Upload
flavio-b-cardoso
View
11
Download
0
Embed Size (px)
Citation preview
5/26/2018 Remoo Total_ Jwgkvsq
1/6
12/10/12 a mim Digital: jwgkvsq.vmx - Conficker remoo manual do vrus
1/6digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html
Tera-feira 7 de abril, 2009
jwgkvsq.vmx - Conficker remoo manual do vrus
Introduo
Bem, este um dos vrus emergentes nova popular. Ela se
espalhou rapidamente, ea maioria de seus computadores estoinfectados. Conficker se espalha atravs do pendrive USB juntocom o autorun.infou via rede, explorando erros na pilha de rede em sistemasWindows. passos Ir para remoo manual. Espalhando via USBDrivesConficker se espalha em Drives USB atravs da criao deum autorun.inf, uma pasta estrutura
RECYCLER \ S-5-3-42-2819952290-8240758988-879315005-3665 \
com
jwgkvsq.vmx
O arquivo um arquivo DLL, que executado pelo autorun.infofuscado.O arquivo DLL carregada com RunDLL
[AUTorUN
icon=%syStEmrOot%\sySTEM32\sHELL32.Dll,4
shelLExECUte=RuNdLl32.EXE.\RECYCLER\S-5-3-42-2819952290-8240758
988-879315005-3665\jwgkvsq.vmx,ahaezedrn
useAuTopLAY=1
Arquivo do blog
2012 (1)
2011 (5)
2010 (9)
2009 (30)
dezembro (2) novembro (1)
outubro (2)
setembro (1)
agosto (3)
julho (4)
junho (3)
Maio (5)
abril (1)
jwgkvsq.vmx - Conficker remoomanual do vrus
Maro (2)
fevereiro (4)
janeiro (2) 2008 (26)
2007 (65)
2006 (19)
0CompartilharCompartilhar mais Prximo blog Criar um blog Login
a mim Digitala mim Digital
74 68 65 20 64 69 67 69 74 61 6C 20 6D 65
Significa apenas que "a me digital" (escrito em hexadecimal)
http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.htmlhttp://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.htmlhttp://www.googleadservices.com/pagead/aclk?sa=L&ai=CorlAd1h4UI-kA4S_6gHt_oH4BIaPzrUCxuqlpTOOnZ3VaBABII_glgZQ7ZSb9QJgzcDGj4ADoAHS_6LgA8gBAqgDAcgD3QSqBL0BT9Bp5bzwXVq2e2zw4886sIlzMzCaRSHd3a8Ig9cH4RQdUuU8mjymIsNrwuwQyUauXOe9sY1ioljs33eeoAqcZr8jm_P9pEcfZTIwd0YxdJ5x81BwFvL1sl2GLdw99NmTdT-JN__YabCFzGiXOcq_R5C_PQPdN9Zn6v-aAimqEtCZgJf37VP4GKr-5wORvJ_Osb2zQwms2lZMqfaeM9CgebvPIPWmFPaRSyiT_V0enZ0dJ4CPD8PpwacCE8cciAYBoAYC&num=1&cid=5GjbrViyJXX9gvPRSSFH6yc-&sig=AOD64_2ro8k8oxVjBGuYDni-mcUuK5gM-g&client=ca-pub-8159348998168387&adurl=http://software.filesfrog.com/lp/7_zip/df%3Fmnag%3D23994%26mnct%3D252%26mnca%3D622%26mncr%3D234314http://www.googleadservices.com/pagead/aclk?sa=L&ai=CorlAd1h4UI-kA4S_6gHt_oH4BIaPzrUCxuqlpTOOnZ3VaBABII_glgZQ7ZSb9QJgzcDGj4ADoAHS_6LgA8gBAqgDAcgD3QSqBL0BT9Bp5bzwXVq2e2zw4886sIlzMzCaRSHd3a8Ig9cH4RQdUuU8mjymIsNrwuwQyUauXOe9sY1ioljs33eeoAqcZr8jm_P9pEcfZTIwd0YxdJ5x81BwFvL1sl2GLdw99NmTdT-JN__YabCFzGiXOcq_R5C_PQPdN9Zn6v-aAimqEtCZgJf37VP4GKr-5wORvJ_Osb2zQwms2lZMqfaeM9CgebvPIPWmFPaRSyiT_V0enZ0dJ4CPD8PpwacCE8cciAYBoAYC&num=1&cid=5GjbrViyJXX9gvPRSSFH6yc-&sig=AOD64_2ro8k8oxVjBGuYDni-mcUuK5gM-g&client=ca-pub-8159348998168387&adurl=http://software.filesfrog.com/lp/7_zip/df%3Fmnag%3D23994%26mnct%3D252%26mnca%3D622%26mncr%3D234314http://digitalpbk.blogspot.com.br/http://www.googleadservices.com/pagead/aclk?sa=L&ai=CorlAd1h4UI-kA4S_6gHt_oH4BIaPzrUCxuqlpTOOnZ3VaBABII_glgZQ7ZSb9QJgzcDGj4ADoAHS_6LgA8gBAqgDAcgD3QSqBL0BT9Bp5bzwXVq2e2zw4886sIlzMzCaRSHd3a8Ig9cH4RQdUuU8mjymIsNrwuwQyUauXOe9sY1ioljs33eeoAqcZr8jm_P9pEcfZTIwd0YxdJ5x81BwFvL1sl2GLdw99NmTdT-JN__YabCFzGiXOcq_R5C_PQPdN9Zn6v-aAimqEtCZgJf37VP4GKr-5wORvJ_Osb2zQwms2lZMqfaeM9CgebvPIPWmFPaRSyiT_V0enZ0dJ4CPD8PpwacCE8cciAYBoAYC&num=1&cid=5GjbrViyJXX9gvPRSSFH6yc-&sig=AOD64_2ro8k8oxVjBGuYDni-mcUuK5gM-g&client=ca-pub-8159348998168387&adurl=http://software.filesfrog.com/lp/7_zip/df%3Fmnag%3D23994%26mnct%3D252%26mnca%3D622%26mncr%3D234314http://www.googleadservices.com/pagead/aclk?sa=L&ai=CLZp3dlh4ULjKLaq_6gHYz4CoComLjJME-auTjTfAjbcBEAEgj-CWBlDN6LTT-v____8BYM3Axo-AA6ABz-uM1gPIAQKoAwHIA90EqgStAU_QBLCoEMXhSGD1ln0bz4IwlTbdd5Ntwp99iB_gGor6i_BAm8_TN16RcqqejGNb-RVugxUtocu_ixite_GzA_lNyMu4iN_DkUGFNeviLAzKjTWf0oGx7NJpSXmYXe3NVyiAhrBc7B9yZhx1qi9txqsPTcNLppAcd3OfFKuIuuRzhK3uhn9Vobl1vW7V51O1GYvzNjG8lYJ6tYEr1jZYaEo1wMo2I9lxi5FaAykIiAYBoAYC&num=1&cid=5Ggu0li9mmmSYCPYPHIZt8gN&sig=AOD64_2L49IFVsWgMnJxUy4hFJHOceAn3g&client=ca-pub-8159348998168387&adurl=http://www.clickmein.com/index.php/lp_en_v3/%3Ftracking%3Dgoogle%26campaign%3Dbrazil-tst1http://digitalpbk.blogspot.com.br/http://www.blogger.com/http://www.blogger.com/http://www.blogger.com/signup.ghttp://www.blogger.com/next-blog?navBar=true&blogID=4056600558769970290http://digitalpbk.blogspot.com.br/search?updated-min=2006-01-01T00:00:00-08:00&updated-max=2007-01-01T00:00:00-08:00&max-results=19http://void%280%29/http://digitalpbk.blogspot.com.br/search?updated-min=2007-01-01T00:00:00-08:00&updated-max=2008-01-01T00:00:00-08:00&max-results=50http://void%280%29/http://digitalpbk.blogspot.com.br/search?updated-min=2008-01-01T00:00:00-08:00&updated-max=2009-01-01T00:00:00-08:00&max-results=26http://void%280%29/http://digitalpbk.blogspot.com.br/2009_01_01_archive.htmlhttp://void%280%29/http://digitalpbk.blogspot.com.br/2009_02_01_archive.htmlhttp://void%280%29/http://digitalpbk.blogspot.com.br/2009_03_01_archive.htmlhttp://void%280%29/http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