try search from google about the virus, i think there should be solution offered by there

Upload one of those scr files to here > http://www.bleepingcomputer.com/submit-malware.php?channel=4

I shall take a closer look at it

The so-called AutoCAD script file is actually a .SCR file extension which accidentially is not a valid AutoCad script file format but a virus file of 40KB in size and it is using the .SCR format to deceive the user. The normal .SCR extension is also used by the screensaver file.

http://benthenk.blogspot.com/2007/06/cara-...t4sy-virus.html

http://www.mail-archive.com/daarut-tauhiid...m/msg00377.html (in Indonesian language)

http://www.compactbyte.com/brontok/ (in Indonesian language)

uploaded the file already
thank you
((:

Give me some time on it. I have some another infections on the test machines. Will look at yours after that

---

Added on August 15, 2008, 9:23 pmI need another file from you.

Do a search of your machine to look for a file named ...



3 blank space between 'Thumbs' and '.db'

If you find it, upload it to the same website as earlier on.

Also tell me how many copies you found. I only need 1 copy

then try SDfix.exe

LOL ... that's not "thumbs  .db". That's thumbs.com.
It's an exact replicate of the earlier file you uploaded. Let's try another angle.

Download & run this file > http://download.bleepingcomputer.com/sUBs/FindR.exe
It shall produce a log for you to post back here
-----------
Andy makes a great tool but I doubt he targets local infections like this 

LOL ... that's not "thumbs  .db". That's thumbs.com.
It's an exact replicate of the earlier file you uploaded. Let's try another angle.

Download & run this file > http://download.bleepingcomputer.com/sUBs/FindR.exe
It shall produce a log for you to post back here
-----------
Andy makes a great tool but I doubt he targets local infections like this 

7.      Tampilkan kembali file/folder yang sudah di sembunyikan oleh virus. Untuk menampilkan file folder yang disembunyikan oleh VbWorm.MYE anda dapat menggunakan perintah ATTRIB –s –h /s /d dengan memastikan posisi kursor berada di root masing-masing Drive yang file/foldernya akan ditampilkan. (lihat gambar 8)

Contoh:

C:\> ATTRIB –s –h /s /d

Menampilkan file/folder yang disembunyikan oleh VBWorm.MYE

is that mean he tell you to use attrib -s -h /s /d in every root drive??

LOL .... that exposes all the Windows system files. MS set those attributes for good reasons. What you just did is irreversible. Only System Restore can undo it.

3.      Jika menggunakan Windows ME/XP Disable “System restore” untuk sementara selama proses pembersihan
[http://www.norman.com/Virus/Articles/Articles_previous_years/25782/en-us]