Ramnit Virus and How to Cope

The characteristics of a virus ramnit the most visible are:

1. Watermark.exe file located at: C: \ Program Files \ Microsoft. And this virus will spread into namaacak.exe

2. This virus attacks the flash, create a shortcut show 4, 1 recycler and autorun.inf files

3. Each drive if exposed to this virus will be made autorun.inf

Jump:

Tools and materials:

1. Unlocker or can also use fileassasin please download here, which serves to delete force.

4. SmadAV and Anti-virus updates (Kaspersky / norman / Dr.Web).

How to find it

Set folder options> view>

show hidden for known file types (check this section)

Hidden extension for hidden files & folders (uncheck if you have any questions click yes / ok)

Hide protected hidden files (uncheck if you have any questions click yes / ok)

Turn off autorun via start> run or could with Windows + R and typing gpedit.msc at Computer Configuration> Administrative Templates> System 2x click on the "Turn off autoplay" enable and click below click on the All drives and do the same on the user configuration (the Windows 7 on computer configuration and user configuration: Administrative Templates> Windows components> AutoPlay Policies> 2x click on the "Turn off autoplay" click enable)

Turn off access to the System Volume Information and Recycle every Hard drive. Right-click on System Volume Information on drive C. Click the Sharing And Security on the security tab click advanced and remove centangan the option below. Click ok. If there is a warning just click ok. ok and finished. Do it to recycle and on the other drive

Temuakn parent virus with a combination of windows + f (search) specify the drive to search its files watermark, on the advance check hidden files & folders. Enter search words its "watermark" (without the quotes), search and file watermark is found. (On windows seven straight just type "watermark" without the quotes)

In Windows XP, look at C: \ program files \ microsoft \ right click the file and select Unlocker watermark.

Besides in those folders still have 6 more places, but which must first delete is in C: \ program files \ microsoft \ Watermark.exe because the virus went from there. File watermark among others also available on:

C: \ Program Files \ Common Files \ Microsoft \ Watermark.exe

C: \ Documents and Settings \% UsernamePC% \ Microsoft \ Watermark.exe

C: \ Documents and Settings \% UsernamePC% \ Application Data \ Microsoft \ Watermark.exe

C: \ WINDOWS \ system32 \ Microsoft \ Watermark.exe

C: \ WINDOWS \ Microsoft \ Watermark.exe

C: \ windows \ temp \ microsoft \ Watermark.exe

All files are watermark.exe please delete with Unlocker or fileassasin force.

After the delete, please create a file called Microsoft (without extension format) in to 7 sections. So that the virus can not menduplikatkan his watermark on some of those goals. Also, delete the file and make a well dmlconf.dat dmlconf.dat files (text document) in C: \ WINDOWS \ system32. all files in read-only settings.

Then open regedit in the Run.

Find HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon

userinit right click then select Modify and change c: \ program files \ microsoft \ watermark.exe with C: \ Windows \ system32 \ userinit.exe, (use a comma, *. exe,.)

Finishing, install and scan your computer with anivirus updates, as well as scan and repair registry using smadav all.

A little extra:

1. Ramnit not infect the file size above 1 MB.

2. Before the virus completely cleaned, Reinstall windows are not the solution, because the virus will come back again.

3. Use Kaspersky or Norman Antivirus, recommended by Kaspersky that features Disinfection.

4. Sacan flash disk with smadav, to get the autorun.inf folder, in which there is a folder con, aux, and nul.

5. Always backup important data to CD / DVD, because we can not predict what the virus is more to come.

6. Quick way to clean, scan the computer with Kaspersky Update. Once completed, some programs may not run and it's time to reinstall. : D

Rumble-Seat ramnit:

Transmission of the stick:

* Copy of Shortcut to (1). Lnk

* Copy of Shortcut to (2). Lnk

* Copy of Shortcut to (3). Lnk

* Copy of Shortcut to (4). Lnk

The file is called:

* \ RECYCLER \ * \ .* CPL

* \ RECYCLER \ * \ .* EXE

Random Call in:

