Kena amvo yah ato W32.Sality.FDC ... kalo bisa matiin system restore..trus scan pake ansav (ansav kalo bisa bentuk zip ato rar karena virus akan langsung menginfeksi..lalu di copy ke lokal baru di unzip ato unrar langsung jalanin bunuh semua antek2 dari file virus induk pake kllermachine)..bagusnya HDD digandeng dengan pc laen yang bersih..kalo ga digandeng..semua restore file virus ada di recycled dan system volume information..susah kan ngapusnya sebab regedit dan system restore ilang...biasakan matikan autorun pada pc untuk mencegah masuknya virus dan mengganti nama msvbms60.dll pada system root(system32)..soalnya itu engine virus lokal.. Anti virus yang bagus itu ya harus update, kaga beratin system yang jalan sama gak serakah memory.
Deddy <[EMAIL PROTECTED]> Sent by: [email protected] 17/11/2008 14:11 Please respond to [email protected] To [email protected] cc Subject Re: [ITCENTER] Virus Autorun.inf Yups saya juga kena mas, foldeer share saya di buka sampe ribuan sampe seharian oegr.exe type filenya game minesware windows semulanya nama filenya wppy.cmd, autorun.inf dan folder resycled klo ada yang mau sample nanti saya upload saya dah coba pake Spyware Doctor, Malwarebytes' Anti-Malware, Avast, AVG, Symantec 9, Lolos semua. isi autorun nya [autorun] open=RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\reg32.exe icon=%SystemRoot%\system32\SHELL32.dll,4 action=Open folder to view files shell\open=Open shell\open\command=RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\reg32.exe shell\open\default=1 gw ada sample virusnya, attch lewat yahoo. lolos dari scan antivirus yahoo. dapet dah hampir 2 mingguan Thank's Deddy http://deddy.it.cx http://www.yuwie.com/yuwie.asp?r=87618 [Non-text portions of this message have been removed] [Non-text portions of this message have been removed] ------------------------------------ -- www.itcenter.or.id - Komunitas Teknologi Informasi Indonesia Gabung, Keluar, Mode Kirim : [EMAIL PROTECTED] Yahoo! Groups Links <*> To visit your group on the web, go to: http://groups.yahoo.com/group/ITCENTER/ <*> Your email settings: Individual Email | Traditional <*> To change settings online go to: http://groups.yahoo.com/group/ITCENTER/join (Yahoo! ID required) <*> To change settings via email: mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] <*> To unsubscribe from this group, send an email to: [EMAIL PROTECTED] <*> Your use of Yahoo! Groups is subject to: http://docs.yahoo.com/info/terms/
