April 21st, 2009

You are currently browsing the articles from MS Windows Vista Compatible Software written on April 21st, 2009.

Manual Removal of W32/AutoIt.K Trojan

Manual Removal of W32/AutoIt.K Trojan

W32/AutoIt.K is a trojan. The trojan will infect Windows systems.
This Worm Copies its files to Windows Folder as hidden files.
This trojan information updated on April 20, 2009.
Other names of W32/AutoIt.K Trojan:
This trojan is also known as W32.SillyFDC, Trojan-Dropper.Win32.Autoit.k.

Damage Level : Medium/High
Distribution Level: Medium

Removal Tool for W32/AutoIt.K Trojan
W32/AutoIt.K Trojan Manual Removal Instructions
Recommend Removal from Safe Mode:
How to Start in Safe mode:
Restart your Computer, Press F8 Repeatedly, when your Screen turns on, Select Safe mode, press enter.

The Infected Files Can be Seen in these folders and names also Running in Tasks
End the Following Active Process Before Removal

[ Kill the Process, Use Killbox if your Access Denied ]

Download W32/AutoIt.K Trojan Known File Removal Tool

[In Windows Vista Run As Administrator, After Execution System Will Restart]

%Documents and Settings\Default User\Local Settings\Application Data\Microsoft\CD Burning\KHATRA.exe
%Documents and Settings\Default User\Local Settings\Application Data\Microsoft\CD Burning\Autoplay.inF
%Documents and Settings\Default User\Local Settings\Application Data\Microsoft\CD Burning\Default User.exe
%Documents and Settings\Default User\Local Settings\Application Data\Microsoft\CD Burning\New Folder(3).exe
%Windows\Xplorer.exe
%Windows\KHATARNAKH.exe
%Windows\System32\KHATRA.exe
%Windows\System\gHost.exe
%Windows\inf\Autoplay.inF
%Windows\Tasks\At1.job
[ No Exact Information about Files, search above related files in Program files Folder ]
If you have any of these files in running process from task manger, end the process before removal.
Note: if task manager is disabled, Download the following file, Click to Download - Enable Registry.reg [ Right Click - Save Target As/Linked Content As ]
Open it with Regedit.exe [%system32\regedit.exe], then it Confirms Add to registry Yes or No, Confirm Yes, then click Ok.

W32/AutoIt.K Trojan Entries Manual Removal From Registry

Click Start, Run,Type regedit,Click OK.

Note: If the registry editor fails to open the threat may have modified the registry to prevent access to the registry editor.

Download this UnHookExec.inf, [ Right Click - Save Target As/Linked Content As ]
and then continue with the removal. Save it to your Windows desktop. Do not run it at this time, download it only.
After booting into the Safe Mode or VGA Mode
Right-click the UnHookExec.inf file and click Install. [This is a small file. It does not display any notice or boxes when you run it.]

The W32/AutoIt.K Trojan modifies registry at the following locations to ensure its automatic execution at every system startup:
Delete The Entries
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run
Delete file entries from right side

Search Registry For W32/AutoIt.K Trojan File Names listed above to remove completely,
Edit Menu - Find, enter Keyword and remove all value that find in search.

Exit the Registry Editor,

Restart your Computer.

Recommended Removal Tools:

Kaspersky Antivirus or Internet Security (Shareware)
Spyware Doctor (Shareware)
AVG Antivirus (Freeware)

Killbox (Freeware)

Ultimate Links PC Tips™

Written by FireFly on April 21st, 2009 with no comments.
Read more articles on W32/AutoIt.AA Trojan and W32/Autoit.GC and W32/SillyFDC.BBA and W32/AutoIt.HI and W32.SillyFDC and otherSoftware and removal of trojan and Windows.

Windows Live Hotmail- now with Web Messenger

I don’t think I would have seen this one if I wasn’t reading CNET, where I learnt that Windows Live Hotmail now includes Web Messenger. Prior to this new functionality, users accessed MSN Web Messenger by going to http://webmessenger.msn.com. Now you can access it right from within the Windows Live Mail web page beside the Options link.

Signing into Web Messenger

Once signed in, you can manage your status and start communicating with your contacts. The only bummer is, it changes the Hotmail page to your Live Contacts, I would appreciate if it had opened this in a different window or tab.

