Anti Virus

Anti-Virus are the most Reliable tool for getting rid of virus and other malicious files. There are many Antivirus companies which offer services like Professional Antivirus, Free Antivirus, Online Virus Scan, etc. But Still many hackers manage to breach this Security checks and get the control over users machine. The most trending and used method of getting Control over the user's machine is R.A.T ( Remote Access Trojans) .


Que. What are Remote Access Trojans ( R.A.T ) ??
Ans. Basically R.A.Ts are malicious programs which invisibly run in the system , and Allows an Intruder to take control over the System .



So Lets start with it , The Steps will successfully Remove the Virus ( R.A.T ) from the System without use of any Software or AntirVirus.

Firstly , Go to Run ( For Windows 7 type Run in Start Menu ) . Now type in "msconfig" in run and click on "okay"

Now , Go to Startup in msconfig ( Refer the Picture ) 

Look for any Strange Process Such as

"svchost"
"windefender"
"firewall"
"Chrome"
"explorer"


For making the Guide , I installed Rat on my System . So here you can see "svchost" ( It can be anything else, depending on the programmer of Rat)  . To the right in command there is "C:\Users\Benz". This is the Location of RAT file, this is where Rat works from .

Now , Don't Disable it . Because it will Re-appear . For Clearing out the Rat go to Task Manager ( Alt + Ctrl + Delete) and brose the "Process" tab . And look out for Something strange , as you did in the case of msconfig


Here you can see server.exe*32 is a has a Description " Remote Server Application ".

Now Disconnect your Internet , End Rat's process and Removes Rat's Startup from "mscofig".
The Process of Rat is removed , but it is still there in the system .

Go to Rat's Location and delete everything related to to it . ( You can refer to steps below , if you don't how to do it properly)

Click Here for all Steps

Restart your Computer , and Check if still any Rat process persist in Taskmanager and Startup.
If there is nothing suspicious then,

Congrats you have Successfully Removed the Rat

Comments

Post a Comment

Popular posts from this blog

How to configure apache server in linux

Image
Apache is the most popular, secure, robust, reliable and powerful web server. Apache is used by more websites than all other web servers combined. RHEL6 includes Apache version 2.2 RHCE6 Exam objectives covered in this article HTTP/HTTPS Configure a virtual host. Configure private directories. Deploy a basic CGI application. Configure group-managed content. In this tutorial I will use three systems Server, linuxclient and windowclient from our LAB environment. I will configure Apache Web Server on Server system and test from inuxclient and windowclient system. If you want to check the network topology used in this article please check following article. Lab set up for RHCE 6 practice Installation of Apache Two packages are required for Apache server httpd mod_ssl elinks httpd package install Apache web server. mod_ssl is the additional package which required to create secure websites elinks is the additional package for text based we
Read more

A Guide to Buying a Motherboard

we have so many question about Motherboard. So first start with LGA. What is LGA   land grid array  ( LGA ) is a type of  surface-mount  packaging for  integrated circuits  (ICs) that is notable for having the pins on the  socket  (when a socket is used) rather than the integrated circuit. [1]  An LGA can be electrically connected to a  printed circuit board  (PCB) either by the use of a socket or by  soldering  directly to the board. LGA is used as a physical interface for microprocessors of the  Intel   Pentium 4  (Prescott), Intel  Xeon ,  Intel Core 2 ,  Intel Core  ( Bloomfield  and  Lynnfield ) and  AMD   Opteron  families. Unlike the  pin grid array  (PGA) interface found on most  AMD  and older  Intel  processors, there are no pins on the chip; in place of the pins are pads of bare gold-plated copper that touch protruding pins on the microprocessor's connector on the  motherboard . The most common Intel desktop LGA socket is dubbed  LGA 1150  (Socket H3), which is
Read more

RHEL 7

RHEL 7 ..... ************************RHCSA Version 7 **************** Initial configuration.txt: *you have been provided a virtual box named as serverX.example.com (hint:where X is your domain number) * password for both virtual machine should be "Postroll" *serverX.example.com provided with ip=172.25.X.10/255.255.255.0 *serverX.example.com are provided with gateway 172.25.254.254 & example.com dns domain with the IP: 172.25.254.254 gateway 172.25.0.1 netmask 255.255.255.0 nameserver 172.25.254.250 1) configure your systems that should be running Enforcing 2) create a new 100MB Physical partition mounted under /Gluster (Note because partition sizes are seldom exactly what is specified when they are created, any thing within the range of 70MB to 120MB is acceptable) 3) create a new 150MB swap partition f/s. (Note because partition sizes are seldom exactly what is specified when they are created, any thing within the range of 13
Read more