Fake Windows 11 installers come with malware

From the various report, it is now clear that no one is prone to Ransomware attacks. Cyber-criminals never target any specific field of the user workgroup for this Ransomware attack. But in past few years, it has hugely affected home users, businesses, organizations. We can say, Ransomware victims come in all shapes & sizes. Many business owners think that they will never be attacked by Ransomware crooks because their business is not so big. But that’s not true. A huge proportion of Ransomware attacks happened in small sector businesses because of their weak security resistances.

Some leading negative consequences of Ransomware attacks faced by almost every victim are:

1. Permanent or temporary loss of proprietary or sensitive information.
2. Lots of trouble in performing regular operations.
3. Huge financial losses sustain for restoring up your files and systems.
4. Latent harm to the reputation of an organization.
5. Even making the Ransom payment doesn’t guarantee the safe releasing of your encrypted files.
6. Attackers get the victim’s money along with their banking details.
7. Getting the decrypting files doesn’t mean malware infection has completely been removed.

Ransomware put a tremendous impact on disturbing business operations and in the end, leads to data loss situations.

Here are some huge impacts of Ransomware attacks on business are:

1. Damage or loss of all the crucial information
2. In the Ransomware post-attack period Business disrupts a lot.
3. Destruction of hostage data, file, and system.
4. Business downtime
5. Victimized company’s reputation dropdown
6. Productivity loss

Apart from the ransom, the cost of downtime because of restricted system access will bring major concerns. It’s a fact that due to downtime victims may has to pay a cost of ten thousand dollars daily. As, Ransomware is becoming more and more widespread, so all companies require to brush up on their annual cyber-security goals. Moreover, approach for some appropriate implementations of Ransomware recovery plans and commit sufficient funds in their IT budgets for cyber-security resources. Among the most effective impact of Ransomware, “data encryption” is very hard to deal with. Meanwhile, this victim is completely restricted to access any of their encrypted data. The only way for unlocking these encrypted files is through the decryption key which only belongs to hackers. Many times, the decryption key is given to the organization, after the payment of the ransom. But there are also some cases when data is not handover to the victim, even after the ransom payment. The main risk that generates with “operational impact of Ransomware” is on the businesses. Can you just imagine, what will happen if all of a sudden entire services or processes of your business halt down?

Well, this dreadful Ransomware threat is so impactful that it can:

1. Close down the entire plant
2. Freeze manufacturing control system
3. Make other backlogs

All the damages that occur due to downtime can be a major one and can have so many consequences. A well-organized strategy of backup and recovery will not certainly make the Ransomware attack painless. As this takes an extensive amount of money and time for data restoration.

Apart from that, the decision of recovering your system using the backup moreover depends on three things:

1. First the amount of data loss that is considered acceptable by your business or organization.
2. Up to how extent, the impact of Ransomware has spread
3. How fast the Ransomware attack was spotted.

However, in many cases, data gets so encrypted that you can’t revert back to the restore point. At that time external backup is considered the best option. Among the wide-reaching impact of Ransomware “Data loss” is the most effective one.  As it starts from little disruption and leads to permanent business failure. Sometimes data loss in a Ransomware attack leads to disclosure of all your confidential information which ends up in fines and lawsuits. Attackers always look for backup files and folders after encrypting your system data. So that user can’t retrieve their corrupted file from the backup. Such dreadful activities make this Ransomware threat so profitable and effective. Victims don’t have any choice left either they have to pay the ransom or they have to face their risk of data loss.

InternetSpeedTracker is a browser extension developed by MindSpark Inc. This browser add-on offer uses tips on how to boost their “bad” internet connection speed. It displays false internet speed in order to get you to open the sponsored links listed in the toolbar.

This extension also hijacks your browser home page and replaces your default search engine with MyWay. While browsing the internet you will see additional unwanted sponsored ads and links throughout your search results, and sometimes even pop-up ads might appear. While active this extension gathers personal information, website visits, links, and clicks and uses this data to serve ads.

InternetSpeedTracker has been flagged as a Browser Hijacker by several anti-virus scanners, and due to its data mining behavior, it is not recommended to keep it on your computer, especially because it gives false data about your internet speed.

