Jump to content
qapios

Virus W32.fujacks.e

By qapios, in Utiliti & Sekuriti

Recommended Posts

qapios    0

qapios
Posted

asalammualaikum..sesaper yang tahu nak remove virus nie..diharap dpt bantu saya...virus ni hanya attack program shj..dah byk antivirus yg saya pakai,namun maseh x ada yang mampu membuangnya..harap bantu!!

Share this post

Link to post
Share on other sites

xtreme_paranoid    0

xtreme_paranoid
Posted (edited)

ko pakai AntiVirus pe?

da update lom..?

kaspersky aku tgk blh aper..

yg aku tau nih bukan virus..

worm nih..

Edited by xtreme_paranoid

Share this post

Link to post
Share on other sites

xtreme_paranoid    0

xtreme_paranoid
Posted

worm nih patut da blh buang gune symantec norton..

td aku masuk website die..

da ade worm nih sbelom2 ni..

risk dye pon tulih low jerk..

try install kaspersky latest..

amik kat website die..pakai trial punye

da install update smpi habes..

pastu scan..

tgk camne..

Share this post

Link to post
Share on other sites

xtreme_paranoid    0

xtreme_paranoid
Posted

macam nih ar..

ko zipkan virus tuh..

pastu ko upload kat rapidshare..

amik url/link file tuh dr rapidshare..

bg link/url tuh kat joetbg_x..

suruh die anta kat pihak syarikat AV

kate virus nih x dapat detect oleh Av

camne?

da anta?

Share this post

Link to post
Share on other sites

zareight    7

zareight
Posted

asalammualaikum..sesaper yang tahu nak remove virus nie..diharap dpt bantu saya...virus ni hanya attack program shj..dah byk antivirus yg saya pakai,namun maseh x ada yang mampu membuangnya..harap bantu!!

pastu url die bagi kat aku skali..aku nk try detect virus tu..pm aku eh..

Share this post

Link to post
Share on other sites

qapios    0

qapios
Posted

macam nih ar..

ko zipkan virus tuh..

pastu ko upload kat rapidshare..

amik url/link file tuh dr rapidshare..

bg link/url tuh kat joetbg_x..

suruh die anta kat pihak syarikat AV

kate virus nih x dapat detect oleh Av

camne?

da anta?

lum lg anta..igt nak remove seniri dulu...

Share this post

Link to post
Share on other sites

AnNamir    60

AnNamir
Posted

Upload je la dulu, sambil2 tu leh sape2 kat sini tolong cari cara nak 'selesai'kan 'dia'! aku pun berminat nak 'simpan' virus tuh... hee...

Share this post

Link to post
Share on other sites

xtreme_paranoid    0

xtreme_paranoid
Posted

ko upload dulu bende tuh

nanti yg lain2 blh tolong ko nk ilangkan..

kite kat sini nk gak tolong ko

kat sini ramai yg minat nk tgk n kaji yg ko kate virus tuh..

:)

Share this post

Link to post
Share on other sites

xtreme_paranoid    0

xtreme_paranoid
Posted

1. klik Start > Run.

2. tulih regedit

3. klik OK.

4. pastu pegi sini plak

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run

5. kat panel blah kiri, delete binatang neh:

"svcshare"="%System%\Drivers\spoclsv.exe"

6. kuar..

*nih aku terjumpe kat satu website..

aku terjemahkan..

huhuhuhu

upload ar file yg ko kate virus tuh..

nk gak kaji2

Share this post

Link to post
Share on other sites

Mr.Fahizi    0

Mr.Fahizi
Posted

Technical Details to remove this virus

Just use AVG Anti virus . hopefully updated latest file definition

1. Disable System Restore (Windows Me/XP).

2. Update the virus definitions.

3. Restart PC sambil tu tekan F8 jgn lepas .

4. Masuk dalam '' Safe Mode ''

5. Dah masuk windows , Scan full drive .

6. Delete any values added to the registry.

Share this post

Link to post
Share on other sites

zareight    7

zareight
Posted

Technical Details to remove this virus

Just use AVG Anti virus . hopefully updated latest file definition

1. Disable System Restore (Windows Me/XP).

2. Update the virus definitions.

3. Restart PC sambil tu tekan F8 jgn lepas .

4. Masuk dalam '' Safe Mode ''

5. Dah masuk windows , Scan full drive .

6. Delete any values added to the registry.

try check registry...mane ko dpt virus tu?

aku da search kat google tp camne nk donlod virus tu?