.htmlhttp://digitalpbk.blogspot.com.br/2009_04_01_archive.htmlhttp://void%280%29/http://digitalpbk.blogspot.com.br/2009_05_01_archive.htmlhttp://void%280%29/http://digitalpbk.blogspot.com.br/2009_06_01_archive.htmlhttp://void%280%29/http://digitalpbk.blogspot.com.br/2009_07_01_archive.htmlhttp://void%280%29/http://digitalpbk.blogspot.com.br/2009_08_01_archive.htmlhttp://void%280%29/http://digitalpbk.blogspot.com.br/2009_09_01_archive.htmlhttp://void%280%29/http://digitalpbk.blogspot.com.br/2009_10_01_archive.htmlhttp://void%280%29/http://digitalpbk.blogspot.com.br/2009_11_01_archive.htmlhttp://void%280%29/http://digitalpbk.blogspot.com.br/2009_12_01_archive.htmlhttp://void%280%29/http://digitalpbk.blogspot.com.br/search?updated-min=2009-01-01T00:00:00-08:00&updated-max=2010-01-01T00:00:00-08:00&max-results=30http://void%280%29/http://digitalpbk.blogspot.com.br/search?updated-min=2010-01-01T00:00:00-08:00&updated-max=2011-01-01T00:00:00-08:00&max-results=9http://void%280%29/http://digitalpbk.blogspot.com.br/search?updated-min=2011-01-01T00:00:00-08:00&updated-max=2012-01-01T00:00:00-08:00&max-results=5http://void%280%29/http://digitalpbk.blogspot.com.br/search?updated-min=2012-01-01T00:00:00-08:00&updated-max=2013-01-01T00:00:00-08:00&max-results=1http://void%280%29/http://www.blogger.com/post-edit.g?blogID=4056600558769970290&postID=546562306093132014#conficker-manual-removalhttp://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html5/26/2018 Remoo Total_ Jwgkvsq
2/6
12/10/12 a mim Digital: jwgkvsq.vmx - Conficker remoo manual do vrus
2/6digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html
A presena do Conficker pode ser detectado por olhar para o conedo pen drive USB. Se um cone de pasta, em seguida, a suaquase certeza de que a unidade est infectado com o "Conficker".Deteco manual e remoodo Conficker desabilita oBackground Intelligent Transfer Service (BITS) e as AtualizaesAutomticas do Windows. Ento, se voc encontrar estes serviosdeficientes, estar alerta. (Para conferir os servios que estosendo executados e seus status Executar> services.msc. Siga
estes passos para detectar e remover o vrus Conficker:
Execute o regedit.exe Registro editorGoto HKEY_LOCAL_MACHINE \ Software \ Microsoft \WindowsNT \ CurrentVersion \ SvcHost \ netsvcsduplo clique na chave para ver se h um valor aleatrio em seu
final. Note o "zbtthjd" no final, este o vrus. Uma lista deentradas vlidas no campo (da Microsoft) dado abaixo paraajud-lo a encontrar a seqncia aleatria. (Normalmente nofinal).
