Master Files

Remove W32/SmallTroj.VPCG

This is a new stupid virus/trojan that will redirected all your traffic to google.com (209.85.225.99) infected my client on 01-01-2010, This virus was made using visual basic with size around 212-233KB. If active it has another supported files with random size. How to know if you’re infected? It’s very easy, if you browsing on internet or opening antivirus website then your page always redirected to google website that mean you’re infected by this virus. Master Files When this virus active it will created some master files and downloading some another supported files from internet. It will spreading files in different… Read More »Remove W32/SmallTroj.VPCG

Remove GoldenGhost Virus W32/Agent.GYMR

Damn those all virus maker, they will never stop make our world better. Hey for you all virus maker out there get a job and stop harassing people! 😛 To detect if your computer has been infected by this virus:

1. You will get error message “16 bit MS-DOS Subsystem” when you start up your computer.

16-bit-ms-dos.JPG

2. Virus will change computer owner and organization become:

RegisteredOrganization = GoldenGhost.Inc
RegisteredOwner = GoldenGhost

computer-properties.JPG

3. When you booting you will see option -= GoldenGhost Was Here =-

xp-booting.JPG

This virus has been made and compiled using visual basic,  compressed with UPX, virus size around 1,312 KB. To trick some newbie out there this virus will associated as windows media player files, Actually… with .exe extension.

Master Files
Virus will create master files on
%SystemRoot%\%folder%\%file%.exe (random)
%SystemRoot%\system32\%folder%\%file%.exe (random)
Blocking Windows Function
Disable function “pasteâ€
Disable run
Disable Searh
Disable FolderOptions
Disable menu Recent Documents
Disable right click
Disable CMD
Disable RegistryTools
Disable TaskMgr
Cannot show hidden files
Deleted antivirus Programs

This virus will try to deleted some antivirus programs like Norman Virus Control, kaspersky dan McAfee.

Read More »Remove GoldenGhost Virus W32/Agent.GYMR

RELATED SEARCH TERMS: