Forum Sementara Putera.com

Bersama kita perkemaskan forum ini sementara forum asal dalam pemulihan.

Forum putera dah kembali. Masalah sudah berjaya diselesaikan. Sila lawati http://forum.putera.com/tanya


    minta tolong

    Share

    makora
    Ahli Baharu
    Ahli Baharu

    Gender : Male Number of posts : 48
    Age : 34
    Location : Johore
    Job/hobbies : Tooling Technician & Sla 3d System
    Registration date : 20/03/2009

    minta tolong

    Post by makora on Mon Sep 21, 2009 5:37 pm

    saya nk minta tolong sangat pada kewan dkt putera ni..
    bru2 ni sy ade msalah dkt benda ni..
    mcm mne nk buang..
    antivirus avast/anti malware sy selalu detect virus alamat dkt bawah ni..

    http://www.gidromash.cn/oc/box.txt

    wanjihan
    Ahli Rajin
    Ahli Rajin

    Gender : Male Number of posts : 1106
    Age : 36
    Location : Kaybee, Kelate
    Job/hobbies : Tenet jer....
    Registration date : 21/02/2009

    Re: minta tolong

    Post by wanjihan on Mon Sep 21, 2009 6:58 pm

    erk... ko ada bukak web tu ke sblm ni?

    aku bukak kuar mcm ni...


    Kaspersky
    Internet Security 2009
    Access denied
    The requested URL could not be retrieved

    URL:

    http://www.gidromash.cn/oc/box.txt

    Access to requested object is forbidden
    Generated:
    Mon Sep 21 17:58:04 2009
    Kaspersky Internet Security 2009

    e_sentinel
    Ahli Baharu
    Ahli Baharu

    Number of posts : 479
    Registration date : 02/03/2009

    Re: minta tolong

    Post by e_sentinel on Mon Sep 21, 2009 7:41 pm

    Ko nak pekena orang ke makora??

    Report generated: 21.9.2009 at 12.35.16 (GMT 1)
    Filename: box.txt
    File size: 12 KB
    MD5 Hash: 38e8f258e718eec8c2b69ceba1583ee6
    SHA1 Hash: FEDFF1F40489D8B350881C736960BCFDB6DB843E
    Self-Extract Archive: Nothing found
    Binder Detector: Nothing found
    Detection rate: 13 on 23

    Detections

    a-squared - Backdoor.Win32.Hostil!IK
    Avira AntiVir - Worm/SdBot.12288.12
    Avast - Win32:MalOb-R [Cryp]
    AVG - Generic14.ASBJ
    BitDefender - Trojan.Generic.2410534
    ClamAV - -
    Comodo - -
    Dr.Web - Trojan.Siggen.4005
    Ewido - -
    F-PROT6 - -
    Ikarus T3 - Backdoor.Win32.Hostil
    Kaspersky - Backdoor.Win32.SdBot.oux
    McAfee - -
    NOD32 v3 - Win32/Kryptik.AKT
    Norman - -
    Panda - -
    QuickHeal - Backdoor.SdBot.oux
    Solo Antivirus - -
    Sophos - Mal/UnkPack-Fam
    TrendMicro - -
    VBA32 - Backdoor.Win32.SdBot.oux
    VirusBuster - Worm.SdBot.AKFR
    ZonerAntivirus - -

    Scan report generated by
    NoVirusThanks.org

    Wan .. itu direct download url .. siapa klik, kena laa.

    wanjihan
    Ahli Rajin
    Ahli Rajin

    Gender : Male Number of posts : 1106
    Age : 36
    Location : Kaybee, Kelate
    Job/hobbies : Tenet jer....
    Registration date : 21/02/2009

    Re: minta tolong

    Post by wanjihan on Mon Sep 21, 2009 7:59 pm

    uh.. jahat nya. nasib baik la av detect. bot ape tu ek? mesti spyware

    makora
    Ahli Baharu
    Ahli Baharu

    Gender : Male Number of posts : 48
    Age : 34
    Location : Johore
    Job/hobbies : Tooling Technician & Sla 3d System
    Registration date : 20/03/2009

    Re: minta tolong

    Post by makora on Mon Sep 21, 2009 11:59 pm

    e_sentinel wrote:Ko nak pekena orang ke makora??

