Archive for the ‘Heals / AntiVirus’ Category

Heal Pendrive v2.0 uploaded

2 February, 2011

Heal Pendrive v2.0

Download
Finally i finished the v2 for HealPendrive. It has a user friendly GUI and many useful features.

Features:
*This tool can be used to remove virus/suspected files from pendrive.
*Instructions are provided at the botom of each step.
*Build on VB.net, this application is much superior to the previous v1.0
*Improved “hunt-and-delete” has been integrated in this version.
+Automatic selection for connected pendrive.
+Details for the selected drive.
+Displays contents of autorun.inf
+Individual options to fix registries.
+Calls CHKDSK utility to detect and fix bad sectors.
+Most appreciating “hunt-and-delete” feature with multiple options.

Whats not:
-Files marked for deletion are deleted permanently.(not sent to Recycle Bin)
-Registry change is not reversible.
-This tool only to be used on removable drives.

Whats coming:
*Safely remove drive feature in the next builds.

Heal AntiVirus 1.1 uploaded

19 April, 2008

Hi guys

i have created a small antivirus tool which guards the regitries

And fixes corrupted registries

visit https://piyushlabs.wordpress.com/heal-antivirus/

regsvr.exe / rundll.exe / ‘Microsoft CorpAration’ virus details & heal uploaded

26 March, 2008

It has been quite many days. People have been reporting about this new virus. Thanks to Muthu Kumar, who sent me the virus file for find out the heal.

I really like this virus. It creates a lot of files and make a lot of registry changes. Finding the solution was really challenging. It is built with AutoIt , version unknown. Latest update of kaspersky do not detect this virus, unless it is scanned thoroughly.

not-a-virus:Monitor.Win32.007SpySoft.q       -> rundll.exe
Worm.Win32.AutoIt.s                                           -> regsvr.exe

The “Microsoft Corparation” tag is really confusing. Mind it, its Corp’a’ration, not Corp’o’ration … he he

I wont say my heal is totally complete, but still some more work i’m supposed to do with it, probably to fix some more registries that i still know what they do. Overall my heal will end task the virus files and restore most of the registries.

This virus/trojan keeps complete look on  the system, by taking snap shots every 30 seconds. Suppose u hav this virus for 30 days,just think how much space it will eat. lol

Like the recent coming viruses, even this virus makes exe file inside every folder with the name of the parent folder. (BUT only in the removable drives, this is what i found). It spreads via pen drives, leaving regsvr.exe, New Folder.exe, autorun.inf files in the root directory of pen drive and other <folder named> files inside.

So here is the solution…
https://piyushlabs.wordpress.com/regsvr/

One of my heals marked as Malware by Bitdefender

25 February, 2008

What sadness….

A few days back, aaronik told me that my heal for nhatquanglan has been marked as Malware by BitDefender. i just couldn’t believe that. But it was true…

its really sad, u creat a solution for some malware,
and after sometime ur software only is marked as malware.

my program doesn’t even add itself to the startup, nor it replicates..
i dont know why, it has been marked as malware.
if this is the case then probably, my other heals will also be marked as malwares and i might lose interest in making heals…

Softwares (HEALS) uploaded !!!

17 October, 2007

Atlast today i have uploaded my antivirus for ssvichosst, nhatquanglan, orkut virus (microsoftpowerpoint.exe) ,etc. These are just virus removers and do not provide any protection from the viruses again. These are programs written in C/C++ by me and are free to use and distribute. The size of these HEALS are just a few KB’s.  It simply does the troubleshooting as you can do yourself by following my step by step procedure. You can remove the viruses with these small softwares 🙂

https://piyushlabs.wordpress.com/downloads/

solution for nhatquanglan found

16 October, 2007

i had to install this virus to find out what does it do. Then i found out the step by step solution fot this. it spreads deadly via LAN. When i installed , it sent its offsprings to all the accessible shared folders on the network. Here’s how you can fix the problem

https://piyushlabs.wordpress.com/nhatquanglan-new-folder-svchost/

(more…)

New virus attack: nhatquanglan/new folder/SCVHSOT

12 October, 2007

A new virus nhatquanglan has been irritating people in my hostel since one or two month. I still don’t understand why other comps gets so easily affected by viruses, not mine. 🙂

I did some research on the virus and found out the HEAL (cure). It mainly spreads through LAN and copies itself to all shared documents over the LAN. Oooooo…..

I have created the C Program also but its in testing period. Soon this virus will be kicked off from our hostel.


%d bloggers like this: