Cara Mengatasi Virus KSpoold
a. Tidak melakukan blocking (Task Manager, Registry editor, system configuration Utility, dan Command prompt)
b. Hanya menyerang dokumen Word dan Exel
Nah bagai mana mengatasinya jika file dokumen kita terserang virus ini???
ikuti langkah-langkah berikut:
1. Buka notepad
2. Tulis script dibawah ini kedalam Notepad
echo off
cls
REM - ubah warna
color a
REM - ubah judul
title KSPOOLD KILLER * by nama anda
REM - masuk ke direktori sistem
%SYSTEMDRIVE%
cd %SYSTEMDRIVE%\system32
echo ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
echo KSPOOLD KILLER
echo ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
echo after you press any keys on ypu keyboard, I do
echo - removing related registry
echo - stopping kspoold process
echo - deleting kspoold file in the system directory
echo ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
echo.
pause
echo.
REM - hapus registry yang dibuat sebagai service virus
reg delete "HKEY_LOKAL_MACHINE\SYSTEM\controlset001\services\kspooldaemon" /f
reg delete "HKEY_LOKAL_MACHINE\SYSTEM\controlset002\services\kspooldaemon" /f
reg delete "HKEY_LOKAL_MACHINE\SYSTEM\Currentcontrolset\services\kspooldaemon" /f
REM - hentikan proses virus
taskkill /IM kspoold.exe /F /T
REM - set atribut file virus menjadi normal
attrib -s -h -r kspoold.exe
REM - hapus file virus
del kspoold.exe
Cls
echo ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
echo KSPOOLD KILLER
echo ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
echo after you press any keys on ypu keyboard, I do
echo - removing related registry
echo - stopping kspoold process
echo - deleting kspoold file in the system directory
echo ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
echo.
echo press any key to continue . . .
echo.
echo will done - The "kspoold" was completely removed
echo.
pause
Simpan dengan nama KSpoold killer.BAT
Save As type diganti ALL FILE
Cara menjalankan cukup klik dua kali
Semoga bermanfaat........
![LOST SAGA SEASON 3 OFFLINE [DOWNLOAD]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj_iXhihb_FR62dr3nhvnky7CiuHp_HUDXO7zPy0vzLCKDk_fqIZaktdG1bgoDpoJSC2FVN_twc08U2Yb-5yqkK-NhviMD_Xn0rFyfPfztuqYmFHAq2I3BdONALFRKPUXx7BIUNyGnVU7s/s200/421.jpg)
![AETERNA LUNA PLUS [PRIVATE SERVER]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhu8QmBbzcrkmjusDF0OtvzRoNxv2lizwSziN_gVTCARGR45h5R4XGqXCNzkZyf5ik4OjKIKA5m-YANyJyAwDd54aSBIt7BXCm1QjEsmL-8mAmOQXNaCJyNAF43I-zw0Eo9lRGENItrg5M/s200/LunaPlus_private+server.jpg)
![METRO RAGNAROK [PRIVATE SERVER]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjhNpyVyPh34ibgrcLqk0Dj6RfPcBQSz_NUsCFEWFHa-a24OxfoUVj7ayS8kYPWG7Xjau-WvQGsemzVs1BFftBHf8k5ABXN7VBHt35nPgN2B4_vocg8LbOmnirqe4wpu7osfPBmuVs9tuI/s320/logo.png){kind=logo}