Sunday, August 2, 2009

Will this procedure to remove muhaha orkt virus frm my pc b useful n will it lead to data loss or ne damage?

(1) Press 'Ctrl+Alt+Del' to open the 'Task Manager'.Click on 'Process tab' and locate SVCHOST.EXE. which is being shown under your current user name.Now click on the 'End Process' button to kill that task.


(2) Start the registry editor and browse to 'HKEY_LOCAL_MACHINE\SOFTWARE\M... Version\policies\Explorer\' and delete any keys with the entry called 'heap41a'.


(3) Go to 'My Computer' and double click on C: drive and delete the folder 'heap41a'.If you find a folder called 'test.exe', delete that too.


:)

Will this procedure to remove muhaha orkt virus frm my pc b useful n will it lead to data loss or ne damage?
If you follow that exactly you shouldn't experience any data loss. But I would do it in safe-mode. Be very careful when editing the registry because if you delete the wrong key you can render your OS useless. After deleting that folder I would also run a full disk scan for viruses in safe-mode.
Reply:It's very simple : Just follow the instructions here


http://www.fundazone.com/2007/...








Read more at


http://www.fundazone.com/ideas... Report It

Reply:go to synmantec.com %26amp; download, removal tool for particular virus %26amp; run it in safe mode if possible
Reply:VIRUS REMOVAL:





this is a realll P.I.A. !!!





THE 1ST PART YOU NEED TO DO offline:


run anti-virus program


run anti spyware program


shut down System Restore


clear cookies


clear temp files


clear history


clear pre-fetch folder


clear out ALL emails starting at 2-3 days ago or when you 1st knew you were infected in:


ALL folders


sent


trash


junk





bookmarks or favorites folder in I.E. or Firefox





as you can see,there's QUITE a bit of work ahead of you.





shut down System Restore:


virus/spyware can hide in your system restore points so we shall delete all previous restore links hiding places by turning system restore OFF.


later,when we finish,we'll turn it back on,set up a new [ CLEAN ] restore to work from in the future.


hopefully,lol,you'll never need it !





XP Home:





start


all programs


accessories


system tools


system restore


settings


drive [c]


settings


check the OFF link





VISTA:





start


control panel


performance and information tools


open disk clean up


select o.s. [c]


select more options


select system restore and shadow copies


select clean up





XP Home %26amp; Vista:


start


control panel


internet options


general


clear cookies


clear temp files


clear history


and set history days to keep to 0





clear temp files


not all your temp files will be romoved so easily,so we need to do this manually as well.


start


my computer [ or just computer in Vista ]


windows


temp


file


click each file and delete





Clear Pre-Fetch Files


start


my computer [ or just computer in Vista ]


windows


prefetch


file


select all


press delete key on keyboard





empty recycle bin





run anti-virus and anti-spyweare programs again





when your protection programs find any pirates,DELETE them,do NOT quarentine !!





should you NOT have ANY protection programs installed:


Avast--anti-virus


AD Aware--anti-spyware


Spyware Blaster--anti-spyware blocker


Rootkit Revealer--anti-rootkit


Arovax


PC Tools Firewall--firewall to replace MS's deficient firewall [ turn that sucker OOF ! ] and replace with above.





replace windows firewall with PC Tools firewall


install Arovax protection and choose protection for internet explore if you use it,firefox if you use that or opera if you use that


install spyware blaster and set for internet explorer and/or firefox protection





should you choose to install Firefox web browser [ and you SHOULD ]


here are some Firefox Security Extensions to install


CallingID Link Advisor


Finjan Secure Web Browing


No Script


Dr. Web


SafeDownloads


http://browseraddons.friendpages.com





now it's time to set up your new [ clean ] restore point





XP Home:





start


all programs


accessories


system tools


system restore


settings


drive [c]


settings


check the ON link





Vista:


start


control panel


back up and restore center


create restore point


create restore points on selected disks


select drive


click create


apply and ok





FINALLY....





SECURE COMPUTER:





NEVER !! :





open an email from:


anyone you do NOT know/trust


anyone purporting to be/from:





Microsoft


your bank


your creditors


your goverment


your financial company/ies


even your lawyer/s or church UNLESS you have a prior agreement with them


online petetion


contains attachment/s





SAFE EMAIL SET UP:





YAHOO:


open options link on your email page


select spam


Spam Protection





Choose the tools you'll use to protect your mail account from spam. Not sure what tools you need? Take a look at our Setup Guide for help.


Spam Filter


SpamGuard is ON





For messages SpamGuard identifies as Spam:


Immediately delete these messages upon receipt. (Note: If you choose this option, you will not be able to review the messages before they are deleted.)


When I mark a message as Spam, in addition to deleting the message:


Add the sender's email address to my blocked addresses list


Image Blocking


Block images in messages that SpamGuard thinks are spam


[ possible but 1 or the other ]


Block all images until I've had a chance to look it over





Block Addresses





Block addresses from which you don't want to receive mail.


Add Block


Enter email address (or domain) to block:





GMAIL:


Gmail has an EXCELLENT spam filter,learn to trust it.


Spam Filtering is automatic,unlikeYahoo.


Gmail offers a secound way to protect your inbox by using filters.


1st,you need to create labels [ folders ] to store your filtered email in.


then create the label filter.





SETTINGS:FILTERS:


Create a new filter


Create a Filter


Choose search criteria - Specify the criteria you'd like to use for determining what to do with a message as it arrives. Use "Test Search" to see which messages would have been filtered using these criteria.