What we can sample in RECYCLER Folder

* \ RECYCLER \ * \ AHjwMBNo.cpl

* \ RECYCLER \ * \ AkNMFCRL.cpl

* \ RECYCLER \ * \ aNDaUKNA.exe

* \ RECYCLER \ * \ cLPVJkpK.cpl

* \ RECYCLER \ * \ CwDUrJdB.cpl

* \ RECYCLER \ * \ dagwlQkE.cpl

* \ RECYCLER \ * \ drAVBwMZ.cpl

* \ RECYCLER \ * \ eaMmSQoX.cpl

* \ RECYCLER \ * \ fZpjyPPy.cpl

* \ RECYCLER \ * \ geWjkwZi.cpl

* \ RECYCLER \ * \ IEtRdrbh.cpl

* \ RECYCLER \ * \ IHaGrBHY.cpl

* \ RECYCLER \ * \ LKcPsJXH.cpl

* \ RECYCLER \ * \ LndIcoXP.cpl

* \ RECYCLER \ * \ lrpwohKp.cpl

* \ RECYCLER \ * \ lupXyAAw.cpl

* \ RECYCLER \ * \ LyVlnZdA.cpl

* \ RECYCLER \ * \ lZevWmcg.cpl

* \ RECYCLER \ * \ mafCbUPO.cpl

* \ RECYCLER \ * \ mGbrWbij.cpl

* \ RECYCLER \ * \ mQSMHcww.cpl

* \ RECYCLER \ * \ MvcNinTi.cpl

* \ RECYCLER \ * \ ndTjaxyh.cpl

* \ RECYCLER \ * \ nmBWLrXh.cpl

* \ RECYCLER \ * \ NuhOEyMD.cpl

* \ RECYCLER \ * \ nWALofnr.cpl

* \ RECYCLER \ * \ OaGOvJeG.cpl

* \ RECYCLER \ * \ OMEGJQcl.cpl

* \ RECYCLER \ * \ OVjsftsa.cpl

* \ RECYCLER \ * \ pCUOOaHt.cpl

* \ RECYCLER \ * \ PpXJOkIr.cpl

* \ RECYCLER \ * \ pQPlgwMY.cpl

* \ RECYCLER \ * \ pROfvClT.cpl

* \ RECYCLER \ * \ QcnlZQeZ.cpl

* \ RECYCLER \ * \ qxfhTIFG.exe

* \ RECYCLER \ * \ RsrsKfla.cpl

* \ RECYCLER \ * \ ryrrcqOx.cpl

* \ RECYCLER \ * \ Tjlcctlt.cpl

* \ RECYCLER \ * \ UvsgiOyE.cpl

* \ RECYCLER \ * \ vNKreBrS.cpl

* \ RECYCLER \ * \ vxscVUns.cpl

* \ RECYCLER \ * \ WYtPelOt.exe

* \ RECYCLER \ * \ XdmGZjNi.cpl

* \ RECYCLER \ * \ xTdEispB.cpl

* \ RECYCLER \ * \ ZcgiwHoK.cpl

* \ RECYCLER \ * \ ZeXsqRJZ.cpl

* \ RECYCLER \ * \ pvceZJVj.exe

* \ RECYCLER \ * \ SHZsXAXH.exe

* \ RECYCLER \ * \ tGDbxZoP.exe

* \ RECYCLER \ * \ tLwKdSvE.exe

* \ RECYCLER \ * \ CBToNhJS.exe

* \ RECYCLER \ * \ hrCXBaSu.cpl

* \ RECYCLER \ * \ iLGrGpyu.cpl

* \ RECYCLER \ * \ klJUCocY.exe

* \ RECYCLER \ * \ phQYFQck.exe

* \ RECYCLER \ * \ PWwgkNPH.exe

* \ RECYCLER \ * \ qiFGArit.cpl

* \ RECYCLER \ * \ rRdTUqAp.cpl

* \ RECYCLER \ * \ UdmvVDOB.cpl

* \ RECYCLER \ * \ unEglHbj.exe

Here is the alias of viruses / malware:

