REMOVE AMVO!

Nowadays,we are all acquainted with the deadly virus "amvo.exe".

Symptoms:

• The computer slows down.


• A memory fault error shows when you click on a logical/primary partition.


• You can't see your hidden files as "folder options" menu is disabled.

Steps of Recovery:

• Thank god! you can access command prompt.Goto run and type "cmd".Now open command prompt.


• Goto the root of every drive (C:,D:,E:..etc) and search for "autorun.inf" file.Delete it with the command "del /f/ah <filename>" (as it is a system read-only file).If this doesn't work try "attrib -h -s <filename>" to change the file atttribute and then delete it "del /f <filename>".


• Along with "autorun.inf",you will find another weird looking .bat file e.g. a21345de.bat.Try to delete it with the above procedures.Make sure you have deleted every instance of autorun.inf and .bat file from every partition of your hard-drive.


• We can access "Registry editor" too.If not then type "gpedit.msc" in Run and Goto Userconfiguration-->Administrative templates-->System.Look for the statement "prevent access to registry editing tools".Double click it and select 'disable'.To enable folder options,goto Userconfiguration-->Administrative templates-->Windows components-->Windows explorer.Find "removes the folder options menu from the tools menu".I think you know what to do!.


• Ok now that you can access "regestry editor",type "regedit" in run and look for "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" .Delete "amvo".


• Then goto Edit-->Find and look for every instance of "amvo" in registry and delete it.


• We did the above process to kill amvo at startup.


• Now to get to normal shell processes goto run and type "regsvr32 /i shell32.dll" (To solve the drive clicking problem).


• Restart your machine.


• Now for the finishing job.Goto windows/system32 and remove every instance of amvo (amvo.exe,amv0.dll) etc.

AMVO IS OBLITERATED!