From: Has the words:


To: Doesn't have:


Subject: Has attachment





after you fill the above out,you go to label [ folder ] selection.





MSN HOTMAIL:





on your email page,select options then more options


Junk e-mail


Filters and reporting


Safe and blocked senders





choose from these choices:


Safe and blocked senders


Safe senders


Manage who is allowed to send you e-mail. Messages from safe senders will not be sent to the junk e-mail folder.





Safe mailing lists


Manage which mailing lists are sent to your account. Messages to safe mailing lists will not be sent to the junk e-mail folder.





Blocked senders


Manage who is blocked from sending you e-mail. Messages from blocked senders are automatically deleted.





WINDOWS LIVE MAIL:


JUNK E-mail


Options:


safe list only


permanently delete suspected junk e-mail





Safe Senders:


add e-mail addresses to your safe list here


check:


also trust my Windows Contacts


automatically add people i e-mail to the safe senders list





Blocked Senders:


add senders addresses here to create a blocked address list





International:





Blocked Encoding List:





choose the language pack you do NOT want downloaded into your inbox here





Phishing:





check:


protect me from potential Phising emails


move phishing emails to junk


apply %26amp; ok





Windows Live Mail has 2 other options:


Tools


message rules


mail


condiotions:


where you choose:


from


to


subject


content and more





Message:


junk e-mail


add to:


safe senders


blocked senders





Web Browsers:





Internet Explorer:


XP Home %26amp; Vista:





start


control panel


internet options


general


history:


clear history


set days to keep to 0





Privacy:


advanced


override


First-party Cookies:


Accept


Always allow session cookies


Third-party [ spyware ] Cookies


Block


ok





Content:


content advisor


Enable


ratings:


set content you do NOT want permitted





Approved Sites:


add websites that ARE allowed ALWAYS here





apply %26amp; ok





Advanced:


Phishing Filter


enable





Security:


for Internet--Trusted Sites--Restricted Sites


custom


Enable Protected Mode


Custom Level:


XP Home:


Active X:


uncheck each active x control marked:


unsafe


unsigned





Vista:


be sure Active X controls and plugins is marked disable


as well as Automatic prompting for Active X controls


and download unsigned Active X controls


and Intialize and script Active X conttrols not marked as safe





XP %26amp; VISTA:





Access data sources across domains-disable


Allow scripting of Internet Explorer web browser control


disable





Allow script-initiated windows without size or position


disable





Allow websites to open windows without address or status bars


disable





Don't prompt for client certificate selection when none exist





Navigate sub-frames across different domains


disable





Use Phishing filter


enable





Allow status bar updates via script


disable





now for your Restricted Zone,EVERYTHING should be disabled EXCEPT:


Pop up blocker


Phishing Filter





[internet,trusted,restricted]


download signed-PROMPT


auto-prompt-DISABLE


binary %26amp; script-ENABLE


download UNsigned-DISABLE


download UNsafe-DISABLE


run active x-ENABLE


download SAFE -ENABLE





Spy Sites





Stop Web Sites from installing Spyware, Sleazeware and Cookies on your PC





SpySites includes a database of over 4,600


known Spy/Sleaze sites and guides you


through the simple process of including them in


Internet Explorer's Restricted Zone and setting policies


to prevent them from performing intrusive acts on your PC.


By setting the policies for the Restricted


sites zone to a very high level of security,


you can be assured that any web sites added


to the Restricted sites zone cannot do


certain things which could compromise your privacy


and security such as installing and/or running:


Spysites


http://camtech2000.net/Pages/SpySites_Pr...





Pre-Fetch File Cleaing





pre-fetch files are "cached" or stored copies of files/websites you visit each session


after a period of time,these files hog up a LOT of disk space


for this reason,i advocate the deletion weekly of those space hogs


some claim that windows will automatically remove files older than 7 days


I have found MY pc does NOT perform this task so I do it manually


what happens is,when you go to a website,your pc looks into your pre-fetch file/folder


to see if that website is "cached",stored there FIRST


this gives you a faster website load,BUT,you get the "cached" version and NOT the NEWEST version


unless you have "check for newest version" cheched in internet options


it may take that website 1/2 a second longer to load


but,you'll get the newest version loading each time





as added security,spyware removers often miss these files,so delete them manually.





My Computer,disk drive [c],windows,pre-fetch,view,select all,select delete





same situation with Temp files:


Temp File Folder





i use Disk Clean to clean up extraneous files i no longer need


however,everytime i use Disk Clean,it DOESN'T clean out Temp Files!


solution?


My Computer,local disk drive [c],windows,temp


you can safely delete each temp file there.


i leave the most current [that day] alone.


also,do not delete any FOLDER there


folders have a folder icon,leave alone


[ Vista,it's Computer ]





Firefox Web Browser:


tools


options


content


check block pop ups





load images automatically:


exceptions:


enter those websites addresses that show up on pop ups that appear AFTER you close a browser window


also add those same urls to


Privacy


Cookies


Exceptions





there are a number of kewl Security add on firefox extensions i use and they are:


CallingID link advisor


Dr. Web [ link checker ]


Finjan Secure Web Browsing


No Script


SafeDownload


http://browseraddons.friendpages.com





IF you follow all the above suggestions,you'll not have the Fort Knox of computers,but Dammed close !


No comments:

Post a Comment