Home » Internet » Step 'Sweeps' FullHouse Virus

Step 'Sweeps' FullHouse Virus

Monday, September 7th, 2009 | Internet, Komputer

Another virus that threatens the computer user is FullHouse virus. The characteristics of this virus is making an extra drive with the name FullHouse Drive.

The virus is made using Visual Basic programming language that in performing its action will create a separate drive on the Desktop, My computer and Control Panel that when opened will display images “Han Ji Eun” beautiful artist in the series Full House.

To clean it, consider the following steps:

Virus-scan files that are in the directory C: RECYCLER with antiviral agents are able to detect this virus very well. Vaksincom using Norman Security Suite.

-After the scan is finished with a virus file delete the file status (defered) means the file will be deleted when windows restart

-Clean button and then click Close at the time Norman Security Suite also will ask the computer to restart

To normalize the re-registry that was created by a virus open Notepad then copy the script below:
[Version]

Signature=”$Chicago$”
Provider=Vaksincom Oyee
[DefaultInstall]
AddReg=UnhookRegKey
DelReg=del
[UnhookRegKey]
HKCR, batfileshellopencommand,,,”””%1″” %*”
HKCR, comfileshellopencommand,,,”””%1″” %*”
HKCR, exefileshellopencommand,,,”””%1″” %*”
HKCR, piffileshellopencommand,,,”””%1″” %*”
HKCR, lnkfileshellopencommand,,,”””%1″” %*”
HKCR, scrfileshellopencommand,,,”””%1″” %*”
HKCU, SoftwareMicrosoftWindowsCurrentVersionExplorerAdvanced,
HKLM, SOFTWAREClassesexefileDefaultIcon,,,””%1″”
HKLM, SOFTWAREClassesexefile,,,”Application”
HKLM, SoftwareCLASSESexefileshellopencommand,,,”””%1″” %*”
HKLM, SoftwareCLASSESregfileshellopencommand,,,”regedit.exe “%1″”

[del]

HKLM, SOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun, Task
Manager
HKCU, SoftwareMicrosoftWindowsCurrentVersionPoliciesExplorerRun, Manager Task
HKCR, exefile, NeverShowExt
HKCR, CLSID{10020D75-0000-0000-C000-000000000000}
HKLM, SOFTWAREClassesCLSID{10020D75-0000-0000-C000-000000000000}

-Save with the name “repair.inf” select Save As Type to All Files

-Run repair.inf with right click and select install

-Delete files created by the virus with the following characteristics:

* Type the file “application”
* Extension “exe”
* Size 168 kb

-To facilitate the process of finding the virus files using “Search Windows”
with the filter *. exe file that has 168 KB size and date modified
dated 7/8/2008

-Then delete “FullHouse Drive” on the Desktop, My Computer and Control
Panel

-Recovery folder on the Flash Disk that has been in Hidden

-To show hidden folders back to the flash. Use
command “attrib” at the command prompt.

* Click “Start”
* Click “Run”
* Type “CMD”, then press “Enter”

-Move the directory to the drive position Flash Disk, say E then type
command E: and press “enter”

-Then type attrib -s -h -r / s / d and then press
“enter”

Tags:

Related Step 'Sweeps' FullHouse Virus

Sariful IT Terhebat "

Bobol Internet Banking terutama KlikBCA “sangatlah mudah”, anda tinggal lihat data transferan yang ada

Xperia X8 - Ponsel Androi

Xperia X8 – Ponsel Android di Bawah Rp2 Juta. Terus memperluas penetrasi Android

Disiplin Waktu

Terlambat 5 menit di suruh pulang, padahal di jalan sedang ada pengecoran jadi

Mengatasi Public Service

Beberapa hari lalu, sahabat blogger saya (Ivan word-sqword) ada yang bertanya tentang web