Status menu in Windows Live Hotmail with Web Messenger

You can start a conversation from within the People contact list pop out menu. Web Messenger even provides toast messages.

Chatting using the new Windows Live Web Messenger

Its quite basic as the previous MSN Web Messenger, but for persons who want just the fundamentals, especially at work, its a definite plus. I would have liked if could maintain the Messenger like contact window experience. I notice that working with it in Internet Explorer 8 on Windows 7 causes some problems, I tried ungrouping the conversation window, but it refused, will try it a little later on Vista to see if its same. Its good that its utilizing the People contact list, but I don’t like the idea it automatically changes the Windows Live Hotmail page without the users consent.

Resources:

Web IM in Hotmail!
Windows Live Hotmail – New Improvements!
UPDATE: Windows Live: Talking about Duplicate Entries in your What’s New Page

Windows Live Tags: Windows Live, Windows Live Hotmail, Web Messenger, Microsoft, Software plus Services, Instant Messaging, IM, Email, Collaboration, Messenger, Cloud, Story, Hotmail, Clubhouse

Technorati Tags: Windows Live,Windows Live Hotmail,Web Messenger,Microsoft,Software plus Services,Instant Messaging,IM,Email,Collaboration,Cloud,Story,Hotmail,Clubhouse

Written by Teching It Easy: Windows Vista, Live & 7 on April 21st, 2009 with no comments.
Read more articles on 7 Journal and otherSoftware.

New Web Activities and Contact Importing Coming Soon to Windows Live

Rob Dolin, Program Manager for Windows Live, just announced over on the Windows Live Team Blog new Web Activities such as Facebook, Digg, and SmugMug will be hitting Windows Live next week. He also announced that MySpace, Hi5, and Tagged will join Facebook and LinkedIn as contact partners. These contact partners allow you to invite your friends to Windows Live and vice versa. And in the next few months, MySpace customers will be able to share updates and activities from MySpace on Windows Live. For more information – read Rob’s blog post and take a look at the Q&A with Brian Hall, General Manager for the Windows Live Business Group, over on PressPass.

Written by Brandon LeBlanc on April 21st, 2009 with no comments.
Read more articles on Web Activities and LinkedIn and Hi5 and Tagged and Contact Partners and Brian Hall and SmugMug and digg and Windows Live and myspace and Facebook and otherSoftware and Announcement.

Fedora Part III (…and Thanks! to a helpful community member)…

I’m really digging Fedora…a lot!

I posted yesterday about revisiting Fedora, and I’ve been more than pleased with my experiences so far. I’ve actually re-installed since last night, and due to the help of a very friendly community member, Rahul Sundaram I gained the information I needed to go ahead and try out the latest Fedora 11 snapshot. He did a great job in the comments section of that post in educating me a lot in the way Fedora handles things, such as updates and repositories. If you are possibly considering a switch from a “.deb” based system to Fedora, give those comments a read, they are a wealth of information.

I do have a comment to make about the installer though. When I installed Fedora 10, I used the DVD which used the traditional Anaconda Red Hat installer, and when I installed the Fedora 11 snapshot, I just downloaded the LiveCD and installed from it. I was very impressed with the LiveCD installer - I don’t think I’ve ever had an Operating System install complete so fast!

Aside from that, I just want to comment on Rahul. He just “stumbled upon” my blog post, and offered his help. This is the first time anything like that has happened from a community member of any distro I’ve tried (and blogged about). This left a really good impression on me, which goes a long way, and speaks troves about the Fedora community.

I took the time also to read through some of the mailing list archives, the Fedora Forums and idling in #fedora on Freenode. What I noticed was a very different community (in general) than what I’ve ever found with Ubuntu. Aside from the great folks behind Foresight Linux, the Fedora community seems to be, what has to be one of the friendliest, and most helpful communities in the Linux world. I’m really impressed, and I look forward to contributing to those resources once I learn my way around Fedora a little better myself. The community surrounding a distro goes a long way with me. The “Core” Ubuntu community is great, but often there a so many people in the Ubuntu Forums, and/or in the IRC channels, a lot of unnecessary noise is created (there seems to be a general obsession with desktop themes, and posting customized screenshots on the Ubuntu Forums for some reason).

To me, Fedora seems like a power-users dream, and I look forward to meeting others in the community, and learning more about Fedora, and Red Hat in general.