digitalpbk.com
digitalpbk.com
O Windows 7 Laptop Fix LigarAutomaticamente
Dell Inspiron N5110 ndice deExperincia do Windows
Rasberry Pi Especificaes tcnicas
Como criar arquivos como. Htaccessem janelas
Desvio de bloqueio de tela no Xorg-1.11 Debian
Etiquetas
Janelas (21)
Linux (20)
Programao (19)
Diverso (18)
Hacks (12)
Perl (12)
Voc sabia (11)
Orkut (11)
Tweaking (10)
PHP (9)
Servidor (9)Compaq Presario (8)
Remoo de Vrus (8)
Segurana (7)
Formatos e especificaes (6)
HTML (5)
http://digitalpbk.blogspot.com.br/search/label/HTMLhttp://digitalpbk.blogspot.com.br/search/label/Formats%20and%20Specificationshttp://digitalpbk.blogspot.com.br/search/label/Securityhttp://digitalpbk.blogspot.com.br/search/label/Virus%20Removalhttp://digitalpbk.blogspot.com.br/search/label/Compaq%20Presariohttp://digitalpbk.blogspot.com.br/search/label/Serverhttp://digitalpbk.blogspot.com.br/search/label/PHPhttp://digitalpbk.blogspot.com.br/search/label/Tweakinghttp://digitalpbk.blogspot.com.br/search/label/Orkuthttp://digitalpbk.blogspot.com.br/search/label/Did%20you%20knowhttp://digitalpbk.blogspot.com.br/search/label/Perlhttp://digitalpbk.blogspot.com.br/search/label/Hackshttp://digitalpbk.blogspot.com.br/search/label/Funhttp://digitalpbk.blogspot.com.br/search/label/Programminghttp://digitalpbk.blogspot.com.br/search/label/Linuxhttp://digitalpbk.blogspot.com.br/search/label/Windowshttp://digitalpbk.com/debian/xorg-1.11-screen-lock-bypasshttp://digitalpbk.com/windows/create-htacces-files-extensions-onlyhttp://digitalpbk.com/mini-computer/rasberry-pi-tech-specshttp://digitalpbk.com/hardware/dell-inspiron-n5110-windows-experience-indexhttp://digitalpbk.com/windows/laptop-turns-on-automatically-windows-7http://digitalpbk.com/http://4.bp.blogspot.com/_QpfjolcC1Go/SdyDGTuYMnI/AAAAAAAAASI/H-1Xq3wLAq0/s1600-h/2.JPGhttp://2.bp.blogspot.com/_QpfjolcC1Go/SdyDGKKfSLI/AAAAAAAAASA/wPwnIvVbYbM/s1600-h/1.JPG5/26/2018 Remoo Total_ Jwgkvsq
3/6
12/10/12 a mim Digital: jwgkvsq.vmx - Conficker remoo manual do vrus
3/6digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html
AppMgmt
AudioSrv
Browser
CryptSvc
DMServer
EventSystem
HidServ
Ias
Iprip
Irmon
LanmanServer
LanmanWorkstation
Messenger
Netman
Nla
Ntmssvc
Observe a seqncia aleatria. (Neste caso, "zbtthjd")
Agora Ir HKEY_LOCAL_MACHINE \ SYSTEM \CurrentControlSet \ Services \ zbtthjd \ Parameters, observe oparmetro ServiceDll, Seria algo como c: \ windows \ system32\ dll .
Tome um prompt de comando e execute
svchost-k netsvcs
. Isso deve parar os netsvcs eo vrus.
Tente excluir o arquivo DLL ou ento renomear o arquivo DLLpara outra coisa
Reinicie o sistema.
Servios Renable Atualizaes Automticas e bits.
Observe se voc encontrar esses mtodos no se aplica no seucaso, o vrus deve ter transformado a alguma outra forma.Espero que funcione :)
Postado por Arun Prabhakar em 19:11
Marcadores: Remoo de Vrus
Bookmark me em:
24 comentrios:
Raveendra Pai Gdisse ...
realmente funciona homem, Obrigado!09 de maio de 2009 11:36:00 PDT
Terra anjodisse ...
Eu encontrei esta seqncia aleatria, opgxdps. o ltimo da lista.Mas eu no consigo encontrar o arquivo DLL, o que devo fazer?Obrigado!
21 de maio de 2009 07:02:00 PDT
Christian Philipdisse ...
Networking (4)
ASCII Art (3)
CSS (3)
Console Histria (3)
Anlise de Recursos (3)
VB (3)
BASH (2)
Dataone (2)
Facebook (2)
Processamento de Imagens (2)
Software (2)cPanel (2)
Assemblia (1)
Banda Larga (1)
Snaps (1)
Sony Vaio (1)
VC + + (1)
amazon (1)
iPod (1)
Feeds ...
Assine em um leitor
Estatsticas do site ....
