diet virus shortcut usb
TRANSCRIPT
Vn y l do my tnh ca bn b nhim vr ny nn bn qut vr USB, xa file copy of... , xa trong RECYCLED... hay format USB th khng gii quyt c vn . My ang ci antivirus NOD32 v3 qut a cha windows th thy vr ny nhng khng lm g c. +Cch 1: khi ng my bng CD hiren's boot hay tng t, vo: C:\Documents and Settings\userangDng\Start Menu\Programs\Startup xa file.exe vo key sau s thy ni du file t hai: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "Userinit"="C:\\WINDOWS\\userinit.exe,C:\\Prog ram Files\\RGBvWKra\\mtnisiqo.exe" ch : -Nu trong windows b virus ny th 2 files ny tng hnh, bn khng thy c n d dng dir /a hay show hidden file, show system file. Dng attrib s thy file ny nhng khng xa chng c. -Trong USB disk ngoi nhng file nh autorun.inf. Copy of Shortcut to (2).lnk ... th trong th mc Recycled c nhiu th mc l, bn trong c nhiu file.exe ca virus ny. -file mtnisiqo.exe s c tn khc nhau mi my, ng tm tn ny s khng thy, m nhn vo key "Userinit"=.... trn my mnh s thy tn file v th mc. +Cch 2: khng dng CD: Mi khi ng my, vo task manager, bn s thy 2 task ging nhau nh firefox.exe hay iexplorer.exe hay opera.exe hay chrome.exe ... d bn mi khi ng my cha vo web no c. bn end process 2 ci ny. Vo key sau: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "Userinit"="C:\\WINDOWS\\userinit.exe,C:\\Prog ram Files\\RGBvWKra\\mtnisiqo.exe" xa phn ,C:\\Program Files\\RGBvWKra\\mtnisiqo.exe khi ng li my, vo safe mode. lc ny 2 files ny s l din, bn xa n i l xong: C:\Documents and Settings\userangDng\Start Menu\Programs\Startup\mtnisiqo.exe C:\Program Files\RGBvWKra\mtnisiqo.exe Ch : file mtnisiqo.exe s c tn khc nhau mi my, ng tm tn ny s khng thy, m nhn vo key "Userinit"=.... trn my mnh s thy tn file v th mc. trn y l 2 cch n gin m hiu qu, cn nhng cch khc nh ci phn mm dit vr mnh + update, boot bng CD mini windows ri chy phn mm qut vr... nhng mnh thch t tay mnh tm thy ri khng ch ri xa chng vui hn phi khng cc bn Loi ny ch yu ly lan qua USB. Khi cm USB vo mt my nhim loi virus ny, bt k my tnh tt ch autorun hay bn khng click trc tip vo a th virus vn "x" USB ca bn ch trong vi giy. N s t ng n cc file, folder c trong USB v t ng to cc shortcut c tn nh vy, vi cc ICON bt k ca windows v t ng a n vo trong USB ca bn (nm trong th mc n vi tn rt di , vd
fjfkjslkdjfkshjroiweoihwjfhkwjehfuiwefhniwefhi). ng dn ca cc shortcut ny l ng dn kp, ngha l va dn vi virus trong USB va dn n cc folder, file tht. Nn khi click vo s va chy virus va hin folder hoc file m bn cn. Cc tc v thng thng b kha Windows xp, windows 7, vista u b virus ny "x" nh nhau. khng loi tr HDH windows no Cch khc phc Mun loi b c virus ny th my ca bn phi qut sch hon ton, nu st 1 con th vn b nh c. Hin ti mnh cha bit c chng trnh no chuyn khc phc tnh trng ny. Nu bn ang dng mt chng trnh no , phi m bo rng chng trnh dit virus ca bn c s d liu phi cp nht mi nht. Ri qut ton b h thng. Nu ang b nhim virus ny m bn ci chng trnh dit virus khc th hu ht u ci khng c v con virus ny rt thng minh, c th chng hu ht cc chng trnh dit virus hin nay. Mnh khuyn bn nn ci Kaspersky remove tool 9.x qut ton b h thng (nn chy ch safe mode). ri mi lm cc vic tip theo. Khi bn t tin rng my bn sch virus, bn phi khc phc cc s c do virus gy ra i vi my tnh cng nh USB (USB b n folder, my tnh khng chy c task manager, khng thy folder option...). Mnh khuyn nn dng Fixauto fix li ( phn mm ny ting vit, fix n folder trong USB, fix cc li ca h thng nh nu trn), hoc dng RRT fix (RRT c tch hp trong Hiren't). Kinh nghim: ng bao gi m USB bng cch double click, bn dng explorer nha...
j mnh cng va hi thng bn thng trc nhng cha th nghim nn cng khng
chc l c dng c khng hj` . u tin bn ti phn mm ny:
http://www.pcgu....aspx
Ti xong bn kch hot ri dnh du check vo ht cc c quyn check ri bm
Remove > OK > Khi ng li my tnh. Cc thit lp v Internet, Folder
Option c gii quyt.
Tip theo, bn ti phn mm ny v: http://www.pcgu...b.exe
Ti xong bn cng kch hot, bm Chn a, dn n D > bm Ok, ch cho n d v
hin ra cc file n. Lm li thao tc vi E, F v USB nu c.
Cc file b virus n i c hin li.
Thao tc k cht:
- Bn vo Folder Option > vo th View > chn Show Hidden file and
folder > xa du check ca Hide protected operation system files
> OK
- Bn vo Start > Search > For File or Folders
Chn All File and Folders > g ch fsdfdfds...vo All part of the
file name, bm vo More advance option > check vo Search Hidden
file and Folder > bm nt Search. Ch tm kim xong, c bao nhiu file
hin ra vi tn fsdfdfds... th bn bi en xa ht khng thng tic. Nu bn cn
thy mt tn file no kh nghi khc bn cng c th dng cch ny tm v xa.
Cui cng:
- Vo Start > RUN: g lnh regedit ri
Enter > bm F3, nhp chnh xc fsdfdfds... vo tm kim ri Enter, gp
kha no c ng dn chnh xc nh trn th bn delete n. Bm tip F3 tm v lp li
thao tc sa cho n khi tm ht trong regedit. CH : Trc khi thc hin thao
tc ny bn phi backup nh :file->export-> g tn mong mun v save.
phng trng hp Win b li cn c ci m khi phc.
- Vo Start > RUN: g lnh msconfig > vo th Startup, nu thy kh
no c tn fsdfdfds... th xa du check ca n v enter>enter. khi ng li
my tnh .
chc bn thnh cng nh !