[Release] Kick the fuck out of Jeefo Virus
Since I had several bugs on my Testmachines which were related to Jeefo Virus I skipped my work for half a day and found a pretty stable workaround to kick Jeefo in his annoying retarded ass.
Since Jeefo sometimes fucks up binarys (.exe) which have to be restored from backups etc. it drove me crazy coz I had to restore about 30 files with everytime I executed my SR_GameServer.
After some Google-Action I found the location of the base file, which is created when an infected file is executed.
After excecuting an infected file, a new service is registered "PowerManager". Open TaskManager, find that Service in Services Tab, rightclick and press "Go to details". Afterwards end the related task.
Now execute the following Script:
And now execute the script for the workaround which avoids your computer to get re-infected.
Script 2 creates a file with the same name and extension as the virus' basefilename. After creating the Script sets deny full access permissions for EVERYONE. So every permission is overwritten by that DENY EVERYONE permission, so the virus wont be able to create his basefile again.
From now on, jeefo cannot kill your binarys anymore.
Tested at 4 different Machines (WinXP, Win7, Win10 and Server2k12R2)
If you are using this workaround, leave a comment if everything worked at least.
Thanks.
Happy Coding.
Since Jeefo sometimes fucks up binarys (.exe) which have to be restored from backups etc. it drove me crazy coz I had to restore about 30 files with everytime I executed my SR_GameServer.
After some Google-Action I found the location of the base file, which is created when an infected file is executed.
After excecuting an infected file, a new service is registered "PowerManager". Open TaskManager, find that Service in Services Tab, rightclick and press "Go to details". Afterwards end the related task.
Now execute the following Script:
And now execute the script for the workaround which avoids your computer to get re-infected.
Script 2 creates a file with the same name and extension as the virus' basefilename. After creating the Script sets deny full access permissions for EVERYONE. So every permission is overwritten by that DENY EVERYONE permission, so the virus wont be able to create his basefile again.
From now on, jeefo cannot kill your binarys anymore.
Tested at 4 different Machines (WinXP, Win7, Win10 and Server2k12R2)
If you are using this workaround, leave a comment if everything worked at least.
Thanks.
Happy Coding.
Total Comments 0
