You must Sign In to post a response.
  • Category: Security

    Why I am getting this security message in my PC


    Is the PC giving a security message? Looking out for help online? Get help form experts to understand why such messages come on this page.

    I do online financial transactions through my desktop PC.
    I had installed Kaspersky Internet Security and keep it update always. I am using Google Chrome as browser. That is also kept regularly updated. I also do regular security scans and get notification as 'No threats detected' 'Computer is protected' etc.
    While doing some financial transactions I make use of the 'open in protected browser' by Kaspersky.

    But I regularly get the message "Suspicious Action is blocked'. On going to detailed reports I get the following details:
    'Action - Read memory from other processes'.
    Application-Google Chrome
    Application path - .....\AppData\Local\Google\Chrome\Application\chrome .exe

    Most of the time, after the transaction, I clear the history and use CCleaner also.

    When I do the transactions, I get numerous such messages all same, timed almost every minute.
    I do not know why this message comes.
    Is there any security threat and am I safe for doing the transactions?
  • Answers

    3 Answers found.
  • As far as my knowledge comes It's normal. You can hide these notifications by clicking on the top right corner of notification and choose Don't show this again.
    For further details you can see the following page.
    https://forum.kaspersky.com/index.php?/topic/353772-suspicious-action-blocked-safe-money/

    drrao
    always confident

  • TThis response is marked as DELETED by the admin.

    Yes, you need to close option on the upper right corner then you can go for using anything. I am a research writer and I am a co-founder of 1 Click Dissertation UK Agency. I hope you will resolve this issue in their showing PC.

  • Looks like some genuine click which you are doing during your transaction is considered as something fishy by Kaspersky. It is ok to close this notification and proceed further as long as you don't see any major problem. I would like to suggest another way of opening the chrome browser for safe transactions which is Incognito mode. After. opening the chrome normally on the top right corner you will see 3 dots. If you click on them, you will see the option to open the browser in Incognito mode. A shortcut way to open incognito mode is to press Ctrl + Shift + N on your keyboard if you are using a Windows PC.

    When you use the browser in this mode, it doesn't store your web surfing history, cookies, download history, or login credentials. Many companies and banks recommend their customers using the browser with incognito mode. You might not get the above issue if you use this mode. Please note it does not replace any other safety methods you have but it can give you some level of abstraction only.

    Regards
    Rizwan

  • Turn on the incognito or private browsing mode when doing financial transaction online.

    The path you have attached in your question is .Exe virus usually because of infected by third parties softwares or somewhere corrupted. This kind of. Exe disables things like Task Manager, Regedit, and Folder Options. The virus creates .exe files that mirror your existing files, leading to the virus taking up as much as 50% of your storage space, along with other nasty side effects like slowing down your PC and retrieving financial information including saved passwords, and users credentials.

    To check whether your PC is infected or to remove it, go to CMD and run as an Administrator. Type the following commands one after one.

    1. taskkill /f /t /im "New Folder.exe"

    2. taskkill /f /t /im "SCVVHSOT.exe"

    taskkill /f /t /im "SCVHSOT.exe"

    3. taskkill /f /t /im "scvhosts.exe"

    4. taskkill /f /t /im "hinhem.scr"

    5. taskkill /f /t /im "blastclnnn.exe"

    The second step is to re-enabling the Regedit / registry files along with task manager that has been affected.

    Go to Regedit and add or enable the following.
    1. HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableRegistryTools /t REG_DWORD /d 0 /

    Third step is to enable hidden files and folders. You can go to Control Panel. From here, go to Appearance> Personalization>F older Options> Select View Tab> Advanced Settings> and finally Show Hidden Files >Folders>Drives. Hit OK.

    Fourth step is to delete some files and folders manually. Type this in CMD:

    1. C:\WINDOWS\SCVVHSOT.exe
    2. C:\WINDOWS\SCVHSOT.exe
    3. C:\WINDOWS\hinhem.scr
    4. C:\WINDOWS\system32\SCVHSOT.exe
    5. C:\WINDOWS\system32\blastclnnn.exe
    6. C:\WINDOWS\system32\autorun.ini
    7. C:\Documents and Settings\All
    8. Users\Documents\SCVHSOT.exe

    Fifth step is to run a full regedit, and system scan. Run full scan. It takes a time, which may take 30 to 60 minutes.

    If this doesn't sort out, escalate the thread to Kaspersky Lab or switch to Quick Heal.

    Hackers never learns but always wins!


  • Sign In to post your comments