About Browser Hijackers

Browser hijack is a very common type of online fraud where your internet browser settings are modified to allow it to carry out things you don’t intend. They’re created to disrupt browser functions for several purposes. It redirects you to the sponsored sites and inserts ads on the web browser which helps its developer generate earnings. Nevertheless, it’s not that naive. Your web safety is jeopardized and it is also extremely irritating. They don’t just ruin your web browsers, but browser hijackers could also modify the computer registry, making your PC vulnerable to other attacks.

How one can know if your web browser is hijacked

Signs that an internet browser is a hi-jacked include: the browser’s home-page is modified; you find yourself regularly directed to a different site than the one you meant; the default search engine is changed; unwanted new toolbars are added to your web browser; never-ending pop-up ads show up and/or your browser pop-up blocker is disabled; your web browser starts running sluggishly or displays frequent glitches; You simply can’t access specific sites, particularly anti-virus sites.

How they infect PCs

A browser hijacker can be installed on your computer when you check out an infected website, click an e-mail attachment, or download something from a file-sharing website. They are usually included with toolbars, BHO, add-ons, plugins, or browser extensions. A browser hijacker could also be installed as a part of freeware, shareware, demoware, and fake programs. A good example of a notorious browser hijacker is the most recent Chinese malware known as “Fireball”, which has attacked 250 million computer systems worldwide. It acts as a hijacker but can be turned into a fully functioning malware downloader afterward. Browser hijackers could affect the user’s browsing experience greatly, keep track of the websites visited by users and steal private information, cause difficulty in connecting to the internet, and ultimately create stability issues, making software programs and systems freeze.

How to repair a browser hijack

Some hijackers could be removed by uninstalling the freeware they came with or by eliminating any extension you have recently added to your system. But, many hijackers are hard to get rid of manually. No matter how much you attempt to eliminate it, it can keep coming back over and over again. And there’s no denying the fact that the manual fixes and removal methods can be quite a complicated job for a rookie PC user. Furthermore, there are several risks connected with fiddling around with the system registry files.

What you can do if Virus Stops You From Downloading Anything?

Malware could cause all kinds of damage after they invade your system, ranging from stealing your private information to deleting data files on your computer system. Certain malware variants modify web browser settings by adding a proxy server or modify the computer’s DNS configuration settings. In such cases, you’ll be unable to visit some or all of the websites, and thus not able to download or install the necessary security software to remove the infection. If you’re reading this article, chances are you’re stuck with a virus infection that is preventing you to download or install the Safebytes Anti-Malware program on your PC. There are some fixes you can try to get around with this issue.

Install antivirus in Safe Mode with Networking

If the malware is set to load at Windows startup, then booting in Safe Mode should prevent it. Since only the minimal programs and services start-up in safe mode, there are rarely any reasons for issues to take place. Listed below are the steps you should follow to start your computer into the Safe Mode of your Windows XP, Vista, or 7 computers (visit Microsoft site for instructions on Windows 8 and 10 PCs). 1) At power on/start-up, tap the F8 key in one-second intervals. This will bring up the Advanced Boot Options menu. 2) Select Safe Mode with Networking with arrow keys and hit Enter. 3) As soon as this mode loads, you will have an internet connection. Now, utilize your web browser normally and navigate to https://safebytes.com/products/anti-malware/ to download and install Safebytes Anti-Malware. 4) Right after the software program is installed, let the diagnostic scan run to remove trojans and other malware automatically.

Switch to an alternate web browser

Web-based viruses can be environment-specific, aiming for a particular internet browser or attacking specific versions of the browser. The best solution to avoid this issue is to opt for a browser that is known for its security features. Firefox comprises built-in Phishing and Malware Protection to keep you safe online.

Run anti-virus from a pen drive

Another technique is to download and transfer an anti-malware application from a clean PC to run a scan on the affected computer. Follow these steps to use a flash drive to clean your infected system. 1) Download Safebytes Anti-Malware or Microsoft Windows Defender Offline onto a clean PC. 2) Insert the pen drive on the same system. 3) Double-click the Setup icon of the anti-malware software package to run the Installation Wizard. 4) Pick a USB flash drive as the place when the wizard asks you exactly where you would like to install the application. Follow the instructions on the computer screen to complete the installation process. 5) Now, transfer the pen drive to the infected computer. 6) Run the Safebytes Anti-malware directly from the thumb drive by double-clicking the icon. 7) Click the “Scan” button to run a full system scan and remove malware automatically.

