Archive for the ‘Virus-SpyWare-Security’ Category

YARA Malware Scanner

Friday, January 13th, 2017

Research Links

Malware Hunting with the Sysinternals Tools

Sunday, January 1st, 2017


gpg4usb small portable editor to encrypt and decrypt any text-message or -file you want

Sunday, January 4th, 2015

 gpg4usb is a very easy to use portable-application, which combines a simple text-editor with a GnuPG-frontend to write, encrypt and decrypt your text-messages and files. gpg4usb should work on almost any computer you're working on, should it be a Linux-machine or even one with a Microsoft-OS running.

Research Links

USB Security Issues

Thursday, October 2nd, 2014

Research Links

Video Update Foist

Sunday, June 8th, 2014

I had an incident on my portable laptop where a video update foist attempt occurred.   Malwarebytes flagged: C:\ProgramData\boost_Interprocess.

Research Links

ADW Adware

Monday, July 15th, 2013




SMART HDD Malware removal

Sunday, April 8th, 2012

Yikes when will these guys quit and get a real job? This one hides your files and makes it hard to recover.


Removing rootkit.0access.h Rootkit Google Redirector

Tuesday, March 27th, 2012

More stuff showed up on my personal machine.  Yuk.  rootkit.0access.h

Additionally when using the method I used it breaks the net connection.  I fixed all.  Sequence follows.

  • TDSSKiller   – I had to run and reboot several times.  I also may have run Malwarebytes in between.  Should have kept track better!  This was because first I used an older version as I was being blocked by the virus.  After I ran it I was able to connect and get the updated version which found more stuff.
  • Malwarebytes  – had to run this 2 or 3 times to come up clean.  After this my net connection was broken.
  • XP, Vista, Win7 Network Registry keys –  I double clicked on netbt.reg as refered to on the page that took me to the reg keys  – network was still not restored
  • Farbar Service Scanner FSS   –  I ran FSS to find out what network function was not working.  It came back with AFD.sys service not running.  
  • AFD.reg  –  I clicked on the AFD.reg key included in the XP registry keys.  I then rebooted.  After that my net connection was back.

How to remove SearchQu

Tuesday, February 28th, 2012

First find the folder and do the uninstall.  Then you have to reverse the changes to your browser default search and right click search.  A look through the registry helps too.

See these articles. 

How to remove XP Internet Security 2012

Saturday, December 31st, 2011

Spyware / virus lept onto my machine somewhere!  Following worked on my desktop.

This process seems to have worked.

On my laptop I had a similar redirector.  After I used the above tools internet explorer would not work.  For that I used the following tool.  This worked.