Translate to your language.

Friday, July 29, 2011

facebook virus july 26-27 2011

Tools needed:
Process Explorer
Kaspersky Virus Removal Tool 2011
Antivirus, we use free AVG antivirus
 HijackThis
Malwarebytes
Closing ports 445 and 135  - fix Generic Host for Win32 Process and svchost.exe errors.
 or update your windows security patches


Step 1
Before we begin first download Process Explorer if the browser wont allow, open task manager and kill in the process the falshplayer.exe (press Delete then ok or right click the flashplayer.exe and delete.).
and second download the above tools needed.
when all the tools are ready, install the Kaspersky Virus Removal Tool 2011 and make a quick scan, after it removes the infection reboot the computer if needed, after the reboot  click Start >>> click Run then type msconfig, go to Startup tab uncheck  flashpalyer.exe and any application with 32 example services32.exe, ccdrive32.exe,  and also application with no name.

 Step 2
Open the process explorer again and look if the flashplayer.exe, and any apps name with 32 is running , if it is press Delete then ok or right click the flashplayer.exe and delete. you can see mostly the virus stay below the windows explorer. click here

Step 3
Open windows explorer go to tools  then click folder option, In the View tab under the Hidden files and folders click Show hidden files and folders and Uncheck Hide extensions for known file types and Hide protected operating system files.

In the WINDOWS folder in C: delete the folder name update 1, update 01, update -1,update 02 and etc.. or any folder name update/s there's no such thing name updates in WINDOWS sub folder, look at the picture below.
system files, computer virus, remove the virus, fake virus, adwares, malwares


Step 4
Install  free AVG antivirus

Step 5
Run  HijackThis
and  accept then do a system scan, find flashplayer.exe or any name of an application with 32.exe and delete. note! (NvMediaCenter and NvCplDaemon is not included this is not a virus)

Step 6
Install Malwarebytes
update and do a quick scan and remove infections, reboot if needed, if you want to be sure that no virus is still running, repeat step 2.

Step 7
Closing ports 445 and 135 - fix Generic Host for Win32 Process and svchost.exe errors.

 or update your windows security patches

if the virus is still running backup your important files and do a REFORMAT.
.
Posted by at 11 comments:
Labels: , , , , , ,

Monday, June 13, 2011

Registry Cure

computer virus, remove the virus, fake virus, adwares, malwares
A simple utility program to cure the registry damage by a virus, it restores the Windows Task Manager, Run, Folder Option and Registry Editor. If the program won't run, Get Microsoft .NET Framework Version 2.0.
Download DotNet Framework 2

 Download  Reg Cure
Posted by at 6 comments:
Labels: , , , ,

Monday, March 21, 2011

Freeware AntiKeylogger

What are keyloggers? 

recording keystrokes

 

Keylogger is a malicious program (usually known as spyware) it intercepts and logs every  keystroke. These log file can be stored locally or sent to an attacker using FTP, e-mail, etc.
Some of the keyloggers contain additional features, like stealing data from clipboard, taking screenshots (i.e. copies of what you see on the screen), and reading information directly from opened documents, even if you have just opened document to read!
Trojans, worms and viruses usually contain keylogging module inside, which sends collected private data to the hackers.

Updated link! Download here
Posted by at 6 comments:
Labels: , ,

Tuesday, February 22, 2011

How to fix Generic Host for Win32 Process and svchost.exe errors.

“Generic Host for Win32 Process” and the faulting Svchost.exe are dreaded errors on Windows XP (SP2).These errors can also occur on windows server 2003 and windows 2000, and on both 32-bit (x86) and 64-bit (x64) editions.

Earlier we covered a few solutions to fix Generic Host Process Win32 Services error. Here is one more solution that requires you to close ports 445 and 135 on your PC/computer.


Fixing Generic Host for Win32 Process and svchost.exe errors.


To close Port 445:
! WARNING! Backup the Registry first before you make changes, just for safety!
  • Click Start >> Run, to open the Run dialog box
  • Here, type regedit to open the registry
  • Navigate to the following registry key – HKEY_LOCAL_MACHINE >> System >> CurrentControlSet >> Services >> NetBT >> Parameters

  • On the right-hand pane find the option TransportBindName.
  • Double click on TransportBindName and delete the existing default value.
  • click Ok
From the above, it is clear, that you have closed Port 445 by giving a blank value to TransportBindName for NetBT services.
 
To close Port 135:
! WARNING! Backup the Registry first before you make changes, just for safety!
  • Click Start >> Run, to open the Run dialog box
  • Here, type regedit to open the registry
  • Navigate to the following registry key – HKEY_LOCAL_MACHINE >> software >> microsoft >> Ole

  • On the right hand window pane find an option called EnableDCOM
  • Double-click EnableDCOM and change the value from Y to N
  • click Ok
  • Close the Registry Editor and restart your computer
If  problem still exist  
  • Click Start >> Run, to open the Run dialog box
  In the box type services.msc and find error reporting service and stop service then disable.
For another option, you just update security patches for windows xp.



Posted by at 1 comment:
Labels: , , , , , ,
Subscribe to: Posts (Atom)

First what is a Computer VIRUS?

A computer "VIRUS" is an acronym which contain many meanings (V.I.R.U.S.) a Vital Information Resources UnderSiege or a Computer program/ codes that can command to copy or to replicate itself and then infect a computer from one to another without the permission or knowledge of the user. This computer virus can be very harmful and damaging to the computer system, it affects root files, and installed program files. A computer virus can make risk of hacker threats, attacks and opens the door to even more threats, like downloaded files and software installations. Once you found the symptoms, then it can be counterattacked with the appropriate antivirus software and security patches, but first it needs to be installed before the virus infect the system. Installing a powerful antivirus program is a must. you can also check @ Wikipedia.


Symptoms

If your computer is infected with this malicious viruses, it will begin to shows some common symptoms that identifies a virus is present like modified file sizes, contents, or the hogging system resources. The unaccounted use of RAM which shows slowing of your computer.


How to remove the virus in your computer

Tools

Tools needed to remove the computer virus that are now available on the Internet.

From sysinternals, the powerful

Process Explorer By Mark Russinovich (optional) if you want to know what process is eating up your RAM but a powerful tool to kill a process of a malicious program.

Quick lock 1.0 By Quang Anh Do. A small utility to Enable/Disable Task Manager, Command Prompt and Registry Editor, This Utility is a big help to Enable Registry Editor, This is done for manual deletion of malicious program.

and the Virus Removal Tools from different Antivirus Company

Avast,Avg,Avira,Bit defender,Eset, Norton,Trenmicro and Kaspersky.


USB Protection

For USB flash drive protection against malware and viruses use this free utility from sordum.org