Let's Talk About SafeBytes Anti-Malware!

Want to install the best anti-malware application for your laptop or computer? There are many applications available in the market which comes in free and paid versions for Windows computers. Some of them are great and some are scamware applications that pretend as legitimate anti-malware programs waiting to wreak havoc on your PC. When looking for an antimalware program, pick one which gives reliable, efficient, and total protection against all known viruses and malware. One of the recommended tools by industry leaders is SafeBytes Anti-Malware, the most dependable program for Windows computers. SafeBytes anti-malware is a reliable tool that not only secures your system permanently but is also quite user-friendly for people of all ability levels. This application could easily identify, remove, and protect your personal computer from the most advanced malware attacks such as spyware, adware, trojan horses, ransomware, worms, PUPs, and other possibly damaging software applications. SafeBytes has excellent features when compared to other anti-malware programs. Below are a few of the great ones: World-class AntiMalware Protection: Built upon a greatly acclaimed anti-virus engine, this malware removal application can identify and remove numerous obstinate malware threats such as browser hijackers, PUPs, and ransomware that other common antivirus applications will miss. Live Protection: SafeBytes gives real-time active supervision and protection from all known viruses and malware. They’re very effective in screening and eliminating different threats because they are regularly improved with new updates and alerts. Web Security: SafeBytes provides an instant safety rating on the web pages you are going to visit, automatically blocking risky sites and making sure that you are certain of your safety while browsing the internet. Very Low CPU and Memory Usage: SafeBytes provides complete protection from online threats at a fraction of the CPU load due to its enhanced detection engine and algorithms. Premium Support: SafeBytes provides 24/7 technical support, automatic maintenance, and updates for the best user experience.

Technical Details and Manual Removal (Advanced Users)

If you wish to manually remove InternetSpeedTracker without the use of an automated tool, it may be possible to do so by removing the program from the Windows Add/Remove Programs menu, or in cases of browser extensions, going to the browsers AddOn/Extension manager and removing it. You will likely also want to reset your browser. To ensure the complete removal, manually check your hard drive and registry for all of the following and remove or reset the values accordingly. Please note that this is for advanced users only and may be difficult, with incorrect file removal causing additional PC errors. In addition, some malware is capable of replicating or preventing deletion. Doing this in Safe Mode is advised.

The following files, folders, and registry entries are created or modified by InternetSpeedTracker

The Makecab.exe process that’s running on your Windows 10 computer is a program that compresses the Component-Based Servicing log or CBS log files and they can get really huge if they’re not compressed. As a result, it would utilize important space on your operating system although makecab.exe does not consume high CPU resources in doing so. However, there are times when it recreates thousands of instances of itself and could cause overconsumption of system resources which slows down your computer. So when the makecab.exe process causes high CPU usage in your system, this could mean that there is a failed Windows Update. In addition, the high CPU usage of the makecab.exe process could also mean that your computer is infected with a virus or malware. Whichever the case is, you can check out several possible solutions that are given in this post to resolve the problem.

Option 1 – Try to delete log file using File Explorer

The CBS log files could reach up to 20GB size and so if you delete them, it would help in saving space in your computer and since they’re not much of use, deleting them won’t negatively affect the system at all. To delete the CBS log files, all you have to do is open the File Explorer and then go to C:/Windows/Logs/CBS and from there, open the CBS log files and delete them all. Doing so should ease the load in the makecab.exe process since it no longer has to compress the CBS log files. As a result, the process would be more relaxed. After that, you can restart your computer and check if the problem’s now fixed.

Option 2 – Try deleting the log file via Command Prompt

You can also try to delete the log files using an elevated Command Prompt. Refer to these steps to do so:

• Type “command prompt” in the Windows Search bar and then right-click on the related search result and select the “Run as administrator” option.
• Next, type the following command and hit Enter to execute it:

del /f %windir%logscbs*.log

• Restart your computer afterward once the command has been executed. This should end the high disk usage by makecab.exe, if not, proceed to the next given options below.

Option 3 – Uninstall any suspicious programs you’ve installed recently

If you have recently installed some programs on your Windows 10 computer, and since then you’ve experienced high CPU usage brought on by makecab.exe, then you might want to uninstall those programs.

