PCSafety.us

Back door Virus is yet another type of software infection that breaches your computer security system. The Backdoor Trojan Horse is a slight variation of Backdoor.Sdbot. This virus prolifically spread itself over the internet and let others access yours information by using Internet Relay Chat otherwise called as IRC.

If you detect a file like %System%\15E evplore.exe or any filename related to it then it is a signal that your PC is facing Backdoor virus security breach.

Also trojan horse backdoor virus attaches information like Config Loadatiorin = l5E explore.exe or lines similar to it to your Windows registry.

To effectively remove Back door Virus first click on the start button and then follow the given instruction.

1. Depending on the windows version click on Find or Search

2. Next click either Files or Folders or All Files or Folders

3. Search for all files like 15E explore in the hard drive by typing the name in the search bar.

4. Delete those files

5. Next click Start, Run one after another and then type REGEDIT and open the Registry Editor

6. Here is the list of entries that you should delete from the Registry. However, be careful not to delete the wrong keys as that will hinder the correct operation of the computer and you have to install it again.

If you see any value that refers to the line “Config Loadation”=”l5Eaxplore.exe>”

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunService

Next exit the Registry Editor, restart the computer and check again the Registry for any related Backdoor Virus.

Microsoft Security Essentials and Malwarebytes Anti-Malware are the best and reliable backdoor virus removal tool to combat these types of viruses.

Sasser is a worm that infects your machine via a vulnerable internet connection. It attacked a single computer and also the entire networks of computers connected through LAN. Sasser virus intrudes into a known windows vulnerability that was easily patched by Microsoft. It has attacked Windows 2000, Windows XP, Windows Server 2003 and Windows NT.

Microsoft Security Team fixed the following vulnerabilities using patches/updates:

• LSASS Vulnerability
• PCT Vulnerability
• LDAP Vulnerability
• Metafile Vulnerability
• Winlogon Vulnerability
• Utility Manager Vulnerability
• Help and Support Center Vulnerability
• Windows Management Vulnerability
• H.323 Vulnerability
• Local Descriptor Table Vulnerability
• Negotiate SSP Vulnerability
• Virtual DOS Machine Vulnerability
• ASN.1 “Double-Free” Vulnerability
• SSL Vulnerability

A Microsoft Security Bulletin version MS04-011 explains about the operating systems which were affected due to Sasser Worm.

Before Microsoft created sasser worm removal tool to fix this issue security experts followed the below process in removing w32 sasser b:

1. First, disconnect the computer from any internet or LAN connection

2. Terminate all the program that are running. For this open Windows Task Manager either by pressing CTRL+ALT+DEL or select Task Manager and process Tab on WinNT/2000/XP machine. Locate any one of the following files

avserve.exe, avserve2.exe, skynetave.exe or any process running with “_up.exe” and click End Task. Close Task Manager.

3. Next, activate Windows XP Firewall Version for Windows XP and another firewall for other versions to disable the worm from shutting down when the downloading the patches is still in process.

4. Download and install the patches for the respective Operating Systems

5. Remove the Registry entries

6. Delete all the infected files. In case you are using Windows ME and XP first turn off System Restore

7. In the end reboot the computer, update your windows and antivirus software and do a thorough scan.

In 2004 Microsoft “Fast Publish” a tool called Microsoft Sasser Worm Removal Tool which removes w32.sasser.worm effectively from the PC but later it has been added to the Microsoft malicious software removal tool.

If your computer is running slower than usual or experiencing unexpected pop-ups just give a call to the free security support for Microsoft PC Safety.

Your computer is attacked from different infected software from time to time. Malicious software like Spyware, Adware, keystrokes, Trojans, viruses and so on slows the speed of your internet and also manipulates information related to search. Antispyware software programs are basically designed to keep your computer free from security threats.

The Windows Defender Software is technically built to secure you computer from pop-ups, slow performance, detection and removal of security threats caused by Spyware. Its Real-Time Protection features a monitoring system that detects viruses from time to time and minimizes interruptions.

Detecting and removing Spyware

1. The Windows Defender skillfully detects spywares and other annoying pop-up ad

2. It stops infected software from manipulating your internet setting and hacking private information

3. Permits you to set the scanning and removing time

4. You can easily get back eliminated information in case any needed program is removed

Improves internet browsing safety

1. The Windows Defender improves your internet performance by preventing infiltration of spyware software

2. This Microsoft malware removal works on the background. The user has no knowledge that your computer is cleared of spyware attacks from time to time. It also offers minimum information so that the user knows that the PC is infected by spyware and been safely removed.

Provide protection against latest security threats

1. With research continuously new innovation are made by Microsoft to combat new spyware and infected software

2. The worldwide Windows Defender network enables both users and Microsoft to quickly notify against new threats of spyware

3. Automatically update and download the latest version to counteract new spyware threats

The Windows Defender is built-in inside Windows Vista Operating System. You can install in x64 versions of Windows Vista too. You can also download it in reliable copies of Windows Server 2003 Service Pack 1 or later or Windows XP Service Pack 2 or later. It is one of the best Microsoft malware removal tool.

For more information, visit Windows Defender and other Microsoft anti-malware solution. You can also watch the demo (requires Microsoft Silverlight) about using Windows Defender or download directly from Microsoft Downloads.