Thanks again Rahul for your help and advice last night and this morning - it really helped a lot, and I’m very happy with my Fedora install!

I wanted to come back and add, that while I did try the Fedora 11 snapshot, things didn’t work out the way I would have liked…not Fedora’s fought, it *is* pre-release code. Just after install, the F11 install was working great, but after an update, my machine would only shut down or reboot if I switched to a clean VT and did a good ‘ol ctrl+alt+del to send the reboot signal…If I just went to “System -> Shutdown” in GNOME, my panels would disappear, and I would be left looking at my wallpaper with no icons or panels. Also, for some reason, DNS lookups went kinda wacky (something w/ bind perhaps), and xchat-gnome would only randomly connect, and Pidgin wouldn’t work at all. I’m not sure if these were related to the DNS oddities, or to some other issue within those individual packages.

In short, I reverted back to Fedora 10 for now - and I’ll probably stay here until Fedora 11 is final. I will install F11 in a Virtual Machine and see if I can reproduce those errors (specifically the Pidgin, DNS and xchat-gnome errors and file bugs in bugzilla (if not already there).

Still very pleased with Fedora overall, just wanted to fully document my experience (which is no worse than some experiences I’ve had w/ pre-release Ubuntu code by any means!) That’s why it’s there - to test…and break!

Written by jaysonrowe on April 21st, 2009 with no comments.
Read more articles on otherSoftware and Computing.

End to End Trust and Windows 7

I attended Scott Charney’s keynote this morning at RSA – Moving Towards End to End Trust: A Collaborative Effort. I would assume that many of the readers of this blog are not familiar with the End to End Trust story. In a nutshell, End to End trust is Microsoft’s vision for creating a safer, more trusted Internet. It’s a great vision, but it’s also a big job that requires a commitment and focus on the fundamentals—fundamentals that will help deliver the most secure and privacy-enhanced versions of software and services that we have ever delivered. We’re also not going it alone. End to End Trust requires broad collaboration within the industry and Microsoft will continue to share our best practices with the IT communities of our customers.

Scott talked about how hard we are working across Microsoft to deliver technology innovations that move the needle towards a trusted stack, with security rooted in hardware and an identity metasystem (a big word that means a way of trusting people are who they say they are on the Internet). Even with progress, people still need strong defense in depth security technologies and Scott talked about how Microsoft’s Identity and Security Division is delivering integrated identity and security business solutions today to our customers. But maybe the most interesting thing he touched on was how technology innovations alone are not enough. Innovation also needs to align with political, economic and IT forces to enable the change that is truly needed.

End to End trust is a vision of what’s possible if we collectively work together, and it can help address real world problems that people face every day such as ID theft, online fraud and child safety. If you want to learn more about End to End Trust, visit http://www.microsoft.com/endtoendtrust to find out the entire story.

Now, let’s talk about Windows 7 and the progress we’re making to deliver End to End Trust in the Windows platform. In my blog post yesterday on how Windows 7 helps enable the mobile workforce, I wrote about technologies like DirectAccess, BitLocker To Go, and AppLocker. Each of these technologies plays a part in helping us enable End to End Trust, whether it is strong machine and user authentication with DirectAccess or limiting running software on a system to known, trusted applications with AppLocker. But there are other technologies that help us as well:

Biometric Framework
Fingerprint scanners are becoming more and more common in standard laptop configurations—my laptop came standard with one. Windows 7 helps ensure that fingerprint readers work well and that they are easy to set up and use. This is accomplished by taking the common code that everyone needs to write and standardizing it in the platform so that biometric hardware vendors can concentrate on the code they need to write to make their device work and not have to worry about how it ties into Windows. This new framework makes logging on to Windows using a fingerprint more reliable across different hardware providers and makes fingerprint reader configurations are easy to modify. This puts the user in control of how they log on to Windows 7 and manage the fingerprint data stored on their PC.

Improved Smart Card Support
Password-based authentication has well-understood security limitations; however, deploying strong authentication technologies like smart cards remains a challenge for many. Windows 7 enhances the smart card infrastructure advances made in Windows Vista through support of Plug and Play. This eases deployment of smart card infrastructures because drivers for both smart cards and smart card readers are automatically installed, without the need for administrative permissions or user interaction. I think this new behavior is going to ease the deployment of strong, two-factor authentication for many organizations.

