Security

[Download] Microsoft Internet Explorer 9 Security Fix (KB2744842) – Critical Update

by

We had issued and advisory earlier that the Internet Explorer 9 and lower versions are facing a security flaw where the attackers may exploit the bug, targeting hundreds of millions of computers, to infect the PC of somebody who visits a malicious website and then take control of the victim’s computer. Well this issue has been fixed.

 

 

Internet Explorer 9

Microsoft promised that the fix will be available by Friday, 21 September. Well they kept their promise but with some variations. Microsoft had said that this is an easy fix and it will not even require a reboot. Well that’s not true. The Critical update details say:

Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer.

windows-security-update

The Cumulative Security Update for Internet Explorer 9 for Windows 7 (KB2744842) will be fixing the issue. This update is available in Windows Update. You can directly update it from your Windows PC.

If you don’t use Windows Update service. you can still  download it from Microsoft. Choose the correct Windows Version while downloading.

Download from Microsoft

[How To] Remove Trojan.Vundo.H or Vundo.H Virus

by

danger

Trojan.Vundo.H also known as Vundo.H is a back door trojan horse program  that will activate corrupt infected local and network computers and download further malware programs onto the system. The Trojan.Vundo.H trojan horse is considered at severe security risk that can alter registry files and radically slow down computer speed.

Though popular anti-virus programs like AVG can detect the virus, it is found that some special anti-spyware program is needed to remove this virus application

Trojan.Vundo.H  infects and alters certain registries which include:

* HKEY_CLASSES_ROOT\CLSID\{39458c53-4dae-471a-a480-e3bc0b1d7dd9}
* HKEY_CLASSES_ROOT\CLSID\{65d46614-611d-4af2-aa13-a34fc317a96e}
* HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS
* HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\dslcnnct

Some of the known infected files by Trojan.Vundo.H are given below:

* C:\WINDOWS\SYSTEM32\ugohwe.dll
* C:\WINDOWS\SYSTEM32\subapade.dll
* C:\WINDOWS\SYSTEM32\edapabus.ini
* c:\WINDOWS\SYSTEM32\voriyeji.dll
* C:\WINDOWS\SYSTEM32\pefedamu.dll

Removal of Trojan.Vundo.H program:

It is very difficult to remove the virus program manually, though it is possible. To monitor the activity and registries of the program we can use Hijack this. To know more follow step 2 in this post.

After a detailed research we have found that this spyware virus can be removed using the spyware program: Spyware Doctor with AntiVirus 2010 for Windows. You can download the program from the link below:

Download: Spyware Doctor with AntiVirus 2010 for Windows

Size: 34.9 MB

Run a full scan and remove the Virus files.

You can subscribe to our RSS feed via email for more tutorials under security.

F-Secure Internet Security 2011 Beta With 6 Months Free Subscription [Downloads]

by

F-Secure logo

F-Secure has released the public preview (beta) release of their upcoming Internet Security 2011 suite along with 180 days(six months) free subscription to use and test the new version.Please keep in mind that this is a beta version and hence only use it for personal use.

The new F-Secure internet security 2011 has many performance improvements, security and feature updates compared to F Secure internet security 2010.The new user interface(UI) of the software is stunning.

F-Secure_internet_security_2011_beta

This new beta version is coming up with a brand new tools dedicated to safeguard your online browsing experience.The menu “Online Safety” is added in the 2011 version to provide the same.

Another additional feature in the new version is for managing the program update downloads through the mobile internet connection.As the users using mobile internet through UMTS(3G) or using data cards (like EVDO or 3G), this new setting allows you to set automatic downloads only when you are on the home network and disable it when you are on roaming.

Grab your own copy of F-Secure internet security 2011 with six months free license, during which period you get all the product updates as free downloads.

How to Get  Free Six Months License ?

1. Go and visit this free registration page , enter your details

F-secure six months free registration

2. You will now receive a email with your registration details and confirmation link.Once you confirm it, you will receive another email with the license key.

3.Download F-Secure Internet Security 2011 Beta Installer [Link expired]

Supported OS:

Windows XP, Windows Vista & Windows 7(32-bit and 64-bit)

MyWebSearch Adware: Instruction to Completely Remove My Web Search Toolbar

by

my_web_search_uninstaller

MyWay Searchbar commonly known as MyWay Speedbar, MyWay Search Assistant, MyWebSearch, and MyWeb Searchbar is toolbar allows us to query Google, Ask.com, and Yahoo! search engines. The program were classed as adware by some websites and anti-malware applications, although they claimed not to have the adware function. The MyWay Searchbar is currently described by Sunbelt Labs as a Potentially Unwanted Program. [Source: wikipedia.org]

MyWebSearch installed on my system without permission:

How I got MyWebSearch installed on my computer without actually installing it? This happened when I was chatting with a friend in Gtalk. I received a chat as:

You just received a smiley! Go to http://buddies.smileycentral.com/ to see it!

I was curious and clicked it. Then I later found out that it had installed MyWebSearch without my consent. This is only one way of getting infected. There are lots of others also.

Why MyWebSearch is potentially unwanted?

  • My Web Search installs its own programs without any permit.
  • It is difficult to completely remove this program.
  • Even if it is removed from the Add/Remove program, the registry values still remain and tries to run.

How to find out MyWebSearch installed or not?

  • Add ons appear in Browsers like Mozilla/Internet explorer
  • Add ons can also be found in Messengers like Gtalk
  • Unwanted pop ups may come up during internet usage.

How to Remove MyWebSearch Completely from your Computer?

Step 1: Remove the program from Add/Remove programs:

Go to Start Menu –> Control Panel –> Add/remove Programs or Uninstall a program

Search for MyWebSearch and uninstall all the programs shown.

control_panel_remove_mywebsearch

my_web_search_uninstaller

After removing the program, restart the your system.

Step 2: Use HiJackThis to remove the unwanted registry entries and running programs of My Web Search:

HiJackThis is a freeware which can scan your registry for unwanted entries. It is a stand alone program and  doesn’t require installation.

Download HiJackThis v 2.0 : http://www.techrena.net/downloads/HiJackThis_v2.exe

Size: 1.2 MB

Scan your System with the program. Remove the following entries if present:

Click Here to Open The text file containing the entries.

See the image below to see hot to remove the entries: (Click to Enlarge)

fix_registry_hijackthis

Step 3: Remove the My Web Search registry Entries present in the windows registry:

Download the BAT file from the link below:

http://www.techrena.net/downloads/remove_my_web_search.bat

Double click on remove_my_web_search.bat. It will open Command Prompt. While running the commands the command prompt will ask for confirmation to delete the entries. Press Y and enter every time it asks.

confirm_delete_cmd

Ignore if it tells cannot find the value in the path. It is because the values are already been removed.

Now you have successfully completed removing My Web Search bar components from your system.

Note:

1. In order to perform all these actions and  commands you need to have Administrator privilege.

2. If your registry editor is disabled, you cannot perform theses actions. You can refer: How to enable Registry Editor (REGEDIT) to enable it.