Powered By Kitiyo Estatsticas
Visitantes desde novembro 182006
LED RGB
Seguidores
Join this siteJoin this site
w ith Google Friend Connect
Members (58) More
Already a member? Sign in
http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-682327382513276488http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-682327382513276488http://rgb.kitiyo.com/http://www.statcounter.com/http://stats.kitiyo.com/http://www.netvibes.com/subscribe.php?url=http://feeds.feedburner.com/digitalpbkhttp://feeds.my.aol.com/add.jsp?url=http://feeds.feedburner.com/digitalpbkhttp://www.newsgator.com/ngs/subscriber/subext.aspx?url=http://feeds.feedburner.com/digitalpbkhttp://add.my.yahoo.com/rss?url=http://feeds.feedburner.com/digitalpbkhttp://fusion.google.com/add?feedurl=http://feeds.feedburner.com/digitalpbkhttp://feeds.feedburner.com/digitalpbkhttp://feeds.feedburner.com/digitalpbkhttp://digitalpbk.blogspot.com.br/search/label/iPodhttp://digitalpbk.blogspot.com.br/search/label/amazonhttp://digitalpbk.blogspot.com.br/search/label/VC%2B%2Bhttp://digitalpbk.blogspot.com.br/search/label/Sony%20Vaiohttp://digitalpbk.blogspot.com.br/search/label/Snapshttp://digitalpbk.blogspot.com.br/search/label/Broadbandhttp://digitalpbk.blogspot.com.br/search/label/Assemblyhttp://digitalpbk.blogspot.com.br/search/label/cPanelhttp://digitalpbk.blogspot.com.br/search/label/Softwarehttp://digitalpbk.blogspot.com.br/search/label/Image%20Processinghttp://digitalpbk.blogspot.com.br/search/label/Facebookhttp://digitalpbk.blogspot.com.br/search/label/Dataonehttp://digitalpbk.blogspot.com.br/search/label/BASHhttp://digitalpbk.blogspot.com.br/search/label/VBhttp://digitalpbk.blogspot.com.br/search/label/Feature%20Reviewhttp://digitalpbk.blogspot.com.br/search/label/Console%20Storyhttp://digitalpbk.blogspot.com.br/search/label/CSShttp://digitalpbk.blogspot.com.br/search/label/ASCII%20Arthttp://digitalpbk.blogspot.com.br/search/label/Networkinghttp://www.blogger.com/profile/05756353637551235970http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-682327382513276488http://www.blogger.com/profile/05175069241990571742http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-4064018395257475106http://www.blogger.com/profile/15193388067178067979http://twitter.com/home?status=http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html%20jwgkvsq.vmx%20-%20Conficker%20virus%20manual%20removalhttp://www.technorati.com/faves?add=http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.htmlhttp://reddit.com/submit?url=http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html&title=jwgkvsq.vmx%20-%20Conficker%20virus%20manual%20removalhttp://digg.com/submit?phase=2&url=http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.htmlhttp://del.icio.us/post?url=http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html&title=jwgkvsq.vmx%20-%20Conficker%20virus%20manual%20removalhttp://digitalpbk.blogspot.com.br/search/label/Virus%20Removalhttp://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html5/26/2018 Remoo Total_ Jwgkvsq
4/6
12/10/12 a mim Digital: jwgkvsq.vmx - Conficker remoo manual do vrus
4/6digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html
mesmo problema com terra anjo. ls ajuda!16 jun 2009 00:20:00 PDT
Annimo disse ...
Obrigado, isso me ajudou a remover o v rus facilmente.03 de agosto de 2009 23:17:00 PDT
Annimo disse ...
vwnwhms --- a seqncia aleatria! mas no consigo encontrarqualquer sugesto file.Any dll? Eu coisa Earth Angel est
enfrentando o mesmo problem.why no h resposta!3 de setembro de 2009 10:02:00 PDT
Arun Prabhakardisse ...
Para aqueles que no podem encontrar o arquivo DLL que o vrusteria plymorphed a alguma outra forma quando conectado internet.
3 de setembro de 2009 10:20:00 PDT
Annimo disse ...
mee tambm eu no era capaz de encontrar o random.dll, porquea escala regedit mostrar os parmetros do servio o ltimo dalista. tento encontrar uma dll estranho que criar neste dia. Mas eu
remover este nome dessa lista, o vrus no est me incomoda.Muito obrigado.
25 de novembro de 2009 01:51:00 PST
Annimo disse ...
Obrigado pela grande informao. Ele trabalhou em dois sistemasque foram infectados, e agora est livre de malware. Eu sou umconsultor de TI snior e remover vrus para v iver. Eu tinhapassado muitas horas a tentar encontrar um presente, e nenhuma
o melhor software anti-vrus poderia encontr-lo. -Scott13 dez 2009 06:59:00 PST
Computer Supportdisse ...
