Update Build4 telah resmi dirilis dengan penambahan 15 pengenal virus. Bagi Anda pengguna PCMAV 1.3 sangat disarankan segera melakukan update, agar PCMAV Anda dapat mengenali dan membasmi virus lebih banyak lagi. Jadi total tambahan virus sampai Update Build4 kali ini adalah sebanyak 40 virus.
Untuk mendapatkan dan menggunakan update PCMAV ini, pastikan terlebih dahulu PCMAV RealTime Protector tidak sedang aktif. Jika iya, Anda harus menutup aplikasi tersebut terlebih dahulu. Lalu Anda cukup menjalankan PCMAV Cleaner (PCMAV-CLN.exe), tentunya komputer harus dalam keadaan aktif terhubung ke Internet (non-proxy). Fitur GetUpdates dari PCMAV secara otomatis akan memberikan alamat internet yang aktif di mana Anda bisa men-download file update tersebut. Letakkan file hasil download tersebut (PCMAV.vdb) ke dalam folder di mana PCMAV berada. Jika sebelumnya telah terdapat file update yang lama, Anda cukup menimpanya. Dan nanti saat Anda kembali menjalankan PCMAV, ia sudah dalam keadaan kondisi ter-update.
Namun bagi Anda yang ingin mendapatkan file update tersebut secara manual, Anda bisa men-download file-nya melalui beberapa alamat ini: GudangUpload.com, SendSpace.com, atau Badongo.com (mirror).
Tampilan file virus Quick yang menyerupai file video.Quick. Virus berlambangkan mirip file video ini memiliki ukuran tubuh yang cukup kecil, yakni 19.456 bytes, dalam keadaan terkompresi menggunakan UPX. Pada komputer terinfeksi, di root drive system (C:) akan terdapat file induk virus dengan nama seperti ccinfo.exe, readme.txt, version.sys, windriver.exe, stba_cihampelas.3gp.exe, 3gp.sys, dan masih banyak lagi yang lainnya.
Daftar Tambahan Virus PCMAV 1.3 Update Build4:
Autoit.AW
Autoit.AX
Autoit.AY
Autoit.AZ
Autoit.B.ini.B
Autoit.BA
Autoit.BB
Autoit.BC
Autoit.BD
Autoit.BE
Autoply
Autoply.inf
Balik
Boleh.vbs
Boleh.vbs.inf
Explorea.B
Gen.FFE-A
Husa.vbs
Husa.vbs.inf
Infor
Infor.inf
Keith.vbs.C
Ninta
Ninta.inf
Nita
Novi.vbs
Novi.vbs.inf
NowHacked
Officestar
Quick
Scootr
Scootr.ini
Scootr.txt
Smasa
Smasa.ini
Smasa.txt
Valeria
Yadoy
Yadoy.htt
Yadoy.in
Wednesday, June 11, 2008
How to Remove JS.Faizal /virus faizal.js
# Click Start > Run.
# Type regedit
# Click OK.
Note: If the registry editor fails to open the threat may have modified the registry to prevent access to the registry editor. Security Response has developed a tool to resolve this problem. Download and run this tool, and then continue with the removal.
# Navigate to and delete the following registry entries:
* HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\"faizal" = "wscript.exe C:\WINDOWS\system32\faizal.js"
* HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WinLogon\"LegalNoticeCaption" = "FAIZAL"
* HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WinLogon\"LegalNoticetext" = "You have been infected by FAIZAL virus"
* HKEY_ALL_USERS\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoClose\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRun\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives\"ShowSuperHidden" = "0"
# Restore the following registry entry, if necessary:
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Window Title" = "faizal"
# Exit the Registry Editor.
Note: If the risk creates or modifies registry subkeys or entries under HKEY_CURRENT_USER, it is possible that it created them for every user on the compromised computer. To ensure that all registry subkeys or entries are removed or restored, log on using each user account and check for any HKEY_CURRENT_USER items listed above.
# Type regedit
# Click OK.
Note: If the registry editor fails to open the threat may have modified the registry to prevent access to the registry editor. Security Response has developed a tool to resolve this problem. Download and run this tool, and then continue with the removal.
