[NEWS] THE TOP 25 MOST DANGEROUS PROGRAMMING ERRORS

Here is the list of the top 25 most dangerous programming errors to be notified by all programmers:

1. CWE-20:Improper Input Validation
2. CWE-116:Improper Encoding or Escaping of Output
3. CWE-89:Failure to Preserve SQL Query Structure
4. CWE-79:Failure to Preserve Web Page Structure
5. CWE-78:Failure to Preserve OS Command Structure
6. CWE-319:Cleartext Transmission of Sensitive Information
7. CWE-352:Cross-Site Request Forgery
8. CWE-362:Race Condition
9. CWE-209:Error Message Information Leak
10. CWE-119:Failure to Constrain Operations within the Bounds of a Memory Buffer
11. CWE-642:External Control of Critical State Data
12. CWE-73:External Control of File Name or Path
13. CWE-426:Untrusted Search Path
14. CWE-94:Failure to Control Generation of Code
15. CWE-494:Download of Code Without Integrity Check
16. CWE-404:Improper Resource Shutdown or Release
17. CWE-665:Improper Initialization
18. CWE-682:Incorrect Calculation
19. CWE-285:Improper Access Control
20. CWE-327:Use of a Broken or Risky Cryptographic Algorithm
21. CWE-259:Hard-Coded Password
22. CWE-732:Insecure Permission Assignment for Critical Resource
23. CWE-330:Use of Insufficiently Random Values
24. CWE-250:Execution with Unnecessary Privileges
25. CWE-602:Client-Side Enforcement of Server-Side Security

Source: SANS Institute
News Source: Dangerous coding errors revealed

How to kill virus: MS-DOS.com, Global.exe, system.exe, svchost.exe manually

The virus: MS-DOS.com which in the process we can see it as Global.exe, system.exe and svchost.exe (which confused to the system process) which are the main process of the virus.











I used to met them with my friends' PC but I could not do anything other than format their PC as most of the antivirus seem can't heal it after the PC affected but now it's with my PC and I don't want to format it again, I tried to kill it myself without any information of it for almost 2 days but I got nothing.

After research, I got some solutions that possible to try, thanks to:

• Panda Security
• FontThai blog
• Vietnamese blog: lecuong.info (I used google translator)

With lecuong.info solution seem more closely to solve the issue:
B1: Use IceSword simultaneously kill 3 Process: system.exe, Global.exe, svchost.exe
B2: Find and delete all the files have been analyzed at above
B3: Using Autoruns to check & remove all key viruses created in the registry
B4: Reboot computer.
B5: Download antivirus program (such bkav) to scan again! (If the computer has antivirus program is removed and then installed again!)
B6: Open Run -> CMD: type in sfc /scannow or sfc /scanonce and XP disk to correct the file failed.
B7: Reboot computer. (If necessary)

With solution B2/ B3/ please use batch file to do it: (kill-msdos.zip)
But I recommend you to use another batch file below...

As for sure, everyone will difficult for point B1/ so I, myself tried to enhance on lecuong.info batch to add following command to try ending all processes of the virus:

taskkill /F /IM system.exe /IM Global.exe /IM svchost.exe /T

But we will face delete also svchost.exe which is the windows system one so that in 1 minute the PC will shutdown but don't worry, we can proceed the rest before 1 minute.

Please press any key and accept YES by press Y to confirm delete all virus files and regedit entries as in the batch.

As I face the virus, seem the batch needs to enhance for more file paths to delete such as:
c:\windows\system32\regedit.exe and its regedit entries so here what I added more:

ATTRIB -R -H -S -A c:\windows\system32\regedit.exe

DEL /f c:\windows\system32\regedit.exe

REG DELETE "HKEY_CURRENT_USER\Software\Microsoft\Search Assistant\ACMru\5603" /v "001" /F
REG DELETE "HKEY_CLASSES_ROOT\MSCFile\Shell\Open\Command" /f

Now I don't see any process of this virus on my task manager any more.

(DOWNLOAD)
Here is the full batch file:
kill-msdos-full (computerexperience.co.cc).zip

Don't forget to continue point B5/ and B6/ also.

Please report any issue/success related to this solution.