O jwgkvsq.vmx um vrus do tipo worm que se espalha atravsde USB / drives portteis e atravs da rede. Ele tambm fazarquivo autorun.inf no seu dispositivo USB, bem como uma pastaoculta do sistema chamado REC YCLER que contm o arquivo
jwgkvsq.vmx. Eu no tenho certeza se isso um vrus antigo, masparece que est se espalhando muito ultimamente. E o mais anti-vrus no detecta isso, mas para quem o faz, no pode remov-lo.
14 de dezembro de 2009 03:33:00 PST
Richesterdisse ...
"Wnasnx" eu encontrei este que a lista de um passado. mas nodll parmetros. e eu no posso exclu-lo. me ajude por favor.obrigado!
04 de janeiro de 2010 02:47:00 PST
Richesterdisse ...
eu encontrei este aleatria string "wnasnx" ltima lista. mas euno posso encontrar a dll e nenhuma tecla parmetros. e eu noposso apagar. por favor me ajude. obrigado
04 de janeiro de 2010 02:50:00 PST
Annimo disse ...
O tamanho exato do arquivo: 168096 bytes. Pesquisar o sistemapara o tamanho do arquivo, e voc vai encontrar o arquivo dllfaltando na pasta system32! (Tem outro nome, claro.)
Abril 22, 2010 07:11:00 PDT
blubbi disse ...
encontrou a seqncia aleatria, mas no a dll. em sistema de 32
http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-219258983210812011http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-5134743581508515459http://www.blogger.com/profile/00356551869078663248http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-2297869770638936226http://www.blogger.com/profile/00356551869078663248http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-5296044838241624224http://www.support1000.com/http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-5035747828583285373http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-152728130254382600http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-1241683172273357636http://www.blogger.com/profile/14888016221735780777http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-2021460573967336343http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-2306214742201421661http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-61742523944427436025/26/2018 Remoo Total_ Jwgkvsq
5/6
12/10/12 a mim Digital: jwgkvsq.vmx - Conficker remoo manual do vrus
5/6digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html
e toda c: \ windows partio nenhum arquivo com o tamanhoexato de 168.096 bytes. uma boa idia para apagar ou renomear o meu "aleatria string"pasta: HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \Services \ ygxdsx ??
12 mai 2010 01:19:00 PDT
Neven Boyanovdisse ...
Eu no poderia encontrar os nomes DLL no registro, mas tenhonotado que a data de modificao do jwgkvsq.vmx o mesmo queo arquivo kernel32.dll na pasta C: \ WINDOWS \ system32 ...ento assim que eu encontrei o arquivo. No meu caso, que era oque eu eecsfqhw.dll renomeados em modo de segurana. Seutamanho e data foram: 162941 / 2009/03/21 17:06 espero queajuda os outros
20 de junho de 2010 12:50:00 PDT
Annimo disse ...
no pode executar services.mscno pode executar regedit.exeagora o que mais posso fazer?
21 de julho de 2010 09:55:00 PDT
Sturmvogel disse ...
Para Neven Boyanov: Eu sinto muito por uma questo stupud, mascomo a coincidncia da data de modificao do kernel32 e
jwgkvsq ajudar? Na verdade, eu tenho o mesmo problema, e adata de modificao do kernel32 o mesmo que um dos jwgkvsq(19:52 16 abril de 2007). Voc no poderia ter a gentileza decompartilhar comigo do jeito que voc encontre o arquivo DLLdepois dessa descoberta?
28 de agosto de 2010 01:55:00 PDT
Annimo disse ...
hey obrigado pela ajuda, eu sou como os outros que noconseguiam encontrar o parmetro, ento eu procurei por umarquivo com o tamanho exato do meu arquivo jwgkvsq.vmx, foiuma dll, e nenhuma surpresa ele estava escondido, no acessvel... ento eu modifiquei a permisso para que eu possa exclu-lo,eu usei processXP para acabar com qualquer identificador abertodo arquivo (svchost estava usando) e, finalmente, eu deletei edepois reiniciado e voila!ento eu acho que o movimento registro inteiro era intil paramim, mas foi um comeo .. obrigado pela informao.Abdelrhman.
27 de outubro de 2010 15:29:00 PDT
Annimo disse ...
Obrigado Trabalhou06 de novembro de 2010 09:16:00 PDT
Annimo disse ...
oi tudo .. 2 No meu sob motoristas com seu nome a leatrio e notem nenhum parmetro em regstry .. Jus tem um link para umarquivo c: \ windows \ system32 \ 03.tmp
10 de janeiro de 2011 19:44:00 PST
Annimo disse ...
Microsoft Malicious Software Removal Too l fez isso por mim13 jan 2011 08:00:00 PST
hemiro disse ...
Miklos:eu encontrei a seqncia aleatria no regedit e excludos, ento eucorri cmd: svchost-k netsvcs. A dll aleatrias que eu no poderiaencontrar. Tudo bem?
http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-1318822992021118573http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-2814434784154256422http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-2141905770592610409http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-4311836044649666778http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-857102921378234218http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-2673244000294216647http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-8337627215071431576http://www.blogger.com/profile/17985001373002188199http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-52669611537620406855/26/2018 Remoo Total_ Jwgkvsq
6/6
12/10/12 a mim Digital: jwgkvsq.vmx - Conficker remoo manual do vrus
6/6digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html
Ads by Google Virus Removal Anti Virus DLL Virus Trojan Virus
http://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8159348998168387&format=fp_al_lp&output=html&h=15&w=468&lmt=1349419551&host=pub-1556223355139109&h_ch=00000&ea=0&flash=11.3.31&url=http%3A%2F%2Fdigitalpbk.blogspot.com.br%2F2009%2F04%2Fjwgkvsqvmx-conficker-virus-manual.html&dt=1350059746276&bpp=10&shv=r20121008&jsv=r20110914&prev_fmts=468x15_0ads_al_s&prev_slotnames=5647999129%2C7585902793&correlator=1350059744869&pv_h_ch=00000&frm=20&adk=3963046211&ga_vid=1971677239.1350059745&ga_sid=1350059745&ga_hid=2118781479&ga_fc=1&u_tz=-180&u_his=2&u_java=1&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=32&u_nplug=19&u_nmime=68&dff=verdana&dfs=11&adx=346&ady=6498&biw=1349&bih=600&oid=3&ref=http%3A%2F%2Fdigitalpbk.com%2Fhelp%2Fjwgkvsqvmx-conficker-virus-removal-tool&fu=0&ifi=4&dtd=18&kw_type=radlink&rt=ChBQeFh3AAsyvQo6nyb5ABjtEgxUcm9qYW4gVmlydXMaCLXtmbdk4lMtKAFSEwjjxJyfhfyyAhXEsDoKHUVRAO4&hl=en&kw0=Virus+Removal&kw1=Anti+Virus&kw2=DLL+Virus&kw3=Trojan+Virus&okw=Trojan+Virushttp://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8159348998168387&format=fp_al_lp&output=html&h=15&w=468&lmt=1349419551&host=pub-1556223355139109&h_ch=00000&ea=0&flash=11.3.31&url=http%3A%2F%2Fdigitalpbk.blogspot.com.br%2F2009%2F04%2Fjwgkvsqvmx-conficker-virus-manual.html&dt=1350059746276&bpp=10&shv=r20121008&jsv=r20110914&prev_fmts=468x15_0ads_al_s&prev_slotnames=5647999129%2C7585902793&correlator=1350059744869&pv_h_ch=00000&frm=20&adk=3963046211&ga_vid=1971677239.1350059745&ga_sid=1350059745&ga_hid=2118781479&ga_fc=1&u_tz=-180&u_his=2&u_java=1&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=32&u_nplug=19&u_nmime=68&dff=verdana&dfs=11&adx=346&ady=6498&biw=1349&bih=600&oid=3&ref=http%3A