# Navigate to and delete the following registry entries:
* HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\"faizal" = "wscript.exe C:\WINDOWS\system32\faizal.js"
* HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WinLogon\"LegalNoticeCaption" = "FAIZAL"
* HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WinLogon\"LegalNoticetext" = "You have been infected by FAIZAL virus"
* HKEY_ALL_USERS\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoClose\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRun\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives\"ShowSuperHidden" = "0"
# Restore the following registry entry, if necessary:
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Window Title" = "faizal"
# Exit the Registry Editor.
Note: If the risk creates or modifies registry subkeys or entries under HKEY_CURRENT_USER, it is possible that it created them for every user on the compromised computer. To ensure that all registry subkeys or entries are removed or restored, log on using each user account and check for any HKEY_CURRENT_USER items listed above.
How to remove Funny UST Scandal.avi.exe Virus
After receiving many complaints from people’s about this virus, I finally decided to guide the users about the removal of this virus. Some of the problems caused by this virus are:
1. Show Hidden Files and Folders not working
2. My Computer Drives open another explorer window
3. When you run a program, just in 2 or 3 minutes the program dissappears (Actually runs in background but you can not see its window in foreground)
Removal of this Virus
download
1. Show Hidden Files and Folders not working
2. My Computer Drives open another explorer window
3. When you run a program, just in 2 or 3 minutes the program dissappears (Actually runs in background but you can not see its window in foreground)
Removal of this Virus
download
New Folder.exe Virus Removal Tool
Virus Infections
This virus affects your system by
Disabling Task Manager
Disabling Registry Editor
Creates a startup entry to start upon system start and
Creates its own exe files in Shared Documents folder which appear like ordinary folders.
Disables Folder Options
Uses your 50% or more processor
You can see that the folders in Shared Documents have an exe extension If you have unchecked Hide extensions for known file types in Folder Options
New Folder.exe Virus Removal Tool
Download Link
This virus affects your system by
Disabling Task Manager
Disabling Registry Editor
Creates a startup entry to start upon system start and
Creates its own exe files in Shared Documents folder which appear like ordinary folders.
Disables Folder Options
Uses your 50% or more processor
You can see that the folders in Shared Documents have an exe extension If you have unchecked Hide extensions for known file types in Folder Options
New Folder.exe Virus Removal Tool
Download Link
Smart Anti-Virus 1.2
Before using this product you should know that it is not a complete Anti-Virus solution. You should can not apply it for disinfection of all type of viruses
It is only made for the purpose of removing some particular viruses and their after effects. The removal of after effects of the viruses is a feature that is unique to this product.
After effects include disabling of Task Manager,Registry Editor etc.
Virus removed by this product are:
Virus.Win32.Agent.aw.a
Virus.Win32.AutoIt.a.a
Virus.Win32.AutoRun.abt.a
im.worm.win32.sohanad.bm.a
im.worm.win32.sohanad.t.a
Trojan.Win32.Agent.abt.aTrojan-Downloader.Win32.AutoIt.aa.a
Trojan-Downloader.Win32.AutoIt.q.a
Trojan-PSW.Win32.OnLineGames.mgw.com.a
Trojan-PSW.Win32.OnLineGames.pno.a.com
Virus.Win32.AutoRun.ajn.com
Now with faster scanning Algorithm. Now scanning a folder will take seconds.
Some more changes include History, EULA,Disclaimer, Newer Version Check
Smart Anti-Virus 1.2
Download
It is only made for the purpose of removing some particular viruses and their after effects. The removal of after effects of the viruses is a feature that is unique to this product.
After effects include disabling of Task Manager,Registry Editor etc.
Virus removed by this product are:
Virus.Win32.Agent.aw.a
Virus.Win32.AutoIt.a.a
Virus.Win32.AutoRun.abt.a
im.worm.win32.sohanad.bm.a
im.worm.win32.sohanad.t.a
Trojan.Win32.Agent.abt.aTrojan-Downloader.Win32.AutoIt.aa.a
Trojan-Downloader.Win32.AutoIt.q.a
Trojan-PSW.Win32.OnLineGames.mgw.com.a
Trojan-PSW.Win32.OnLineGames.pno.a.com
Virus.Win32.AutoRun.ajn.com
Now with faster scanning Algorithm. Now scanning a folder will take seconds.
Some more changes include History, EULA,Disclaimer, Newer Version Check
Smart Anti-Virus 1.2
Download
top removal list
U_FunnyUSTScandalVirusRemover.rar (VIRUS U FUNNY DARI YM)
Ravmon_Removal_Tool_3.2.rar
Newfolder.exe_Removal_Tool.rar
kavo_killer.zip
KillFlash1.0.zip
Ravmon_Removal_Tool_3.2.rar
Newfolder.exe_Removal_Tool.rar
kavo_killer.zip
KillFlash1.0.zip
Subscribe to:
Posts (Atom)