4/05/2009 04:14:00 AM
7 Tips Discontinue Virus Floods Shortcut
Virus PIF / Starter or better known as the virusshortcut make victims of sorts with many shortcut created by the virus. Its fuss, if virus handle trick this imprecise, then it will come back
Lets we go to stopping the virus with 7 steps.
- Turn off system restore on your computer
- Turn off the process of Wscript file located in C: \ Windows \ System32, with how to use tools such as CProcess, HijackThis or can also use the Task Manager of Windows.
- After switch off process from Wscript. We must delete or renaming of the file, so that's not to be used by the virus.
For notes, If we will rename of the Wscript.Exe with automatic. Therefore copied again at the folder, therefore, we must scan where is another Wscript.exe exist, eventually at C:\Windows\$NtservicepackUninstall$, C:\windows\ServicePackFiles\i386.
As not as another VBS’s , we can subtitute Open with from VBS file become Notepad, this virus having extention MDB its mean is access’s Microsoft file. So Wscript will carry on DATABASE.mdb file pretend its VBS’s File.
- Delete parented file at C:\my document and setting\my documents\database.mdb, that everytime Computer on not loading this file. And don’t forgeted also to open Msconfig, and Disable command to run it.
- Now we will to delete Autorun.INF, Microsoft INF file and thumb.db its trick is “ Click start button,open run then type CMD, move to drive wich will cleared, e.g Drive c:\ therefore we must doing is:
Type C:\del Microsoft.inf/s, this instruction will deleted all file Microsoft.inf at folder in drive c:. while if want’s move to drive stay to substituted by name of the drive exp: D:\del Microsoft.inf/s.
For autorun.inf file “ type c:\del autorun.inf/s/ah/f. instruction will be to deleted autorun.inf file, ( syntax /ah/f ) utilized because that file uses attribute RSHA, also to file thumb.db do it same as.
- To deleted file besides 4 former files, we must scan by search file with ext .lnk its measure 1 kb. On “more advanced option” ensure option “ search system folder” and “ search hidden files and folders” both have to centang.
Be Carefully, not of all shortcut lnk file with size 1 kb is virus. We can differentiate it from icon , size and type file. For shortcut created by virus its icon always utilizes folder icon , fairish 1 kb and get type shortcut, whereas that right folder is no have size and its type is foder file.
- Fix registry already being changed by virus. To fasting registry’s repair process, please copied script bellow above on Notepad and then save as with name Repair.inf start the file by:
- Right click repair.inf
- Install's click
this is script to copied
3/03/2009 10:56:00 AM
What is a computer virus?
|
A virus might corrupt or delete data on your computer, use your e-mail program to spread itself to other computers, or even erase everything on your hard disk. Viruses are most easily spread by attachments in e-mail messages or instant messaging messages. That is why it is essential that you never open e-mail attachments unless you know who it's from and you are expecting it. Viruses can be disguised as attachments of funny images, greeting cards, or audio and video files. Viruses also spread through downloads on the Internet. They can be hidden in illicit software or other files or programs you might download. To help avoid viruses, it's essential that you keep your computer current with the latest updates andantivirus tools, stay informed about recent threats, and that you follow a few basic rules when you surf the Internet, download files, and open attachments. Once a virus is on your computer, its type or the method it used to get there is not as important as removing it and preventing further infection. |
