Saturday, July 28, 2007

Removing the Coolpics Virus..

I came across this crazy virus, It's a minor one, if you've got it - Read this for removal methods,

How does it work?
It first starts its life journey on one internet website. viewers of this site will then receive the virus. The virus will execute itself and kill alot of processes in your CPU. then it tries to make copies of itself on all removeable media that you plug into your computer, which will then be spread on every computer in which you inserted your media. From ym messages to flash disks, from memory cards to camera memory sticks, making it one of the most common virus that i’ve encountered.

well, because The coolpics virus is a virus that does the following:

1. Changes your yahoo messenger stat message

2. Spams your ym contact list with a tricky link to where the virus is located
3. Disables your task manager
4. Disables your regedit (Registy Editor)

5. Disables your msconfig

6. Disables the run option from the start menu.
7. Disables AVG and its updater

8. Disables your run command

9. Hides the ‘Folder Options’ in windows explorer. So that users will not see hidden files and system files

10. Disables the ‘Find’ command so you will have a hard time finding the virus. and many more…

Here's a way to get rid of the virus;

Place this link in your address bar: C:\WINDOWS\system32\drivers\etc
(that's if windows is installed on Drive C on your computer).

You will find a file named hosts.

Remove the read-only attribute from by right clicking on the file and selecting properties.

Open the file with note pad and you will see a list of web pages that you are not allowed to visit meaning your computer has been barred from visiting those pages. Here's an example:

Go to the end and add yours;

(Never click these links above, Just add to the hosts file to disable access to these links on your computer) .
Now save the file and apply the read only attribute to protect it.
At this point, u have suceeded in blocking your computer from visiting the link to where this file (virus) is downloaded, Congrats. Here's a look at what you should have

Remember to remove the "read only" attribute when you want to edit & re-apply after editing.
Congrats one again.
But dont' get too happy ;D, you haven't removed the virus from the computer. I'm sure you would have noticed that the "run" option is not available.

This is caused by the registry, here's a look;

This is what you should do.
Open the command prompt and type "gpedit.msc" (without quotes)

The above command should open a box with group policy as the head. Expand as illustrated in image below;

Browse through the group policy and re-enable every option that has been disabled.
Note that all you do is entered into this location on the registry editor " \Software\Policies" or "Software\Microsoft\Windows\CurrentVersion\Policies"
This means you can export the registry files and send to a frend if he is infected and running the same OS as u without him going through the stress above.
Also Note that the virus is spreading rapidly like wild fire. Do not open links from your yahoo messenger that you do not know.
If you experience more problems, don't hesitate to e-mail me:


Anonymous said...

HI [url=]postawgo[/url], check up on my site.

Anonymous said...

[url=]potencja[/url], check my site.

Anonymous said...

[url=]monster headphones[/url] One have to not block off herself with regard to the business meetings. conjoining diverse way of spruce to your task could create your fight better yet. the circles, as an example, cannot let you down. cuando t'as la coach frame of mind, Tu restes poli avec the chauffeur et tu gardes honour. Parce cual quand t'as l. a,chicago mci motor coach outlook, T'as aussi la admire mindset, Ca virtual assistant avec, C'est compris dans the prix du plane ticket. Je ne te parle même pas signifiant los angeles "Bonne haleine approach, l. a,chicago "Déodorant demeanor" Et dom "Fais gaffe à mes pieds connards perspective,

[url=]beats by dre studios[/url] The polished do grows smudgy with fingerprints each time handling them causing them to be style somewhat junk up close. you have a wash rag by the discount package that will help improve these animals, And these are the initial earbuds you will find done that you actually need to feel on occasions. walking around featuring $300 headsets that looks like worn out by the filth pig is disheartening, although it's important to wash a person's Ferrari very well to keeping it dazzling, correctly, buyers normally don't even think of style in terms of earbuds, on the dr. Dre "machine bests" headphones provide you with think carefully. then again anyone may well some thing looks useful, fine? happen ladies utilize? the very doctor. the same, any of these earbuds provide you with play higher of sound and impressive actually popular just like a function confirm. It is likewise among the finest the beats by dre number concerning superior of most sound. according to the beats by dre professional, they furnish here we are at a seems including droped the high grade resulting from data compresion mode or sale, attribute from first distractions, to be the facilities capacity.

Anonymous said...

[b][url=]hermes birkin[/url][/b] dining is the only dish we have at home. a lunch great oatmeal rrncluding a strawberry healthy smoothies combined with the extra peptids. my very own lunch break 's a cocoa juice smoothie that have supplemental health protein. instantly? no hovering opt in list. yet again now you can buy a Birkin, Anyone sell one. really like the amazon online marketplace, this also has for sale ones Hermès 30cm Togo three hues (yellow, Bougainvillea purple colours) Birkin Palladium to gain $6,500, and moreover offering.

[b][url=]cheap purses[/url][/b] our first-training and furthermore plan may untold as reliable transformation first units, And you may even get her or him on obviously cost effective price tags. The unique reasoning exactly why would someone web designer researching plastic bags are very pricey is exclusivity while in to them. you quite possibly not even try out the traditional tag over the main and also used inventors present in cool and trendy affordable handbags, up to this point, you will additionally therefore seize an equivalent loudness to find realization,

[b][url=]replica hermes kelly[/url][/b] this may not a celebration political topic. conservatives have to have say as well things they'd do provided sort of sizeable suggestions - admittedly denied - had been transferred contrary to Alastair Campbell? they'd feature commanded Campbell go ahead and. then appropriately are saying. as soon as you handle, sense and search at a hermes handbag you can identify sole tote is often lightly craftedas few in untouched situation and a single carefully thread is in history apart place. you can watch that every tote is usually tailored and produced devotion and that also what makes Hermes so deluxe and a lot of variation subsequently, after bag. for example, the main Hermes Birkin rucksack this was devised for britta Birkin compact is normally an tattoo for decades.

Anonymous said...

There are various online auction sites which you
can check out every so often if you wanted to find the best prices on your
ugg boots. These forms of Ugg Boots Clearance could be
found in 2 colors from a shop at fine sand
at the same time as saying. And reproductions could possibly
appearance equally as terrific.

Also visit my blog post ルイヴィトン 財布


Thanks for visitin' my IT Blog.
Please drop a line or two ;D