• Tap the Win + R keys to open the Run dialog box
• Then type “appwiz.cpl” in the field and hit Enter to open the Programs and Features in Control Panel.
• From there, look for the suspicious programs you’ve installed, select them and then click on Uninstall to remove them.
• After that, restart your computer and try to install the latest version of the program again. It should work now. If not, proceed to the next available option below.

Option 4 – Try running Disk Cleanup

You might want to run the Disk Cleanup utility as it is a useful tool that could delete temporary and useless files on your computer.

• Tap the Win + R keys to open the Run dialog box and then type “cleanmgr” in the field and hit Enter to open the Disk Cleanup window.
• After that, select the drive you want to clean.
• Now click OK to clean the disk and restart your computer.

Option 5 – Try to run System File Checker scan

System File Checker or SFC is a built-in command utility that helps in restoring corrupted files and missing files. It replaces bad and corrupted system files to good system files. To run the SFC command, follow the steps given below.

• Tap Win + R to launch Run.
• Type in cmd in the field and tap Enter.
• After opening Command Prompt, type in sfc /scannow

The command will start a system scan which will take a few whiles before it finishes. Once it’s done, you could get the following results:

1. Windows Resource Protection did not find any integrity violations.
2. Windows Resource Protection found corrupt files and successfully repaired them.
3. Windows Resource Protection found corrupt files but was unable to fix some of them.

• Restart your PC.

Option 6 – Try scanning your computer using Windows Defender

As mentioned, the high CPU usage of makecab.exe might be caused by some malware or virus in the system and so to eliminate it, you have to scan your computer using security programs like Windows Defender.

• Tap the Win + I keys to open Update & Security.
• Then click on the Windows Security option and open Windows Defender Security Center.
• Next, click on Virus & threat protection > Run a new advanced scan.
• Now make sure that Full Scan is selected from the menu and then click the Scan Now button to get started.

The latest update from Panos Panay on Twitter is including New and redesigned Snipping tool inside Windows 11. From the shared video, we can see that it includes modern Windows 11 UI redesign and it looks and feels like a part of Windows 11. More things that can be seen from the shared video is that it looks like the new snipping tool is a merged version of the old with snip & sketch. It is good to see that it is still possible to capture screen with easier way natively inside Windows 11 but some more functionality would be more welcome I guess. Users were asking for added functions for a long time like adding simple text for example but from shared video, no new features were presented so for some users 3^rd party solutions will still be the way to go. The new and redesigned Snipping tool will roll out with the next update and we will see then about all new features inside it firsthand. Until then, take care.

If you are one of the few users who is still burning CDs and DVDs, you might have come across an error that says, “Medium Speed Error” or “Power Calibration Error”. There are several factors that could cause this error but it’s most likely that the CD/DVD burner wasn’t able to determine the Optimum Power Calibration rate properly. So what is Optimum Power Calibration rate? It is a test that runs before the burning process to regulate the optimal laser power needed to complete the job. And if this process malfunctions, obviously, you won’t be able to burn the content on your CD or DVD. There are also cases when the Power Calibration error pops up for some small issues that have nothing to do with the regulation of laser power. Here are some quick fixes you can try to resolve the Power Calibration error when burning a CD or DVD.

Option 1 – Make sure you’re using good quality CD or DVD

A lot of burning issues stem down to the purchase of low CDs or DVDs to make sure that what you are using has good quality for it is not always a good idea to purchase cheap products as cheap products could also mean cheap quality.

Option 2 – Try burning at lower speeds

If you’re certain the problem is not with the CD or DVD you are using then you can try burning again, this time at lower speeds. There are instances when doing things quickly can end in a disaster such as the “Medium Speed Error” or “Power Calibration Error” you’re getting.  To fix the problem, you have to burn at a slower speed and just take the time to wait until the burning process is done.

Option 3 – Try updating your burning software

It’s always a good idea to check if the burning software you’re using requires an update especially if it’s throwing up “Medium Speed Error” or “Power Calibration Error”. Thus, you need to update your burning software right away and then try to burn your CD or DVD once the update has been completed.

Option 4 – Try cleaning the disk drive

You might want to consider cleaning the disk drive using several tools in the market that is designed to clean the disk drive. These tools work on removing dust particles from the lens which helps a lot in the burning quality. Aside from that, it also helps in reducing errors like “Medium Speed Error” or “Power Calibration Error”. So give this option a try as it might time for a disk drive cleanup.

