Sunday, September 27, 2009
LIBM BCIT GROUP IN FACEBOOK
Dear LIBM BCIT B 2004 Friends.
We are lunch our friends group in FACEBOOK now . This is open invitation for all LIBM 2004 batch
Come and Join with us.
Thank you.
AKILA FERNANDO (Reg:-30064)
Administrator
LIBM BCIT B GROUP 04
Wednesday, September 23, 2009
The Sasser Worm
- Disconnect your computer from the local area network or Internet
- Terminate the running program
- Open the Windows Task Manager by either pressing CTRL+ALT+DEL, selecting the Processes tab or selecting Task Manager and then the process tab on WinNT/2000/XP machines.
- Locate one of the following programs (depending on variation), click on it and End Task or End Process
avserve.exe
avserve2.exe
skynetave.exe
any process running with the "_up.exe" suffix
- Close Task Manager
Remove the Registry entries
- Click on Start, Run, Regedit
- In the left panel go to
HKEY_LOCAL_MACHINE>Software>Microsoft>Windows>Current Version>Run
- In the right panel, right-click and delete the following entry
"avserve.exe"="%Windir%\avserve.exe"
"avserve2.exe"="%Windir%\avserve2.exe"
"skynetave.exe"= "%Windows%\skynetave.exe"
- Close the Registry Editor
Delete the infected files (for Windows ME and XP remember to turn off System Restore before searching for and deleting these files to remove infected backed up files as well)
- Click Start, point to Find or Search, and then click Files or Folders.
- Make sure that "Look in" is set to (C:\WINDOWS).
- In the "Named" or "Search for..." box, type, or copy and paste, the file names:
avserve.exe
avserve2.exe
skynetave.exe
C:\win2.log - Click Find Now or Search Now.
- Delete the displayed files.
- Empty the Recycle bin
- Click Start, point to Find or Search, and then click Files or Folders.
If you want to Check your PC ......before Attack the Virus.......
Download the
Subscribe to:
Posts (Atom)