virus list

samok.vbs virus reviews and removal tool

2009-06-30T02:06:00.000-07:00

“Madforelmo!”, you can view this at windows taskbar when you are infected with samok.vbs malware. This is a variant of sowar.vbs where your task manager and folder options where disabled plus no more run command and registry editing isdisabled.

You will be annoyed when this malware changed your “Open” command in the right click menu to “b-b2g” and “Explore” command to “Owned” when you right click a drive or folder.

Registry Entries:

The newly created Registry Values are:

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shell\explore]
- (Default) = “Owned!”
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shell\open]
- (Default) = “b-b2g”
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
- autoMe = “wscript.exe “%Windir%\samok.vbs”"

The best way in deleting this virus is through manual way. Just download "Regseeker" software. This software can open registry in a different way. It does searches on your registry, making you to locate those files created by the virus. If you found ( Madforelmo, samok.vbs, b-b2g, Owned ) just delete this to your registry and you're done!

Here's a link from a site, download Regseeker
here : download samok.vbs remover

new folder virus

2009-06-30T01:37:00.000-07:00

The symptoms are:
1: A ''New Folder'' appears in most folders.
- Actually, it's not a folder, it's an .exe file.
2: Many of my USBs, memory cards etc. also have an .exe folder. Which upon clicking, shows no response.

This disables "task manager", the worst, it lessen the disk space of your drive and even your flash drives.

You'll see this folder as ".exe" file.

Here's a link from a site, try to remove those annoying new folder viruses by running this program.

New folder virus remover

brontok virus

2009-06-29T22:14:00.000-07:00

Brontok Virus came from Indonesia. It arrives as an attachment of e-mail named kangen.exe ("kangen" word itself means "I miss you so much"). When Brontok is first run, it copies itself to the user's application data directory. It then sets itself to start up with Windows, by creating a registry entry in the HKLM\Software\Microsoft\Windows\CurrentVersion\Run registry key. It disables the Windows Registry Editor (regedit.exe)and modifies Windows Explorer settings. It removes the option of "Folder Options" in the Tools menu so that the hidden files, where it is concealed, are not easily accessible to the user. It also turns off Windows firewall. In some variants, when a window is found containing certain strings (such as "application data") in the window title, the computer reboots. User frustration also occurs when an address typed into Windows Explorer is blanked out before completion. Using its own mailing engine, it sends itself to email addresses it finds on the computer, even faking the own user's email address as the sender. The computer also restarts when trying to open DOS window (Command Prompt) in Windows and prevents user from downloading files. It also pop ups the default Web browser and loads a web page (HTML) which is located in the "My Pictures" (or on Windows Vista, "Pictures") folder. It create .exe files in folders usually named as folder itself (..\documents\documents.exe)includes all mapped network drives.

Other names for this worm include: W32/Rontokbro.gen@MM, W32.Rontokbro@mm, BackDoor.Generic.1138, W32/Korbo-B, Worm/Brontok.a, Win32.Brontok.A@mm, Worm.Mytob.GH, W32/Brontok.C.worm, and Win32/Brontok.E, W32.Rontokbro.D@mm., I-Worm.VB.DV

Just got this software from a site. Try this tool to remove Brontok virus. It works!

-> DOWNLOAD : brontok virus remover

Taga Lipa Virus ( Internet Explorer )

2009-06-29T20:52:00.000-07:00

If you got hit by this virus, you will encounter the following:

The words “TAGA LIPA ARE” on your Internet Explorer title bar
Inability to change your IE7 homepage
Inability to double click to open any of your disc drives (this includes removables, but you can open them in Windows Explorer)

This virus is so annoying! There's a quick way of removing this virus, rather than removing it manualy on your registry. Just download the software "NOOB KILLER" as i give you the link below, i'll give you instructions on how to remove this virus.

Here's a screenshot for "NOOB KILLER" tool.

DOWNLOAD : Noob Killer!

Noob Killer is a small tool designed to easily rid common worms and viruses, it has many useful tools that would help users and administrators get back control and clean their PCÂ´s/Workstations. Once you download this tool, it is in zip file. Just right click on it and extract this file for you to use this software.