Jump to content

How to remove pooh.vbs from your system or flash drive

Mark Manching

By Mark Manching
in Everything Else

 Share

Recommended Posts

Mark Manching Newbie

Mark Manching

Posted
Posted

Credits to PC Express Online and stardestiny for the fix

I've finally learned how to kill it... but first an intro...

I got this virus in a internet cafe in Cebu, Philippines

It exploits the autorun feature in memorycards and copies itself to computers and connected memory cards thereafter

Because it does not spread itself to the internet, it hasn't gained enough notoreity to be included in virus defenses of various programs

Be sure to also clean your infected memory cards...

Here's how you clean it:

Download startup control Panel at mlin.net (You're going to use this later)

Go to your Task Manager (Ctrl+Alt+Del)

Terminate the Wscipt.exe process

Terminate the Explorer.exe process

Click New Task and Type "cmd" (without the quotes)

type the following in your command prompt

del c:pooh.vbs /f/s/q/a
del d:pooh.vbs /f/s/q/a

(include your other drives and USB drives that have been infected)

del c:autorun.inf
del d:autorun.inf

(include your other drives and USB drives that have been infected)

del c:windowssystem32kernell.dll.vbs
del c:aikelyu.html /f/s/q/a

Use the start-up program from mlin.net to remove aikelyu.html on windows startup

Go to New Task and type "regedit" (without the quotes)

Go to

HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogon

and modify it to make the value in Shell to only contain "explorer.exe"

That's about it... Good luck everybody...

Oh yeah... to the creator of the virus... "Jayker"... go f*ck yourself

further readings:

http://www.mydigitallife.info/2007/04/19/u...torunvbs-error/

to Jayker:

You're Sore Loser!  :x

Link to comment
Share on other sites
Mark Manching Newbie

Mark Manching

Posted
  • Author
Posted

You're Welcome

But im First to Kill "pooh.vbs" inside your Windows Box and Your Flash Disk if your Anti-Virus can't detect

reason to pooh.vbs

slow your windows box  :x

opens a strage html message after your startup

slow system resources

p.s. got my karma or rep?

p.s.s Download CCleaner at www.ccleaner.com after removing the startup process in pooh.vbs and cleans all junked stuff

Link to comment
Share on other sites
K1u Newbie

K1u

Posted
Posted

By chance out of curiosity... do you have the source code of this "virus" so we can see how it infects and learn more about it.

yeah we want sauce !!! (to say it the 4chan way xd)

Yummmy... :D

you want sauce??

pm me to get the code!

Just post it on the other site lovable site :D

Link to comment
Share on other sites
Mark Manching Newbie

Mark Manching

Posted
  • Author
Posted

By chance out of curiosity... do you have the source code of this "virus" so we can see how it infects and learn more about it.

yeah we want sauce !!! (to say it the 4chan way xd)

Yummmy... :D

you want sauce??

pm me to get the code!

Just post it on the other site lovable site :D

@im sending that code to K1u

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...