Image default
Softorial

P3K Virus – P3K Dokumen Word yang termakan virus diary dot exe , Trojan Kangen.M , Trojan Virus

now we will discus about local virus that avalanche entering Indonesian Cyber World. Yeah, there are many Virus Maker has bloom now. It doesn’t mean they wrong, they only to spilled creativity idea into virus program. The main as not as botch important data. But if only just show a message for that Indonesian People be better, why not? That can help indirectly. Although with underground manner. Right?

VIRUS DIARY / Trojan Kangen.M / Trojan Virus Generator LOA

Actually old stuff at our ear, Trojan Kangen. An old virus that have ever make Indonesian People shock. Maybe this is another variant from Kangen Virus or repaired version. Kangen Virus make a process in Windows with name:

– spoolsw.exe

This Trojan eats the .doc file too. Actually not delete your file. But only set the attribute that .doc file that formerly have an archive attribute become hidden and system. So that file hidden by Windows. Just calm down if your computer has infected by the virus. The word file still exists. So how to show it?

First Manner

  1. Open the Windows Explorer
  2. Click Tools menu à Folder Options
  3. Choose view
  4. Mark the Show Hidden Files and Folders
  5. Eliminate the mark on Hide Protected Operating System Files ( Recommended )
  6. Then see the directory where you save the file. Appear right? But that file really marked with blurred icon or equally that file have hidden and system attribute.

Second Manner

  1. Download ShowKillProcess.exe and P3Kdiary.exe on this site :

Download ShowKillProcess dan P3KDiary

  1. Run the ShowKillProcess.exe
  2. Kill the process with 8 Base Priority and 1 Num. Threads with process name :

– spoolsw.exe

  1. Run the P3Kdiary.exe
  2. Choose the Drive that you want to fix
  3. Click search, then see in application explanation that you have found and fix it

 

Then don’t forget to delete the value registry on:

 

HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Run, NvsSchd
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegistryTools
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableTaskMgr
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoClose
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoControlPanel
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoFind
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoFolderOption
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoRecentDocumentsMenu
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoRun
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoViewContextmenu
HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer

Then find .exe file with 153 kb and 21 kb size and have a Windows Icon. Then delete the file.

 

I hope with this P3K, you that have a broken spirit because your thesis is lost and because your document file become get up again. Ok, I will be waiting for your critics. Thank you.

 

Created by :
Overlord@virologi.info

Related posts

Virus Tutorial – INJECT THE REGISTRY WITH VISUAL BASIC

adminviro

Virus Tutorial – Cracking Spider Virus Full Tutorial

adminviro

Virus Tutorial – Source Code Program Fix Diary Virus

adminviro

Leave a Comment