AntiVirus ch4r15.sys.vbs « Multimedia Company!

AntiVirus ch4r15.sys.vbs

6 06 2008

Klo klian kna virus ch4r15.sys.vbs, copy aj script dibawah ini, tpi sblumnya aktifkan dulu file yang terhiden dengan cara pilih menu Tools > Folder Options, pilih tab View centang Show hidden Files and Folders, Hide extensions for known file types, dan Hide protect operating system files.

kemudian copy script dibawah ini di notepad, dan save dengan nama anvir.inf , extensi dari filenya jangan sampai salah harus .inf , setelah itu klik kanan pada file yang telah di save dan pilih install

CODE :

[Version]
Signature=”$Chicago$”
Provider=Fariskhi

[DefaultInstall]
AddReg=UnhookRegKey
DelReg=del

[UnhookRegKey]
HKCU,Software\Microsoft\Internet Explorer\Main, Window Title,0, “INTERNET EXPLORER”

[del]
HKLM, Software\Microsoft\Windows\CurrentVersion\Run\Ageia”,”"
HKLM, Software\Microsoft\Windows\CurrentVersion\Run\Systemdir”, windowpath & “”
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoFind
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoFolderOptions
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoRun
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegistryTools
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableTaskMgr
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoViewContextMenu
HKLM, Software\Microsoft\Windows\CurrentVersion\Winlogon, LegalNoticeCaption
HKLM, Software\Microsoft\Windows\CurrentVersion\Winlogon, LegalNoticeText
HKLM, Software\Microsoft\Windows\CurrentVersion\Run, Systemdir
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cmd.exe, Debugger
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\install.exe, Debugger
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe, Debugger
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regedit.exe, Debugger
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gpedit.msc, Debugger
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regedt32.exe, Debugger
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RegistryEditor.exe, Debugger
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setup.exe, Debugger
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCMAV.exe, Debugger
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCMAV-CLN.exe, Debugger
HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCMAV-RTP.exe, Debugger

Jika virus yang ada dikomputer masih tetap jalan maka download aja antivirus avast, karena antivirus ini setahu aku bisa mendeteck script pada suatu file, jadi meskipun itu virus lokal masih dapat terdeteksi dengan anti virus ini.

Semoga berhasil . . . .

Tindakan

Information

Tanggal : .:: Juni 6, 2008 ::.
Kategori : VIRUS

Satu tanggapan

9 01 2009: dee (02:26:51) :

saya kena virus ini, uda coba cari pertama tapi gak fungsi. cara kedua juga kayanya gagal. ada cara lain. virus ini bekerja nyerang apa?

Balas

S	S	R	K	J	S	M
				Jul »
						1
2	3	4	5	6	7	8
9	10	11	12	13	14	15
16	17	18	19	20	21	22
23	24	25	26	27	28	29
30

	ijaa di
	adi s di Dota Allstars 6.50b beserta…
	sandy di
	dhilacious di
	dee di AntiVirus ch4r15.sys.vbs
	sin di
	hildaaa di
	heLL di
	rivaldo di
	MuClyst di .:: Profile
	muxlinux di
	khafi di Luama nggak nulis euy!
	sandy di
	Muxlinux di .:: Profile
	yolanda di

Multimedia Company!