Thursday, October 20, 2011

Software antivirus မသံုးပဲ ဘယ္လိုစစ္ေဆးတာလည္းဆိုတဲ့ အေႀကာင္းေလး

ပထမအေနနဲ့ Task Manager လမ္းဘယ္လိုဝင္လာတဲ့ဆိုတာ ေျပာထားတဲ့ အတိုင္းလုပ္ပါ ။ (CTRL + Skrif + ESC) ( command prompt ဖြင့္ျပီး "taskmgr.exe) လိုေရးပါ ။ (CTRL + ALT + DEL).Task Manager တက္လာတဲ့အခါမွာ Processes သြားျပီး check what files so are running on your computer.

"msconfig" နဲ့လည္းသြားလို႔ရတယ္..ဘယ္လိုသြားလည္းဆိုတာကိုတင္ျပေပးမည္။
Start>run>"msconfig" If you fine any files so are connected to any Temporaly Internet files like "temp" at your start up you should uncheck the mark. Since nothing should be pointed to "temp."

ေအာက္ကဟာေတြကိုလည္း အဲအတိုင္း စစ္ေဆးႏိုင္တယ္။

- Command prompt
- Regedit
- Task Manager
- Msconfig
- System Restore
အကယ္၍ သင္ message က "Its Disabled by Adminstrator" လိုျဖစ္ခဲ့ရင္ မူလအတိုင္း သင္ကြန္ပ်ဴတာမွာ virus ကိုက္ေနပါတယ္။

Important tools ေတြက disable သြားရင္ command prompt and regedit နဲ့ျပင္ပါ။

ဘာေႀကာင္း ရိုးရိုးေလး disable လုပ္တာလဲဆိုတာ သူတို႔ကအလြန္းေကာင္းေသာကရိယာ တစ္ခုကိုစစ္ေဆးေနပါသည္။ အကယ္၍ကြန္ပ်ဴတာထဲမွာ virus ဝင္ရင္ မ်ားေသာအားျဖင့္ normal users ေတြက ဘယ္လိုေနာက္ထပ္ဖြင့္တာလဲဆိုတာမသိႏိုင္ပါ။

အခုေနာက္ပိုင္းမွာ ဗိုင္းရမ္းေတြက security ကြန္ပ်ဴတာေတြ ကိုနိမ့္က်ေအာင္လုပ္ေနပါသည္။
ရွာေဖြဖို႔ကလည္း လြယ္တဲ့ကိစၥလည္းမဟုတ္ေတာ့ဘူး။ AV ေတြနဲ့သင္အျမဲေစာက္ႀကည့္ဖို႔လိုေနပါသည္။

ေအာက္ပါအတိုင္းလုပ္ပါ၊-
Command Prompt is disabled how to fix it:

Press "START" and "RUN" type "gpedit.msc" and go to - Adminstrative Template - system "key" is "Prevent access to the Command prompt" you Left click and hit Properties. When you are in Properties you set it to Activated.

Task Manager is disabled how to fix it:
Press "START" and "RUN" write "gpedit.msc"
- Adminstrative templates - system - "Ctrl+Alt+Del Options" and press "Remove Task Manager" Left-click Properties, when you're in there, so you can either disable it or enable it. But press "Enable"

Press "START" and "RUN" type "REGEDIT.EXE" press ok.
path: HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Policies\System
There should be a key named "DisableTaskmgr".
You can either delete it or you can change the value on it to 1.

System Restore disabled how to fix it:

Press "START" and "RUN" type "gpedit.msc" - Adminstrative Template - system - key name should be "Turn off System Restore" Left click and hit properties to Activate it.

Regedit is disabled how to fix it:

Press "START" and "RUN" type "gpedit.msc" - Adminstrative Template - system - "key" is "Prevent access to the resgisty edition tool" You left click it, and hit
Properties. Now you open the window and you can set it to Activated or Disabled. You set it to Activated.

------
Firewall လုပ္တဲ့နည္း

To open "Windows Firewall" go "START" and "RUN" type "firewall.cpl" You can also look at the firewall log file at C:\WINDOWS firewall file is a txt document its named: "pfirewall.log"

သင္ task manager လံုျခံဳစြာသြားခ်င္လွ်င္ (CTRL+ALT+DEL) fine the virus Processe.
Press "End Process" after you have done that you should go to regedit.

"START" and "RUN" type "regedit" or "regedit.exe"
က်ေတာ္ေအာက္ကေရးထားတဲ့ဟာေတြကိုလ
ိုက္လုပ္ပါ။

path: HKEY_LOCAL_MACHINE\SOFTWARE\Mi
crosoft\Windows\Curr entVersion\Run
path: HKEY_LOCAL_MACHINE\SOFTWARE\Mi
crosoft\Windows\Curr entVersion\RunOnce
path: HKEY_LOCAL_MACHINE\SOFTWARE\Mi
crosoft\Windows\Curr entVersion\RunOnceEx
path: HKEY_CURRENT_USER\SOFTAWRE\Mic
rosoft\Windows\Curre ntVersion\Run
path: HKEY_CURRENT_USER\SOFTWARE\Mic
rosoft\Windows\Curre ntVersion\RunOnce

Delete virus file ေတြကိုေတြ႔ခဲလွ်င္ go to Command Prompt press "START" and "RUN" type "cmd" type regsvr32 (virus file name) ကိုေတြ႔လွ်င္ delete လိုက္ပါ။

အကယ္၍အေရးႀကီးတဲ့ disconenct from the internet some viruse ဆိုရင္ download software လိုက္ပါ။ အကယ္၍မရရင္ go to Command Prompt type "netstat -a" so you list poeple so are trying to connect to you. or is connected to you. Check out the host names.
virus ဘယ္လိုတားဆီးနိုင္တာလဲဆိုတဲ့အေရးႀကီးခ်က္ေတြပါ။

# Remember to patch up your computer and softwares you use.
# Update your Anti-Virus and Firewall.
# Never open e-mail from people you do not know.
# Never download from sources you do not trust.
# You must always scan files you download from the internet with anti-virus program before you open them.
# stay away from pages that may contain viruses and other unwanted programs.

ခင္မင္လွ်က္။Win Ba Gem