to Remove the System Shutdown Error
1.Download the Blaster Nachi Removal tool from the King’s Sophos Anit-Virus Site. Follow the instructions on the site on how to download the Resolve Tool
2.Download the Appropriate Patch for your Computer. Select the Patch that was designed for your system. If you are not sure what version of windows you are running, click here.
| RPC/DCOM Patches KB824146 | |
|
Version
|
Download Link |
| Windows 2000 | Click Here |
| Windows Xp | Click Here |
| Windows NT 4.0(Work Station) |
Click Here |
| Windows NT 4.0(Server) | Click Here |
3.Disconnect your Computer from the internet or Network
4. Run the disinfection Tool to remove any Blaster Infections
5. After the diinfection tool completes, run the Patch.
6.After the patch installs your computer will need to be rebooted. Reattach your computer to the network.
At this point your computer should be clean and protected from further exploits of the RPC vulnerability.
Categories: News, Spyware And Virus Threats Removal Instructions Tags:
