Tag Archives: Malware

Cisco AnyConnect VPN client installation problems aka Windows Firewall Service (+ BFE) cannot be enabled/missing (Event ID 7024) (Windows 7)

Sometimes malware or other circumstances changes the behavior of the Windows Firewall Service and the associated Base Filtering Engine (BFE) Service or it deletes these two services at all. This results into problems so that software which check for or … Continue reading

Posted in Computer und Internet | Tagged , , | Leave a comment

Malware attack, McAfee and a Group Policy error

You have an corporate setup and push McAfee or any other AV solution to all your clients via an AV management environment? Ok, that is great! But every standard have disadvantages too because a malware writer knows where the executable … Continue reading

Posted in Computer und Internet | Tagged | 1 Comment

Free Antivirus Solutions for Businesses

My experience and the one from Imperva are not that far away: “Antivirus software is now so ineffective at detecting new malware threats most enterprises are probably wasting their money buying it, an analysis by security firm Imperva has concluded.” … Continue reading

Posted in Uncategorized | Tagged , , | Leave a comment

Online Malware/Virus Scanner

Sometimes the well known online malware scanners like Jotti or Virustotal are too busy (screenshots made on 02/14/2011): Therefore I list you the latest trustworthy online malware/virus scanner resp. some alternatives to Jotti or Virustotal: Filterbit Jotti Novirusthanks VirSCAN Virustotal

Posted in Uncategorized | Tagged , | Leave a comment

Malware again

This one was tricky because there was a globalroot path and a file name listed as userinit.exe under %systemroot%\system32 which in fact was us?rinit.exe!!! With the Command Prompt, I saw that strange name but not within the Windows Explorer resp. … Continue reading

Posted in Uncategorized | Tagged , | Leave a comment

Browsing with safer and more reliable DNS Services (FREE)

Today it’s so easy to kick open into a malware websites without any prior alert or similar. So what can be the solution? Security is a multi-tier setup which includes a correct OS update service, Antimalware Solutions, Firewall etc. But … Continue reading

Posted in Uncategorized | Tagged , , | Leave a comment

MSN/Windows Live and/or Yahoo IM Malware

Today I was confronted with malware and here are my results: Registry:HKLM\Software\Microsoft\WindowsNT\CurrentVersion\Image File Execution Options\conime.exe\wcoredk.exeHKLM\Software\Microsoft\Windows\CurrentVersion\Run\conime.exe C:\windows\system32\wcoredk.exeC:\windows\prefetch\WCOREDK.EXE-3A9E970E.pf netstat –aon -> showed the 203.228.244.187:32132 as destination While it runs, wcoredk.exe ‘kills’ Sysinternals Tcpview/Nirsoft CurrPorts and Sysinternals Process Explorer. –> Finally, ANVIR helped … Continue reading

Posted in Uncategorized | Tagged , | Leave a comment