Jump to content
TJ-Ariff

Virus Jambanmuv2

Recommended Posts

Salam semua,

satu virus yang saya temui semalam yang bernama JAMBANMUV2...

Kebanyakan anti virus tidak dapat kesan. AVG Free terus curroupt...

Kesan nya pada sistem :

Folder option - Tiada

Control panel di padam

membuat folder .exe ( macam brontok)

mengujudkan autorun.inf pada boot

command prompt disable

config tidak dapat dijalankan.

pc jadi sangat lembab.

Jika ada sesiapa yang menemui virus ini, harap kongsikan cara untuk menyelesaikan nya...

Anti virus yang dicuba :

Spyware doctor - Tiada kesan

Adware - Tiada kesan

AVG Free - Tidak boleh scan c drive

Portable AV - kesan autorun.inf dan Reymon - delete - tetapi masih ada virus tersebut..

Setiap anti virus yang saya install akan rosak (corroupt)

Wassalam...

Share this post


Link to post
Share on other sites

Salam semua,

satu virus yang saya temui semalam yang bernama JAMBANMUV2...

Kebanyakan anti virus tidak dapat kesan. AVG Free terus curroupt...

Kesan nya pada sistem :

Folder option - Tiada

Control panel di padam

membuat folder .exe ( macam brontok)

mengujudkan autorun.inf pada boot

command prompt disable

config tidak dapat dijalankan.

pc jadi sangat lembab.

Jika ada sesiapa yang menemui virus ini, harap kongsikan cara untuk menyelesaikan nya...

Anti virus yang dicuba :

Spyware doctor - Tiada kesan

Adware - Tiada kesan

AVG Free - Tidak boleh scan c drive

Portable AV - kesan autorun.inf dan Reymon - delete - tetapi masih ada virus tersebut..

Setiap anti virus yang saya install akan rosak (corroupt)

Wassalam...

Wah...virus baru erk

Sape yang cipta ni? ko cipta ker?

Maksud ko dah try sume tu termasuk Kaspersky & NOD32 ker?

Share this post


Link to post
Share on other sites

Virus yang ni version baru jugak ke Bro TJ ?

Cuba scan guna Geek Remover dulu.

Share this post


Link to post
Share on other sites

hehehe bukan tu varians lama ka??aku rasa diperbaharui...aku suggest guna antivir...mesti blh punya...update dulu n then scan dlm safe mode...guna hijack pun blh kalau reti guna...dlm folder system32 ada virus tu kena buang manual la...

Share this post


Link to post
Share on other sites

satu virus yang saya temui semalam yang bernama JAMBANMUV2...

JAMBANMUv2 ni maknanya version ke 2 la kot.. :unsure:

sblum ni dah ada virus jambanmu.com, jambanmu die die die....

ish sapa la yg suka sgt buat virus ni...

siap bleh men'corrupt'kan av..

agaknya pembuat virus ni pkcik cleaner kot... :lol:

Share this post


Link to post
Share on other sites

JAMBANMUv2 ni maknanya version ke 2 la kot.. :unsure:

sblum ni dah ada virus jambanmu.com, jambanmu die die die....

ish sapa la yg suka sgt buat virus ni...

siap bleh men'corrupt'kan av..

agaknya pembuat virus ni pkcik cleaner kot... :lol:

iFFa =P pkcik cleaner tue saper..??

Share this post


Link to post
Share on other sites

klo btul tu virus bru, tp effectnye pd computer sme x??cam sme je dgn virus2 yg sblumnye.klo kte remove mcm kte cleankn virus2 sblm ni mggunakan kaedah yg pernh dibincangkn dgn sifu2 putera,bley jln rsnye.....

Share this post


Link to post
Share on other sites

Huhu.... dah lama tak ada virus baru.

Hujung2 tahun pun nak release versi baru lagi?

Tunggu tahun baru masuk la.... :lol: :lol: :lol:

p/s: em, sepatutnya cara yang banyak dibincang dalam thread2 sebelum ni dapat diguna. Rajin2 la baca thread2 lama...

Share this post


Link to post
Share on other sites

iFFa =P pkcik cleaner tue saper..??

hehe saje je ckap cmtu...jgn salah paham :lol:

yelah, kan biasanya org cleaner ni kejenye bersihkan tandas n kwsan awam

Share this post


Link to post
Share on other sites

mber aku dpt 1 virus..fly xsilap name virus tuh..pas kaspersky detek n delete,pstu virus tu ade blk..delete lg..pastu ade lagik..camne nk remove pon xtawu da...

Share this post


Link to post
Share on other sites

virus ni la member aku kena.. sampai shutdown pc bila scan virus. whuh. advance btol. <_<

Share this post


Link to post
Share on other sites

slain avast time boot scan,xda cara lain?xkan nk install lagi 1 AV kot?then nk uninstall AV lame..leceh ler..

aku ade wat post ntok solution nie kt sini. boleh restore balik default settings kt windows tue.