Share this post

Link to post
Share on other sites

matthew.says    0

matthew.says
Posted (edited)

You can send the infected files to your AV vendor yourself, do not pass it to a third party!

Firstly. you have to compile the suspected infected files using an archiving tool like WinRar or WinZip and upload it to http://virusscan.jotti.org . If the virus is detected by the multiAV scanners, WinRar it or WinZip the files again, this time password protect it and email it to your AV vendor(eg. Grisoft - AVG Free : [email protected]) with the password included.

Your AV vendor SHOULD create a new detection update to counter it.

Have a nice day!

Edited by matthew.upm

Share this post

Link to post
Share on other sites

Kira Yamato    0

Kira Yamato
Posted

Aku punye Symantec v10 dpt detect n cleaned worm ni.

But the proplem is the worm still spread dlm network aku... so, PC kt opis aku sentiasa detect worm nie...

possible x aku nk completely remove the virus from my network....

Share this post

Link to post
Share on other sites

Impreza_2004    0

Impreza_2004
Posted

From Sophos;

W32/Fujacks-E

Summary:

Name: W32/Fujacks-E

Type: Virus

How it spreads:

1) Removable storage devices

2) Network shares

3) Infected files

Affected operating systems: Windows

Side effects:

1) Allows others to access the computer

2) Steals information

3) Downloads code from the internet

4) Reduces system security

5) Installs itself in the Registry

Aliases:

1) W32/Fujacks.f

2) Trojan-PSW.Win32.QQRob.kl

3) Win32/Fujacks.H

4) PE_FUJACKS.F-O

Protection available since: 10 January 2007 21:52:44 (GMT)

Detected by: All versions of Sophos Anti-Virus

Included in our products from: February 2007 (4.14)

Description:

W32/Fujacks-E is a prepending virus and worm with backdoor functionality for the Windows platform.

W32/Fujacks-E spreads to other network computers through available network shares and removeable storage devices.

W32/Fujacks-E runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer.

W32/Fujacks-E includes functionality to access the internet and communicate with a remote server via HTTP.

W32/Fujacks-E may change HTML files.

Sophos's anti-virus products include Behavioral Genotypeâ„¢ Protection, which can proactively guard against new threats without requiring an update. Sophos customers have been protected against W32/Fujacks-E (detected as Mal/Packer) since version 4.10.

Advanced:

W32/Fujacks-E is a prepending virus and worm with backdoor functionality for the Windows platform.

W32/Fujacks-E spreads to other network computers through available network shares and removeable storage devices with the filenames GameSetup.exe and setup.exe correspondingly. W32/Fujacks-E also creates the file autorun.inf to ensure that the file setup.exe is executed.

W32/Fujacks-E runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer.

W32/Fujacks-E includes functionality to access the internet and communicate with a remote server via HTTP.

W32/Fujacks-E may change HTML files.

When first run W32/Fujacks-E copies itself to \drivers\spoclsv.exe.

The following registry entry is created to run spoclsv.exe on startup:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run

svcshare

<System>\drivers\spoclsv.exe

The following registry entry is set:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced

\Folder\Hidden\SHOWALL

CheckedValue

0

Sophos's anti-virus products include Behavioral Genotypeâ„¢ Protection, which can proactively guard against new threats without requiring an update. Sophos customers have been protected against W32/Fujacks-E (detected as Mal/Packer) since version 4.10.

Share this post

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
Go To Topic Listing
×
×
  • Create New...