    Report generated: 21.9.2009 at 12.35.16 (GMT 1)
    Filename: box.txt
    File size: 12 KB
    MD5 Hash: 38e8f258e718eec8c2b69ceba1583ee6
    SHA1 Hash: FEDFF1F40489D8B350881C736960BCFDB6DB843E
    Self-Extract Archive: Nothing found
    Binder Detector: Nothing found
    Detection rate: 13 on 23

    Detections

    a-squared - Backdoor.Win32.Hostil!IK
    Avira AntiVir - Worm/SdBot.12288.12
    Avast - Win32:MalOb-R [Cryp]
    AVG - Generic14.ASBJ
    BitDefender - Trojan.Generic.2410534
    ClamAV - -
    Comodo - -
    Dr.Web - Trojan.Siggen.4005
    Ewido - -
    F-PROT6 - -
    Ikarus T3 - Backdoor.Win32.Hostil
    Kaspersky - Backdoor.Win32.SdBot.oux
    McAfee - -
    NOD32 v3 - Win32/Kryptik.AKT
    Norman - -
    Panda - -
    QuickHeal - Backdoor.SdBot.oux
    Solo Antivirus - -
    Sophos - Mal/UnkPack-Fam
    TrendMicro - -
    VBA32 - Backdoor.Win32.SdBot.oux
    VirusBuster - Worm.SdBot.AKFR
    ZonerAntivirus - -

    Scan report generated by
    NoVirusThanks.org

    Wan .. itu direct download url .. siapa klik, kena laa.


    maslahnya benda ni ada dlm pc aku.. tu yg aku mintak tolong kat korng..
    mcm mne tk buang benda ni.. bukan aku nk perkenakan orng..
    effect benda ni.. files2 folder byak hilang..
    kekadang bila aku on pc.. tkde kuar ape2 icon pun..
    pc jdi berat ler..
    tolong pleaseeeeeeeeeee...

    makora
    Ahli Baharu
    Ahli Baharu

    Gender : Male Number of posts : 48
    Age : 34
    Location : Johore
    Job/hobbies : Tooling Technician & Sla 3d System
    Registration date : 20/03/2009

    Re: minta tolong

    Post by makora on Tue Sep 22, 2009 12:01 am

    wanjihan wrote:uh.. jahat nya. nasib baik la av detect. bot ape tu ek? mesti spyware


    aku bukan nk kenakan..
    tpi pc aku terkena benda ni ler..
    antivirus dh buang pun still ada g..
    ada sesiapa pernah kena dgn benda ni..
    please tolong aku...

    makora
    Ahli Baharu
    Ahli Baharu

    Gender : Male Number of posts : 48
    Age : 34
    Location : Johore
    Job/hobbies : Tooling Technician & Sla 3d System
    Registration date : 20/03/2009

    Re: minta tolong

    Post by makora on Tue Sep 22, 2009 4:07 am

    makora wrote:saya nk minta tolong sangat pada kewan dkt putera ni..
    bru2 ni sy ade msalah dkt benda ni..
    mcm mne nk buang..
    antivirus avast/anti malware sy selalu detect virus alamat dkt bawah ni..

    http://www.gidromash.cn/oc/box.txt


    boleh tgok2kan tk.. ni hijackthis

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 3:05:50 AM, on 9/22/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.20583)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\ASUS.SYS\config\DVMExportService.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Internet Download Manager\IDMan.exe
    C:\Program Files\DNA\btdna.exe
    C:\Program Files\Internet Download Manager\IEMonitor.exe
    C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe
    C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\GVR\GVR.exe
    C:\Program Files\GVR\GRTP.exe
    C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
    O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [EPSON Stylus C59 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBHP.EXE /FU "C:\WINDOWS\TEMP\E_S44.tmp" /EF "HKLM"
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\K-Lite Codec Pack\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [GVR4.2] C:\Program Files\GVR\GVR.exe
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
    O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKUS\S-1-5-19\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
    O4 - HKUS\.DEFAULT\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user')
    O4 - Startup: GIGABYTE Gamer HUD.lnk = C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
    O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
    O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
    O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
    O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM - C:\ASUS.SYS\config\DVMExportService.exe
    O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

