You are here: Home » AntiMalware » Anti-Malware HowTo

Anti-Malware HowTo

Configuring Sandboxie To Delete Sandbox Contents Automatically

by malwarekilla on August 16, 2010

In my last post I briefly went over how I use Sandboxie and how I encourage my family and clients to actually use it.  In this post I’m going to show you how to configure Sandboxie so that it’ll automatically delete anything that gets downloaded into the Sandbox (like some fake (rogue) anti-virus for example). [...]

{ 12 comments }

Removing AntiVir Solution Pro Fake Anti-virus

by malwarekilla on August 4, 2010

The only rogue I’ve been seeing this month (over and over again) is the AntiVir Solution Pro (a.k.a – Antivir Security Suite).  This rogue (fake) Anti-Virus installs itself instantly and then: prevents the user from using the internet. loads generic porn sites. tells the user that a “key logger” may have been installed or their [...]

{ 26 comments }

Blank Windows Screen or ISAPNP.sys Hang = A Zero Bytes .Sys Driver

by malwarekilla on July 29, 2010

I had one hell of a mystery on my hands the other day.  A client called me and said she had a blank screen every-time she booted up her Windows XP computer.  I was pretty busy, so I told her I’d pick it up and work on it over the weekend.  I just figured it [...]

{ 12 comments }

Protecting Your USB Flash Drives from Auto-Run Viruses

by malwarekilla on July 27, 2010

A few of our engineers at work approached me about protecting their USB flash drives when they go to customer sites and I found a pretty good solution: http://www.addictivetips.com/windows-tips/how-to-protect-usb-drive-from-virus-when-attached-to-infected-computer/ Unfortunately I can’t seem to find an antivirus solution (I’ve only done 3 google search though), however making the drive read only is a pretty good idea [...]

{ 22 comments }

Can’t Access The Internet After Removing A Rogue?

by malwarekilla on May 19, 2010

The latest generation of Rogue Anti-Virus changes your internet connection settings, specifically the proxy settings.  On an infected PC all traffic is routed through a local proxy on your pc (which is malware based).  Currently these settings are usually: 127.0.0.1:5555 The 127.0.0.1 is your PC and the 5555 is an open port on your pc [...]

{ 13 comments }

Post image for YouTube Question: XP Antispyware 2010 Urgent Need of Help.

YouTube Question: XP Antispyware 2010 Urgent Need of Help.

by malwarekilla on March 10, 2010

Question: Well my friend’s computer got infected with XP Antispyware 2010, it really messed up his computer. He was able to kill it with SuperAntiSpyware, but i guess his computer still has some effects from the rouge. The computer is really slow, the rouge corrupted Firefox and IE, he can’t even open CCleaner or Defraggler. [...]

{ 8 comments }

Malvertising on the Rise: How you can Protect your PC’s

by malwarekilla on March 2, 2010

Just in case ya didn’t know Malvertising is the #1 way to get infected due to the numerous security holes found in: Adobe Reader (acrobat) Adobe Flash Player Sun’s Java Those are the top 3 applications being exploited right now.   You may be wondering how you got infected with a fake anti-virus program (for [...]

{ 16 comments }

WS2_32.DLL Patched: This Malware is Not Fun at All…

by malwarekilla on February 11, 2010

I’ve been seeing a huge increase in machines that are infected with a patched WS2_32.dll.  WS2_32.dll is part of Windows Sockets Library and is used to configure/maintain network connections.  When WS2_32.Dll becomes patched you’ll notice the following behavior: Slowly loading webpages.  The pages have a 3-5 second delay since the patched DLL is executing malicious [...]

{ 5 comments }

← Previous Entries

My Business in St. Louis - st louis computer repair