Share this post


Link to post
Share on other sites

ape susah, kau ambil sample, paste link dekat sini, nanti ada la yang dapat buat removal khas untuk kau

p/s sebenarnya aku nak sample.. hehe

Share this post


Link to post
Share on other sites

wah... bahaye jugak virus nih...

mintak2 x kene....

erm... wait2...

NOD32... cam ner... leh detect x...

coz sayer gune NOD32 nie....

Share this post


Link to post
Share on other sites

hello ,

if someone user here , infected this virus .. u can try this .

You can copy below code into notepad and then save it some thing like <Remove flash10.bat>. double click this Remove flash10.bat file your problem will be solve in minute.

======== Start copy code below (don't copy this line) ========

Echo This will remove and recover back your windows from flash 10 virus.

taskkill /f /im flash.10.exe /t

@reg delete hkcu\software\microsoft\windows\currentversion\policies\system /v disableregistrytools /f

@reg delete HKLM\Software\Classes\.empty /f

@reg delete HKLM\Software\Classes\.fold /f

@reg delete HKLM\Software\Classes\.ie /f

@reg delete HKLM\Software\Classes\.lagu /f

@reg delete HKLM\Software\Classes\.msn /f

@reg delete HKLM\Software\Classes\.pikz /f

@reg delete HKLM\Software\Classes\.texz /f

@reg delete HKLM\Software\Classes\.vidz /f

@reg add HKLM\Software\Classes\comfile\DefaultIcon /ve /t REG_SZ /d %systemroot%\System32\shell32.dll,2 /f

@reg add HKLM\Software\Classes\.vbs /ve /t REG_SZ /d vbsfile /f

@reg delete HKLM\Software\Microsoft\JambanMuV2 /f

@reg delete HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer /v NoFolderOptions /f

@reg add "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /v Shell /t REG_SZ /d Explorer.exe /f

@reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced /v Hidden /t REG_DWORD /d 00000001 /f

@reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced /v ShowSuperHidden /t REG_DWORD /d 00000001 /f

@reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoFind /f

@reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoFolderOptions /f

@reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v "Windows MSN" /f

@reg add "HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows" /v load /t REG_SZ /d "" /f

@reg delete HKCU\Software\Policies\Microsoft\Windows\System /v DisableCMD /f

@attrib -s -h -r C:\DOCUME~1\ALLUSE~1\STARTM~1\Programs\Startup\(Empty).empty

@del C:\DOCUME~1\ALLUSE~1\STARTM~1\Programs\Startup\(Empty).empty

@attrib -s -h -r c:\windows\system32\cmd.com

@attrib -s -h -r c:\windows\system32\dxdiag.com

@attrib -s -h -r c:\windows\system32\Flash.10.exe

@attrib -s -h -r c:\windows\system32\JambanMu.com

@attrib -s -h -r c:\windows\system32\msconfig.com

@attrib -s -h -r c:\windows\system32\ping.com

@attrib -s -h -r c:\windows\system32\regedit.com

@del c:\windows\system32\cmd.com

@del c:\windows\system32\dxdiag.com

@del c:\windows\system32\Flash.10.exe

@del c:\windows\system32\JambanMu.com

@del c:\windows\system32\msconfig.com

@del c:\windows\system32\ping.com

@del c:\windows\system32\regedit.com

@attrib -s -h -r c:\progra~1\common~1\micros~1\macromedia.10.exe

@del c:\progra~1\common~1\micros~1\macromedia.10.exe

@attrib -s -h -r c:\progra~1\common~1\micros~1\dao\MSN.msn

@del c:\progra~1\common~1\micros~1\dao\MSN.msn

@attrib -s -h -r "c:\docume~1\User\mydocu~1\My Secret.fold"

@attrib -s -h -r "c:\docume~1\User\mydocu~1\mymusi~1\New Song.lagu"

@attrib -s -h -r "c:\docume~1\User\mydocu~1\mymusi~1\New Video.vidz"

@attrib -s -h -r c:\docume~1\User\mydocu~1\mypict~1\aweks.pikz

@attrib -s -h -r c:\docume~1\User\mydocu~1\mypict~1\seram.pikz

@del "c:\docume~1\User\mydocu~1\My Secret.fold"

@del "c:\docume~1\User\mydocu~1\mymusi~1\New Song.lagu"

@del "c:\docume~1\User\mydocu~1\mymusi~1\New Video.vidz"

@del c:\docume~1\User\mydocu~1\mypict~1\aweks.pikz

@del c:\docume~1\User\mydocu~1\mypict~1\seram.pikz

trustly , u can delete this variant ...

