Showing posts with label Computer Tutorials. Show all posts
Showing posts with label Computer Tutorials. Show all posts

Removing a Keylogger or RAT[Remote Administrator Tool] from your PC

at 3:28 AM
For doing this you need to start up system configuration, so start by clicking on 'start' then 'run' and type in 'msconfig.exe'. If you are using Windows 7, then you can go to system configuration by clicking on 'start' and then typing in 'msconfig.exe' in the search box. When you are on the System configuration, you will see a tab named 'Startup'. 
Click on that and you will see something like this.



Well for me, i dont have any rats or keyloggers on my computer at this moment. So i am unable to show you'll the exact example.

 So if any of you'll think that you are infected by a RAT or KEYLOGGER, then you will have to look under the MANUFACTURER tab and the STARTUP ITEM tab in the system configuration. 

If the name of the item in the STARTUP ITEM tab seems suspicious to you, then check whether it manufacturer is unknown or not. If it is unknown, then it has the chances of being a RAT or KEYLOGGER. So click on it and then disable it.

This is basically the general guide to removing RATS or KEYLOGGERS from your computer. 

Stay tuned for more tutorials.
Posted by Andy lam Tuesday, September 13, 2011
Labels:
1 comments

How to remove autorun.inf virus from drives using notepad

at 3:10 AM
Most of the people have autorun issues with their flash/hard drives.It is because of the modification of the autorun.inf file in the root directory which is in most cases hidden and cant be seen. So you just have to create a bat file with the following syntax as mentioned below.

Copy and paste this into Notepad and save it as antivirus.bat or whatever.bat (any name u like)

Code:
 
tskill ctfmon

attrib -s -h -r c:\autorun.inf
attrib -s -h -r D:\autorun.inf
attrib -s -h -r E:\autorun.inf
attrib -s -h -r F:\autorun.inf
attrib -s -h -r G:\autorun.inf
attrib -s -h -r H:\autorun.inf
attrib -s -h -r I:\autorun.inf
attrib -s -h -r J:\autorun.inf

del c:\autorun.inf
del d:\autorun.inf
del e:\autorun.inf
del f:\autorun.inf
del g:\autorun.inf
del h:\autorun.inf
del I:\autorun.inf
del J:\autorun.inf

attrib -s -h -r c:\Recycled\ctfmon.exe
attrib -s -h -r D:\Recycled\ctfmon.exe
attrib -s -h -r E:\Recycled\ctfmon.exe
attrib -s -h -r F:\Recycled\ctfmon.exe
attrib -s -h -r G:\Recycled\ctfmon.exe
attrib -s -h -r H:\Recycled\ctfmon.exe
attrib -s -h -r I:\Recycled\ctfmon.exe
attrib -s -h -r J:\Recycled\ctfmon.exe

del c:\Recycled\ctfmon.exe
del D:\Recycled\ctfmon.exe
del E:\Recycled\ctfmon.exe
del F:\Recycled\ctfmon.exe
del G:\Recycled\ctfmon.exe
del H:\Recycled\ctfmon.exe
del I:\Recycled\ctfmon.exe
del J:\Recycled\ctfmon.exe

attrib -s -h -r "C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\ctfmon.exe"
del "C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\ctfmon.exe"

tskill explorer
explorer
pause

Now paste that file in any of your desired corrupted directory and it will fix your issue.
 
Stay tuned for more tutorials
Posted by Andy lam
Labels:
0 comments
Subscribe to: Posts (Atom)