BitLocker
I’m a big fan of BitLocker, it helps prevent a thief who boots another operating system or runs a software hacking tool from breaking into my laptop if they happen to get a hold of it. This holds true for both the operating system volume (C: drive) and my data volume (D: drive). Most customers I talk to love the encryption protection that BitLocker provides, but many are not aware that BitLocker also does integrity checking of early boot components to help ensure that the system has not been tampered with and that the encrypted drive has not been swapped out to another computer. This integrity checking ties back into the “security rooted in hardware” that is a part of End to End Trust. This integrity checking utilizes a Trusted Platform Module (a smart card like chip on the system motherboard) to help protect the encryption keys utilized by BitLocker. This is true for BitLocker in Windows 7 as well as Windows Vista.

We’ve also listened to feedback and made enhancements to Windows 7 BitLocker to provide a better experience for IT Pros and for end users. One of the simple enhancements we made is to right-click enable the BitLocker protection of a disk volume. Now I can go to Windows Explorer and right click any disk volume, including my removable BitLocker To Go volumes, and encrypt them right there without having to go to the Control Panel.

Another big change was the addition of Data Recovery Agent (DRA) support for all protected volumes. The DRA is a certificate-based data recovery agent that can be utilized to recover the contents of any BitLocker protected volume. Since the group policy settings are separate for Operating System Drives, Fixed Data Drives, and Removable Data Drives, customers have flexibility in how they want to configure their recovery options for the different threats that each separate drive type may experience.

With BitLocker and BitLocker To Go, enterprises can rest assured that their information and data is secure, no matter where their employees are working. I know I feel better knowing my laptop and all of my USB sticks are protected!

Internet Explorer 8

I know folks are more concerned than ever about protecting themselves while online, particularly form identity theft, malware, and other potentially dangerous online threats. I feel like we have done a lot in the platform and the security technologies we have been talking about this week (Firewall, DirectAccess, BitLocker To Go and AppLocker) are a part of the protection equation. But Internet Explorer 8 is also another huge piece of the equation as users spend more time online, in their browsers. IE 8 is the most secure web browser on the market and provides another, vital layer of defense against online threats.

We built upon the phishing protection in Internet Explorer 7 with the SmartScreen Filter, which now adds protection from malware – a threat that is growing significantly faster than phishing.

We also built in support for protecting users against type-1 (or “reflection) Cross-Site Scripting (XSS) attacks. XSS threats try to exploit vulnerabilities in the websites we visit and are quickly becoming one of the most prevalent ways web sites can be compromised. The bad news for you and I is that an XSS attack can help a bad guy steal our usernames and passwords for our online bank accounts or other confidential information. The XSS filter in IE 8 uses heuristics to detect such attacks and, when they are detected, prevent their execution. This should help you and I safe from the most common form of XSS attacks in use today.

Another innovation concerns ClickJacking. While a lot or people have heard of phishing attacks, a new kind of phishing attack called ClickJacking is on the rise. ClickJacking occurs where an attacker’s web page deceives a person into clicking on content from another website without realizing it – so they’re clicking on something that, for instance, buys something from the site, changes settings on their browser, or provides advertisements that these cybercriminals get paid for. ClickJacking Protection in IE is a feature that allows Web site content owners to put a tag in a page header that will help prevent ClickJacking.

I think the IE team has done a great job with the security in IE 8 and love that it puts people in control of their safety and privacy and helps protect them from new online threats. For those of you who are interested, there is a lot more security goodness in IE 8 on the IE blog and via these links:

Got To Run

I feel great about Windows 7 and the security enhancements we have been able to make. Hopefully as you learn more about the security work that we have put into it, you will reach the same conclusion that I have: Windows 7 is the most robust platform we have ever delivered, it helps support End to End trust, helps keep you and I safe, and was designed to prevent malware from getting onto our PCs to begin with.

There is a lot going on here at RSA and I want to go spend some more time seeing what’s new and exciting. I’ll be back with some of my impressions of RSA in a bit.

Written by Paul Cooke on April 21st, 2009 with no comments.
Read more articles on Windows Biometric Framework and RSA and SmartScreen and End to End Trust and Clickjacking and otherSoftware and BitLocker and Biometrics and internet explorer 8 and smart card and Security.