Share this post


Link to post
Share on other sites

hello ,

if someone user here , infected this virus .. u can try this .

You can copy below code into notepad and then save it some thing like <Remove flash10.bat>. double click this Remove flash10.bat file your problem will be solve in minute.

======== Start copy code below (don't copy this line) ========

Echo This will remove and recover back your windows from flash 10 virus.

taskkill /f /im flash.10.exe /t

@reg delete hkcu\software\microsoft\windows\currentversion\policies\system /v disableregistrytools /f

@reg delete HKLM\Software\Classes\.empty /f

@reg delete HKLM\Software\Classes\.fold /f

@reg delete HKLM\Software\Classes\.ie /f

@reg delete HKLM\Software\Classes\.lagu /f

@reg delete HKLM\Software\Classes\.msn /f

@reg delete HKLM\Software\Classes\.pikz /f

@reg delete HKLM\Software\Classes\.texz /f

@reg delete HKLM\Software\Classes\.vidz /f

@reg add HKLM\Software\Classes\comfile\DefaultIcon /ve /t REG_SZ /d %systemroot%\System32\shell32.dll,2 /f

@reg add HKLM\Software\Classes\.vbs /ve /t REG_SZ /d vbsfile /f

@reg delete HKLM\Software\Microsoft\JambanMuV2 /f

@reg delete HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer /v NoFolderOptions /f

@reg add "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /v Shell /t REG_SZ /d Explorer.exe /f

@reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced /v Hidden /t REG_DWORD /d 00000001 /f

@reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced /v ShowSuperHidden /t REG_DWORD /d 00000001 /f

@reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoFind /f

@reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoFolderOptions /f

@reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v "Windows MSN" /f

@reg add "HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows" /v load /t REG_SZ /d "" /f

@reg delete HKCU\Software\Policies\Microsoft\Windows\System /v DisableCMD /f

@attrib -s -h -r C:\DOCUME~1\ALLUSE~1\STARTM~1\Programs\Startup\(Empty).empty

@del C:\DOCUME~1\ALLUSE~1\STARTM~1\Programs\Startup\(Empty).empty

@attrib -s -h -r c:\windows\system32\cmd.com

@attrib -s -h -r c:\windows\system32\dxdiag.com

@attrib -s -h -r c:\windows\system32\Flash.10.exe

@attrib -s -h -r c:\windows\system32\JambanMu.com

@attrib -s -h -r c:\windows\system32\msconfig.com

@attrib -s -h -r c:\windows\system32\ping.com

@attrib -s -h -r c:\windows\system32\regedit.com

@del c:\windows\system32\cmd.com

@del c:\windows\system32\dxdiag.com

@del c:\windows\system32\Flash.10.exe

@del c:\windows\system32\JambanMu.com

@del c:\windows\system32\msconfig.com

@del c:\windows\system32\ping.com

@del c:\windows\system32\regedit.com

@attrib -s -h -r c:\progra~1\common~1\micros~1\macromedia.10.exe

@del c:\progra~1\common~1\micros~1\macromedia.10.exe

@attrib -s -h -r c:\progra~1\common~1\micros~1\dao\MSN.msn

@del c:\progra~1\common~1\micros~1\dao\MSN.msn

@attrib -s -h -r "c:\docume~1\User\mydocu~1\My Secret.fold"

@attrib -s -h -r "c:\docume~1\User\mydocu~1\mymusi~1\New Song.lagu"

@attrib -s -h -r "c:\docume~1\User\mydocu~1\mymusi~1\New Video.vidz"

@attrib -s -h -r c:\docume~1\User\mydocu~1\mypict~1\aweks.pikz

@attrib -s -h -r c:\docume~1\User\mydocu~1\mypict~1\seram.pikz

@del "c:\docume~1\User\mydocu~1\My Secret.fold"

@del "c:\docume~1\User\mydocu~1\mymusi~1\New Song.lagu"

@del "c:\docume~1\User\mydocu~1\mymusi~1\New Video.vidz"

@del c:\docume~1\User\mydocu~1\mypict~1\aweks.pikz

@del c:\docume~1\User\mydocu~1\mypict~1\seram.pikz

trustly , u can delete this variant ...

anybody had try this??

is it working?

Share this post


Link to post
Share on other sites

Salam semua,

satu virus yang saya temui semalam yang bernama JAMBANMUV2...

Kebanyakan anti virus tidak dapat kesan. AVG Free terus curroupt...

menatang nih berasaskan remover di mana dia akan scan satu2 one by one........dia x berasaskan scanner macam AV biasa dan paling penting ia FREEEEE..........

Download Reanimator...........

p;s tapi ini hanya untuk remove dalam memori sahaja kemudia perlu update AV dan full scanning sekali lagi.......... ;)

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...

×
×
  • Create New...