Malicious Applet? Clear the Java cache

java-cache-web-cache-web-speed

Viruses found in this cache directory are not associated with the Java that was downloaded and installed on the system. A cache directory is a a temporary storage location. When the browser runs an applet or application, Java stores files into its cache directory for better performance.

Some examples of the virus reported in the cache directory:

  • Trojan.ByteVerify
  • Pdfjsc.CR
  • Uutecwv.class
  • Hieeyfc.class

Do you have problems recently with malicious java files? Here is a guide how to clear the Java cache.

Continue reading

Free Norton Antivirus 2009 Beta

nis-2009-400x282

Norton Internet Security provides fast and up-to-the-minute protection against all types of online threats. Norton Internet Security provides strong protection that is light on system resources. Based on an innovative new security architecture, Norton Internet Security 2009 sets a new standard for performance. Norton Internet Security secures your computer, your identity and your home network without impacting performance.

Continue reading

How to Remove Funny UST Scandal.avi.exe (Virus)

Recently my friend are infected by a virus called "Funny Scandal.avi.exe". How to remove this virus? For me this name was new so I searched up and a post of babyface was excellent.

First you have to download taskiller in here or here and install it to your computer because you can’t use task manager to terminate the virus(the virus automatically close task manager).

run taskiller and left click it on the system tray(the one with a skull icon)
click processes
to close the virus, select process and click yes to the question

(process to close)

  1. killer.exe
  2. lsass.exe
  3. smss.exe

note: close only file that have the same icon of Funny UST Scandal.avi.exe

CMD STEPS

  1. now, click “start” then “run”
  2. type “cmd” without quotes
  3. type “cd\” without quotes
  4. type “attrib -h -s smss.exe” without quotes
  5. type “attrib -h -s autorun.inf” without quotes
  6. type “start c:” without quotes (a new window will open)
  7. select smss.exe, autorun.inf, Funny UST Scandal.avi.exe and delete it

 

Continue reading

What is that File?

filez

What is this?
This is a simple help for you to identify any unknown files on your computer. While we still do not cover ALL of them, we might have some of the most requested ones here. You can enter a filename and see if this file is a dangerous trojan, malware, or simply a standard Windows file.

Web site: whatisthatfile.com

Remove infected Autorun.inf

How to remove infected autorun.inf file form your hard disk?

Sometimes for viruses or trojan horse you may find difficulties opening your drives. This happened because autorun.inf file is infected, If you find any abnormal language when you right click on a drive. This autorun.inf is hidden and you will not see the file even though you select to show all files from folder options. The video below is explain you how to remove autorun.inf

[youtube 3rBdBPnP84I]

Thanks to daku323 for suggesting this video.

eLearning – Botnet

botnet

Botnet is a jargon term for a collection of software robots, or bots, which run autonomously and automatically. They run on groups of "zombie" computers controlled remotely by crackers. This can also refer to the network of computers using distributed computing software.

While the term "botnet" can be used to refer to any group of bots, such as IRC bots, the word is generally used to refer to a collection of compromised computers (called zombie computers) running programs, usually referred to as worms, Trojan horses, or backdoors, under a common command and control infrastructure. A botnet’s originator (aka "bot herder") can control the group remotely, usually through a means such as IRC, and usually for nefarious purposes. Individual programs manifest as IRC "bots". Often the command and control takes place via an IRC server or a specific channel on a public IRC network. A bot typically runs

Continue reading

Trojan Horse – Now the targets are Mac users

Security research company Intego on Monday issued a security alert about a new Trojan Horse called OSX.RSPlug.A that specifically targets Mac users. The Trojan is a form of DNSChanger that changes the Mac’s Domain Name Server (DNS) address.According to Intego, the Trojan has been found on several pornographic Web sites. When trying to view a movie, the user is told that “Quicktime Player is unable to play movie file. Please click here to download new version of codec.”

Continue reading