* Win-Trojan/Starter.3584.F (AhnLab)

* Trojan.Win32.Starter.yy (Kaspersky)

* W32/Runner.NZ (Norman)

* Trojan.Ramnit! IQNQL6zS3w0 (VirusBuster)

* TR / Starter.Y (Avira)

* Win32/Ramnit.H (CA)

* Trojan.Starter.1591 (Dr.Web)

* Win32/Ramnit.F (ESET)

* Trojan.Win32.Ramnit (Ikarus)

* W32/Ramnit.a (McAfee)

* Trj / Starter.G (Panda)

* TROJ_STARTER.SM (Trend Micro)

For users of Windows 7, the virus does not make Watermark.exe

Read More..

Best Antivirus 2011

Those thinking about the best antivirus (2011) software can consider buying 'Norton AntiVirus' or 'AVG Antivirus'. This article centers on the best antivirus software 2011.

Antivirus software has become a very important requirement and a standard feature in any computer. This software is all the more essential if the computer is connected to the web or is normally used for data transfer with external storage devices. If you want utmost protection from viruses and other harmful programs, it is suggested that you go in for a good licensed version of the application instead of using its trial copy from the web for free. Remember that purchased versions always do come with reliability. Since there are many so called best antivirus available on the web and in computer shops, users get confused as to which is the most suitable alternative. Let us have a look at the best antivirus (2011) software, available for use.

List of Best Antivirus (2011) SoftwareNorton AntiVirus 2011 Norton AntiVirus software has received many awards and is famous for being the best antivirus application among PC users. The latest version offers overlapping protection that checks for virus and other inappropriate applications. Other features include bot detection, rootkit detection, and Norton bootable recovery tool. This antivirus software is available for about $40 for a year's protection.

AVG Antivirus 2011 This application is believed to be the best antivirus for Windows XP or Mac. It mainly consists of the AVG LinkScanner which displays any untrusted links, and the AVG Surf-Shield that detects harmful websites. There are many other advanced technologies incorporated in the 2011 version which provides maximum PC protection. A year's protection on one PC is available for about $35.

BitDefender Antivirus The demo version of this product is one of the best free antivirus (2011) applications available. The best feature of this antivirus software is the 'Performance Optimizer' which helps the user in knowing which all running apps are slowing down the system. It also includes 'Smarthelp' which lets the user create customized warnings and suggestions for satisfactory performance. You may have to be pay around $60 for a one-year pack that can run on one system.

Kaspersky Anti-Virus 2011 If you are thinking about the best antivirus for netbook, this is a suitable option. This antivirus tool does the job of protecting the system against attacks of viruses, spyware, and malware. It is one of the easiest antivirus applications; offering users the freedom to customize software components for scans, changing security features, and playing with the software appearance. This application is available for an affordable $40.

Webroot AntiVirus Webroot AntiVirus with Spy Sweeper is a simple to use antivirus software program. The Spy Sweeper is a feature which deals exhaustively with adwares and pop-ups. The 'gamer mode' feature lets you play games full screen, without pop-up messages from the antivirus tool. A good thing is that it majorly runs without the need for the user's attention. This is a decently priced application, with just around $30.

ESET Nod32 Antivirus 4 Users searching for a reliable and easy antivirus software can go in for the ESET Nod32 Antivirus 4. It incorporates 'heuristic technology' which helps in detection of new computer viruses, and the 'ThreatSense' feature that renders protection from malware. The approximate price of this product is believed to be $40. It is also available for a 30-day trial. It has been rated one of the fastest and best antivirus software in the market. These are some of the best antivirus (2011) applications that you can go in for. It is a good idea to first download the trial version of the antivirus software, try its functionality, and then purchase the licensed version if you want. Also remember that free versions will not provide protection as expected. The best antivirus for Mac is believed to be the 'Kaspersky Anti-Virus 2011 for Mac' at $60. Choose wisely and keep your system safe!

source

Read More..