%2F%2Fdigitalpbk.com%2Fhelp%2Fjwgkvsqvmx-conficker-virus-removal-tool&fu=0&ifi=4&dtd=18&kw_type=radlink&rt=ChBQeFh3AAsyugo6nyb5ABjtEglETEwgVmlydXMaCLa9ikHw9AdJKAFSEwjjxJyfhfyyAhXEsDoKHUVRAO4&hl=en&kw0=Virus+Removal&kw1=Anti+Virus&kw2=DLL+Virus&kw3=Trojan+Virus&okw=DLL+Virushttp://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8159348998168387&format=fp_al_lp&output=html&h=15&w=468&lmt=1349419551&host=pub-1556223355139109&h_ch=00000&ea=0&flash=11.3.31&url=http%3A%2F%2Fdigitalpbk.blogspot.com.br%2F2009%2F04%2Fjwgkvsqvmx-conficker-virus-manual.html&dt=1350059746276&bpp=10&shv=r20121008&jsv=r20110914&prev_fmts=468x15_0ads_al_s&prev_slotnames=5647999129%2C7585902793&correlator=1350059744869&pv_h_ch=00000&frm=20&adk=3963046211&ga_vid=1971677239.1350059745&ga_sid=1350059745&ga_hid=2118781479&ga_fc=1&u_tz=-180&u_his=2&u_java=1&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=32&u_nplug=19&u_nmime=68&dff=verdana&dfs=11&adx=346&ady=6498&biw=1349&bih=600&oid=3&ref=http%3A%2F%2Fdigitalpbk.com%2Fhelp%2Fjwgkvsqvmx-conficker-virus-removal-tool&fu=0&ifi=4&dtd=18&kw_type=radlink&rt=ChBQeFh3AAsyuAo6nyb5ABjtEgpBbnRpIFZpcnVzGgjwcLd0Pi9gBigBUhMI48Scn4X8sgIVxLA6Ch1FUQDu&hl=en&kw0=Virus+Removal&kw1=Anti+Virus&kw2=DLL+Virus&kw3=Trojan+Virus&okw=Anti+Virushttp://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8159348998168387&format=fp_al_lp&output=html&h=15&w=468&lmt=1349419551&host=pub-1556223355139109&h_ch=00000&ea=0&flash=11.3.31&url=http%3A%2F%2Fdigitalpbk.blogspot.com.br%2F2009%2F04%2Fjwgkvsqvmx-conficker-virus-manual.html&dt=1350059746276&bpp=10&shv=r20121008&jsv=r20110914&prev_fmts=468x15_0ads_al_s&prev_slotnames=5647999129%2C7585902793&correlator=1350059744869&pv_h_ch=00000&frm=20&adk=3963046211&ga_vid=1971677239.1350059745&ga_sid=1350059745&ga_hid=2118781479&ga_fc=1&u_tz=-180&u_his=2&u_java=1&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=32&u_nplug=19&u_nmime=68&dff=verdana&dfs=11&adx=346&ady=6498&biw=1349&bih=600&oid=3&ref=http%3A%2F%2Fdigitalpbk.com%2Fhelp%2Fjwgkvsqvmx-conficker-virus-removal-tool&fu=0&ifi=4&dtd=18&kw_type=radlink&rt=ChBQeFh3AAsyqQo6nyb5ABjtEg1WaXJ1cyBSZW1vdmFsGghsXk_CT8VvNCgBUhMI48Scn4X8sgIVxLA6Ch1FUQDu&hl=en&kw0=Virus+Removal&kw1=Anti+Virus&kw2=DLL+Virus&kw3=Trojan+Virus&okw=Virus+Removalhttps://www.google.com/adsense/support/bin/request.py?contact=abg_afc&url=http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html&hl=en&client=ca-pub-8159348998168387&rad0=Virus+Removal&rad1=Anti+Virus&rad2=DLL+Virus&rad3=Trojan+Virushttp://digitalpbk.blogspot.com/feeds/546562306093132014/comments/defaulthttp://digitalpbk.blogspot.com.br/http://www.blogger.com/comment.g?blogID=4056600558769970290&postID=546562306093132014http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-2677196642087948570http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-4136751367765042345http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-3803369900171984725http://digitalpbk.blogspot.com.br/2009/04/jwgkvsqvmx-conficker-virus-manual.html#comment-5930940511923101147http://digitalpbk.blogspot.com.br/2009/03/earth-hour-march-28th-0830-0930.htmlhttp://digitalpbk.blogspot.com.br/2009/05/curl-php-windows-unable-load-libcurlphp.html