Option 5 – Try to disable the IMAPI

If none of the options given above worked, you might want to disable the IMAPI or Image Mastering Applications Programming Interface. How? Refer to the steps below.

• Open Control Panel by simply clicking the Start button and then typing “control panel” in the field.
• Control Panel should pop up in the search results. Once you found it, click it to open it.
• Next, select System Security > Administrative Tools and then click Services.
• After that, you’ll have to search for the “IMAPI CD-Burning COM Service” option.
• Then right-click on it and select Properties.
• From there, switch the Startup Type from “Enabled” to “Disabled”.
• Now click on Apply and then restart your PC.

In the Windows ecosystem, MS Surface laptops are among the best laptops on the market, they are regarded as equivalent to Apple MAC laptops but for Windows. Microsoft Fall 2022 Event will be held on October 12th at 10 AM. The event itself will be held right before it kicks off its annual, developer-focused Ignite event in Seattle from that same day through October 14.

This event is the first in-person event that Microsoft has held since the beginning of the pandemic. We expect the launch of the Surface Pro 9 and the Surface Laptop 5, and maybe Surface Studio 3 as well. There are also some rumors about products themselves like choices between an ARM or x86 CPU but nothing is confirmed so far, we can just wait and see.

PrintNightmare vulnerability has been a struggling issue for Microsoft in the past weeks, each time it seems to be addressed and fixed something new popped up and it still had issues. Microsoft finally addressed the issue but with a price. The default behavior of Point and Print is changed. From this fix onward, the Point and Print driver installation and update behavior will require administrator privileges, which should prevent the exploit to the Windows Print Spooler that could be used by malicious individuals to gain administrative privileges in Windows. The drawback of this fix from Microsoft is that non-elevated users may have difficulty adding or updating printers. Microsoft feels that the security risks caused by PrintNightmare are worth the tradeoff, though. If you really want to let non-elevated users add printers, you can follow the instructions in this Microsoft Support article to disable this mitigation with a registry key. However, doing so will expose you to this known vulnerability and isn’t recommend.

As you know, one of the most useful web browsers all over the globe is Google Chrome. However, it is not without flaws as you could encounter errors while using it. One of these errors is the ERR_UNSAFE_PORT error. This kind of error is caused by the data being accessed using a port that isn’t recommended. When you encounter this kind of error in Chrome, you will see the following error message on your screen:

“The webpage is not available, The webpage at <Address> might be temporarily down or it may have moved permanently to a new address. Error code: ERR_UNSAFE_PORT”

In this post, you will be guided on how you can fix the ERR_UNSAFE_PORT error in Google Chrome on your Windows 10 computer. You can try to set allowed ports or reset or reinstall Google Chrome. For more details, refer to the given options below.

Option 1 – Try to set allowed ports

• To get started, open Google Chrome.
• After that, go to the Shortcut tab and type the following after the whole address in the field named Target: --explicitly-allowed-ports=xxx
• It should look like this “C:/Documents and Settings/User/Local Settings/Application Data/Google/Chrome/Applicationchrome.exe --explicitly-allowed-ports=6666”.
• Now click on Apply and click OK to save the changes made.

Option 2 – Reset Chrome

Resetting Chrome can also help you fix the error. This means that you will be restoring its default settings, disabling all the extensions, add-ons, and themes. Aside from that, the content settings will be reset as well and the cookies, cache, and site data will also be deleted. To reset Chrome, here’s what you have to do:

• Open Google Chrome, then tap the Alt + F keys.
• After that, click on Settings.
• Next, scroll down until you see the Advanced option, once you see it, click on it.
• After clicking the Advanced option, go to the “Restore and clean up option and click on the “Restore settings to their original defaults” option to reset Google Chrome.
• Now restart Google Chrome

Option 3 – Try to clean reinstall Chrome

There are instances when programs leave files behind after you’ve uninstalled them and the same thing can happen to Chrome so before you reinstall Chrome, you have to make sure that you have deleted the User Data folder. To do so, refer to the following steps:

• Hit the Win + R keys to open the Run dialog box.
• Next, type “%USERPROFILE%AppDataLocalGoogleChromeUser Data” in the field and hit Enter to open the User Data folder.
• From there, rename the default folder and name it something else, e.g. “Default.old”.
• After that, install Google Chrome again and check if the issue is now fixed.

