Now,gambar virus Sandra Dewi Bugil.exe was outspread in internet.Adi Saputera, security experts from Vaksincom explains, Norman Security Suite (NSS) with Sandbox Technology and Matching without DNS update to detect the virus as Sandra Dewi new unkown virus. A NSS update after identifying Sandra Dewi Bugil.exe as W32/Sadra.A
The characteristics of this virus from the file are as follows:
The characteristics of this virus from the file are as follows:
- Has the file size of 132 kb.
- The file type Application.
- Berextension file. Exe.
- An icon images (JPEG image).
Adi resumed, Sandra Dewi virus created using the programming language visual basic.If the virus menginfeksi successful, he will make some of these virus files:
- C: \ Sandra Dewi Bugil.exe (all on the root drive)
- C:\Documents and Settings\%user%\Start Menu\Programs\Startup\Sandra Dewi Bugil.exe
- C: \ Documents and Settings \% username% \ Start Menu \ Programs \ Startup \ Sandra Dewi Bugil.exe
- C: \ WINDOWS \ Sandra Dewi Bugil.exe
- C: \ WINDOWS \ system32 \ Sandra Dewi Bugil.exe
- Create a duplicate file in every folder the virus is in a removable drive / usb.
"Still remember with Blue Fantasy virus, the virus displays a message before you log in, and now Sandra Dewi virus also displays a message," he said as quoted from detikinet.com, Friday (12/6/2009).
As a defense, still Adi said, the virus will try to make some effort to block the function of Windows. Some of the functions of Windows that blocked them were as follows:
As a defense, still Adi said, the virus will try to make some effort to block the function of Windows. Some of the functions of Windows that blocked them were as follows:
- Folder Options (done to prevent access to the file / folder that is hidden)
- Registry Editor (done to prevent access to registry repair)
- Search / Find (done to prevent the virus from cleaning)
- Command Prompt (done to prevent the process from the kill virus)
- Task Manager (done to prevent the process of monitoring the virus)
- Control Panel (done to prevent the access control of the computer OS)
- Msconfig / System Configuration Utility (done to prevent access at startup)
In addition, the virus also tries to do business on the block some functions of Windows, such as, among others:
0 komentar:
Posting Komentar