Showing posts with label Virus Related Information.. Show all posts
Showing posts with label Virus Related Information.. Show all posts

Open with window showing when double clicked on any drive

May be some of you experianced this type problem with your personal PC's. When you double clicked on any drive, instead of entering into that dirve, it dispalys a properties window or a 'Open with' window with list of all programs asking you to select a program to run this. This all happen because of the virus and they change the nature of the drive or folder. Even if you run the antivirus, it may not filter this properly.

There is a small trick to overcome this problme. Just follow these steps
1. First in your windows browser go to the Tools --> Folder options --> View Tab --> Uncheck the option ‘Hide protected Operating system files’ and click ok.
2.Now do the right click on the Drive and select Explore (Dont do double Click)
3. Now delete the following. autorun.inf and MS32DLL.dll.vbs or MS32DLL.dll (use Shift + delete combination to delete permenantely)
4. In this similar way do it in all drives including Floppy or USB drive if it is connected
5.Now go to the drive in which windows is installed and open the folder WINDOWS
6.Delete MS32DLL.dll.vbs or MS32DLL.dll by (use Shift + delete combination to delete permenantely) .
7.Now go to Start -- > Run -- > type regedit and press OK
8.Navigate to HKEY_LOCAL_MACHINE -- > Software --> Microsoft --> Windows --> Current Version --> Run --> Delete the entry MS32DLL
9. Now go to Start -- > Run -- > type gpedit.msc and press ok
10. Navigate to User Configuration --> Administrative Templates --> System. In the Right side window double click on the Turn of Autoplay option.
11. In the opened window select Enabled Radio button, and All drives option for "Turn off Auto Play on" drop down.
12. In the start up tab and uncheck MS32DLL and click OK and close system it with out restart.
13. Now restart the system, update your antivirus. Browse safe.

Posted by NetFreak Sunday, April 6, 2008 at 2:36 AM 0 comments Labels: Links to this post  

Beware of YouTube similar kind Porn Sites

Over Internet its very common that if there is a good site, then definitely there will be copied or similar kind of website will be there. These fake sites want to cash the popularity of original sites by stealing the users. previously these type of fake sites limited to registering similar domain with the small change in spelling. For example if you type http://www.youtube.com/ you will go to the main Original site of YouTube. If you type http://www.youtube.net/ its directed to a porn site will be having listings all porn related stuff. At this point Google and Yahoo are managed these types of problems. For google when i tried with these domain names gooogle.com, googlee.com its successfully redirected to the original site. Similarly if you type http://www.yahooo.com/ it takes you to the original site.

This copying culture not only limited to the Domain Names. Now extended to copying the templates and logos of original sites. There are some porn sites with looks exactly similar to the YouTube including the similarity in the titles too. For example check the below Logos.


Original Logo

Similar Logo
If it is limited to the copying template then the user is in safe side, but some sites download Trojan virus into your system and starts stealing your personal information. When you try to browse these sites, when you click on any video to watch, it pop ups a window asks you to download the video codecs to play these videos. As soon as you accept codecs to download, it downloads a software with the name Virus Heat 4.3 along with a trojan virus. Virus Heat then displays fake system alerts or fake security alerts to trick user to buy the paid version of Virus Heat. The window of the Virus Heat looks like as shown below.

Likely error messages for Virus Heat may include, “Your computer is infected with Spy ware. Your Security and Privacy are in Danger” or “Spy ware programs can steal your credit card numbers and bank information details. The computer can be used sending spam and you may get popups with adult or any other unwanted content” or “System has detected a number of active spyware applications that may impact the performance of your computer. Click the icon to get rid of unwanted spyware by downloading an up-to-date antispyware solution.” Not only does it cause your machine to slow down dramatically, it would also put your privacy and data in risk. And also you can find a status bar in the Internet explorer showing the risks status.

If you want to remove these Virus Heat, download the free malware remover from the follwoing site http://www.malwarebytes.org/. After downloading just install the software with default settings, and then run the software by leaving the system in idle position. It cleans the all malware stuff including this Virus Heat virus.

Posted by NetFreak Tuesday, March 25, 2008 at 12:20 AM 0 comments Labels: , Links to this post  

Removing Virus from USB Drive

There are some virus, its very difficult to remove from the USD drive once if it is entered in USB Drive. Some times even its not possible to format the dirve. For example "New Folder", Ravmon, etc...
Follow the simple steps to remove virus from USB Drive.
After connecting USB drive to the system, a window popups to select option what you want to do with the files in the USB Drive. Now cancel this window and go to the command prompt (Start -- > Run -- > Type cmd -- > Press Enter) select the USB Drive. Now type Dir/w/a and press enter. You can see the following files in the list Autorun.inf, Ravmon.exe, New Folder.exe , svchost.exe, Heap41a. Now enter the following command del (e.g del Ravmon.exe) and press enter. Like this you can remove the virus from the USB Drive and also can do the format too.

Use this command attrib-r-a-s-h*.* to check read only files, archive files.

Posted by NetFreak Wednesday, March 12, 2008 at 9:49 AM 0 comments Labels: Links to this post  

Subscribe to: Posts (Atom)