TPM, also known as Trusted Platform Module, is a specialized chip used for security as well as encryption of users’ private data like Fingerprint, Facial data, and many more. TPM also comes with a Management Console and if you are not able to load the Management Console and you got the “Cannot load Management Console” error instead, read on as this post will guide you in fixing the problem. This type of issue usually happens when you clear or disable the TPM using the settings in the BIOS and so when you run the Trusted Platform Module Management console, you encounter the error. To fix the “Cannot load Management Console” error in your Windows 10 computer, here are some options you should check out.

Option 1 – If TPM is cleared in the BIOS:

If the Trusted Platform Module is cleared in the settings of the BIOS, you have to close and restart the TPM Management console or TPM.msc once again. It could be that the TPM Management has to reload the changes again after you’ve made them which is why you encounter the “Cannot load management console” error.

Option 2 – If TPM is disabled in the BIOS:

If you opted to disable TPM using the BIOS settings or you have turned it off by accident, then you have to enable it back and you have two options to do that – you can either enable TPM from the BIOS or using the Windows PowerShell. For more details, refer to the instructions below.

Enabling TPM from the BIOS:

• You need to first reboot your PC and then go to the BIOS.
• From there, look for TPM under the security options and in case the TPM management option has been disabled or greyed out, refer to the sub-steps given below to make it active again
  • Enable the Admin password in the BIOS.
  • Then go back to the TPM settings and check if the TPM management is already available.
• After that, you should now be able to enable TPM. Remember that it’s always a good idea to have an ADMIN password for your BIOS as it makes sure that no one can change the settings in your computer BIOS and Security level options.

Enable TPM via Windows PowerShell:

• This second option is a lot easier compared to the first one if you have admin privileges. So once you’ve opened the Windows PowerShell with admin privileges, you need to run the following command:
  • $tpm = gwmi -n rootcimv2securitymicrosofttpm win32_tpm
  • $tpm.SetPhysicalPresenceRequest(6)
• After you execute the commands given above, you need to restart your computer.
• Now, once your computer has restarted, you need to accept any BIOS prompts and then check if the “Cannot load management console” error is now fixed.

169 IP address error can stop your computer from connecting to the internet which could be a very frustrating experience. In this guide, we will cover simple but effective tips on how to fix this error so you can continue with internet use.

1. Reconnect your Modem or Router

   Simple and sometimes effective solution, unplug and plug back in modem or router so IP is fetched again, it is very likely that computer will pick right IP address with this stunt.

2. Use built-in Windows Network troubleshooter

   Press ⊞ WINDOWS + X top open secret menu Go to settings Go to Network & Internet Inside click on Network troubleshooter Follow onscreen instructions After the troubleshooter ends reboot your PC

3. Reconfigure IP address

   Press ⊞ WINDOWS + R to open the run dialog Inside run dialog type ncpa.clp and press ENTER Right-click on your network adapter and select properties Uncheck Internet Protocol Version 6 (TCP/IPv6) and click on OK Now press ⊞ WINDOWS + X and click on Command prompt (admin) In command prompt type and after each line press ENTER netsh winsock reset catalog netsh int ip reset reset.log ipconfig /release ipconfig /renew Reboot your computer

4. Restart DHCP client

   Press ⊞ WINDOWS + R to open the run dialog In run dialog type services.msc and click on OK Find DHCP client Right-click on it and choose Restart Reboot PC

5. Reinstall Network Adapter

   Press ⊞ WINDOWS + X to open the windows menu Click on Device Manager Expand Network Adapter and right-click on wireless or ethernet adapter, click on Uninstall device Reboot the computer to automatically reinstall the device driver

6. Reset IP and subnet mask

   Press ⊞ WINDOWS + R to open the run dialog In run dialog type in ncpa.cpl and press OK Right-click on your network adapter and select properties Uncheck Internet Protocol Version 6 (TCP/IPv6) Double click on Internet Protocol Version 4 (TCP/IPv4) Select Use the following IP address and change it to 192.168.0.1 Change Subnet mask to 255.255.255.0 Leave default gateway blank Click OK to save changes