| Recent Posts |
|
| Free Scanners |
|
|
| How to Prevent Spyware |
| Spyware and other unwanted software can invade your privacy, bombard you with
pop-up windows, slow down your computer, and even make your computer crash. Here
are several ways you can help protect your computer against spyware and other
unwanted software.
more >> |
| Microsoft Security Updates |
| As part of Microsoft's routine, monthly security update cycle, today we
released two new security updates.
more >> |
| Protecting Your Computer |
| Here are 4 basic steps to protect your computer against attacks and threats.
more >> |
| Minimizing the Risk
|
| Using Internet communication tools such as chat rooms, e-mail, and instant
messaging can put children at potential risk of encountering online predators.
more>> |
|
|
| Friday, June 16, 2006 |
Downloader-AWU serves as a downloading/ updating component for other malicious files. Generally it makes internet connections without user’s knowledge.
Aliases: Trojan-Downloader.Win32.Delf.aoi (Kaspersky)
Symptoms:
Presence of registry keys such as:
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"_rx"= “%WINDIR%\rundll32.exe”
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"DLoader"= “%WINDIR%\system32\DLoader.exe”
Source: MCAfee Threat Center
MCAfee Users Removal: Click here
How to Remove Downloader-AWU
Please use Removal Method 3. Click here |
posted by hitech-leiza @ Friday, June 16, 2006  |
|
|
|
|
|
Trojan GPCoder are spread manually, often under the premise that they are beneficial or wanted. The most common installation methods involve system or security exploitation, and unsuspecting users manually executing unknown programs.
Aliases: GPcoder TROJ_PGPCODER.A (Trend) Trojan.Pgpcoder (Symantec) Virus.Win32.Gpcode.b (Kaspersky)
Characteristics:
Trojan GPCoder encrypts documents, depending on the file extension, and then attempts to extort money from the victim in order for them to obtain a decryptor tool to recover the documents.
Symptoms:
File overwritten with "garbage" (encrypted data). Presence of aforementioned ATTENTION!!!.txt files.
Source: MCAfee Threat Center
MCAfee Users Removal: Click here
How to Remove GPCoder
Please use Removal Method 3. Click here |
| posted by hitech-leiza @ Friday, June 16, 2006 |
|
|
|
|
|
W97M/Tored usually arrives as Microsoft Word document containing an embedded Windows Portable Executable (PE) file. Upon opening of the malicious Microsoft Word document, a macro is run which drops and executes an embedded trojan executable.
Aliases: Trojan-Dropper.MSWord.Tored.a (Kaspersky) W2KM_TORED.A (Trend Micro) W97M.Tored.A (Symantec) W97M/TrojanDropper.Tored.A (ESET) WM/Tored.A (Fortinet)
Characteristics:
Upon opening the malicious Microsoft Word document, the document in russian states to disable macro protection in Microsoft Word, and click a button.
Once the button is clicked, a macro is run which drops and executes an embedded Windows Portable Executable (PE) file on Systems folder.
Symptoms:
Slow downs internet and traffic route to http://chernik890.[Removed].ru/services.txt
Source: MCAfee Threat Center
MCAfee Users Removal: Click here
How to Remove W97/Tored
Please use Removal Method 3. Click here |
| posted by hitech-leiza @ Friday, June 16, 2006 |
|
|
|
|
|
This procedure is helpful in removing spyware, adware, malware and other related files.
1. Download Spybot Search and Destroy and save to your Desktop.
2. Install Spybot by Double-Clicking the downloaded file spybotsd14.exe
3. Connect to Internet and download all necessary updates
4. Reboot your computer in SafeMode.
- Press F8, after the power was turned on
- Select Safe Mode from selections menu
5. Run a full scan of Spybot and delete infections that were detected.
note:If you are using Windows XP, proceed with these steps, Windows9x and ME please skip.
6. Reboot your computer in "SafeMode With Networking"
- Press F8, after the power was turned on
- Select Safe Mode With Networking from selections menu
7. Connect to Internet.
8. Do a full scan of the following Free Online Scanner and delete all infections:
- TrendMicro Housecall
- Symantec Security Check
- Bit Defender |
| posted by hitech-leiza @ Friday, June 16, 2006 |
|
|
|
|
| Tuesday, June 13, 2006 |
AntiSpywareBox is a variant of Titan Shield - a rogue AntiSpyware. It issues warnings about a certain threats and infections on the computer and ask you to obtain a full commercial version of AntiSpywareBox to be able to remove the infections
Titan Shield REMOVAL PROCEDURE:
1. Please use Removal Method 2. |
| posted by hitech-leiza @ Tuesday, June 13, 2006 |
|
|
|
|
|
Titan Shield is considered to be as rogue or pretending to be an AntiSpyware. It alarms the user about a certain threats and infections and will advise to obtain a full licensed version of Titan Shield to be able to clean the computer.
Symptoms:
A System Scan Dialogue box similar here:
Titan Shield REMOVAL PROCEDURE:
1. Please use Removal Method 2. |
| posted by hitech-leiza @ Tuesday, June 13, 2006 |
|
|
|
|
|
This procedure is helpful in removing spyware, adware, malware and other related files.
1. Download SmitFraudFix and save to your desired location.
2. Open the SmitfraudFix folder and double-click smitfraudfix.cmd
3. Select option #1 (press 1 on keyboard) and hit "Enter"; a text file will appear, which lists infected files (if present).
4. Download Spybot Search and Destroy and save to your Desktop.
5. Install Spybot by Double-Clicking the downloaded file spybotsd14.exe
6. Connect to Internet and download all necessary update
7. Reboot your computer in SafeMode.
- Press F8, after the power was turned on
- Select Safe Mode from selections menu
8. Run a full scan of Spybot and delete infections that are detected.
note:If you are using Windows XP, proceed with these steps, Windows9x and ME please skip.
9. Reboot computer in SafeMode with Networking
- Press F8, after the power was turned on
- Select Safe Mode with Networking from selections menu
10. Connect to internet and scan with the following online scanners:
Trendmicro Housecall
Symantec Security Check
BitDefender Online Scanner
If Unable to Browse Internet, Fix the Damaged with:
Fix For XP Winsock
Internet Explorer Fix |
| posted by hitech-leiza @ Tuesday, June 13, 2006 |
|
|
|
|
| Thursday, June 08, 2006 |
CoolWebSearch is a name given to a wide range of different browser hijackers. Though the code is very different between variants, they are all used to redirect users to coolwebsearch.com and other sites affiliated with its operators.
One of the most infamous highjackers known to date. Comes in a variety of versions, all using different techniques.
How to Remove CoolWebSearch:
1. Download CWShredder 2.19 by Trendmicro
2. Run and clean all infected files.
3. Reboot your computer in Safemode
- Press (F8) during computer startup
- Select "SafeMode from the Menu
4. Rescan the computer with CWShredder |
| posted by hitech-leiza @ Thursday, June 08, 2006 |
|
|
|
|
|
This procedure is helpful in removing spyware, adware, malware and other related files.
1. Download SmitFraudFix and save to your desired location.
2. Open the SmitfraudFix folder and double-click smitfraudfix.cmd
3. Select option #2 (press 2 on keyboard) and it will scan your system. Press Y or Yes if prompted to clean registry.
4. Download Ewido and save to your desired location.
5. Install Ewido and download all necessary updates.
6. Reboot your computer in SafeMode.
- Press F8, after the power was turned on
- Select Safe Mode from selections menu
7. Run a full scan and delete infections that are detected.
note:If you are using Windows XP, proceed with these steps, Windows9x and ME please skip.
8. Reboot computer in SafeMode with Networking
- Press F8, after the power was turned on
- Select Safe Mode with Networking from selections menu
9. Connect to internet and scan with the following online scanners:
Trendmicro Housecall
Symantec Security Check
BitDefender Online Scanner
If Unable to Browse Internet, Fix the Damaged with:
Fix For XP Winsock
Internet Explorer Fix |
| posted by hitech-leiza @ Thursday, June 08, 2006 |
|
|
|
|
| Free Stuff |
|
| Ads |
|
Sidebar
|
| Archives |
|
|
| Powered by |
 |
|