    --
    End of file - 7727 bytes

    e_sentinel
    Ahli Baharu
    Ahli Baharu

    Number of posts : 479
    Registration date : 02/03/2009

    Re: minta tolong

    Post by e_sentinel on Tue Sep 22, 2009 1:38 pm

    Tu ler .. lain kali bagi scan log atau error pop-up screenshots, bukannya bagi virus tu .. haaa, kan dah jadi tak elok, salah sangka, buruk sangka dsbnya .. silap2 kena lak virus tu kat orang yang berniat nak tolong .. tak ke haru Mad

    O4 - HKUS\S-1-5-19\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user')

    Ini aje unusual entry yang aku nampak, tak sepatutnya ada dalam startup entry .. ko tak bagi detail "benda" tu, pop-up ke apa ke ...

    test0123
    Ahli Rajin
    Ahli Rajin

    Gender : Male Number of posts : 1002
    Age : 33
    Location : Bandar Tasek Mutiara, Penang
    Job/hobbies : Executive/ Cari Gondang
    Registration date : 20/02/2009

    Re: minta tolong

    Post by test0123 on Tue Sep 22, 2009 2:27 pm

    nak tambah ..ini lagi satu..tak sepatutnya ada..

    C:\Program Files\GVR\GRTP.exe

    e_sentinel
    Ahli Baharu
    Ahli Baharu

    Number of posts : 479
    Registration date : 02/03/2009

    Re: minta tolong

    Post by e_sentinel on Tue Sep 22, 2009 4:52 pm

    GRTP.exe? Tak kot? Sebab, tak silap aku tu running process untuk GVR (Geek Virus Remover) .. remover yang ahli putera ni juga buat (bro ApoNie) .. betul tak?

    C:\Program Files\GVR\GVR.exe
    C:\Program Files\GVR\GRTP.exe
    O4 - HKLM\..\Run: [GVR4.2] C:\Program Files\GVR\GVR.exe

    http://forum.geekzlife.net/viewtopic.php?f=9&t=106

    test0123
    Ahli Rajin
    Ahli Rajin

    Gender : Male Number of posts : 1002
    Age : 33
    Location : Bandar Tasek Mutiara, Penang
    Job/hobbies : Executive/ Cari Gondang
    Registration date : 20/02/2009

    Re: minta tolong

    Post by test0123 on Tue Sep 22, 2009 5:32 pm

    ye ker..setahu aku..cuma perlu ada yg ni aje C:\Program Files\GVR\GVR.exe
    yg perlu jgk ker..

    e_sentinel
    Ahli Baharu
    Ahli Baharu

    Number of posts : 479
    Registration date : 02/03/2009

    Re: minta tolong

    Post by e_sentinel on Tue Sep 22, 2009 9:33 pm

    test0123 wrote:ye ker..setahu aku..cuma perlu ada yg ni aje C:\Program Files\GVR\GVR.exe
    yg perlu jgk ker..

    http://forum.geekzlife.net/viewtopic.php?f=9&t=106

    test0123
    Ahli Rajin
    Ahli Rajin

    Gender : Male Number of posts : 1002
    Age : 33
    Location : Bandar Tasek Mutiara, Penang
    Job/hobbies : Executive/ Cari Gondang
    Registration date : 20/02/2009

    Re: minta tolong

    Post by test0123 on Tue Sep 22, 2009 9:50 pm

    ok bro...thanks.. Basketball

    johnburn
    Moderators
    Moderators

    Gender : Male Number of posts : 755
    Location : Terengganu
    Registration date : 07/03/2009

    Re: minta tolong

    Post by johnburn on Wed Sep 23, 2009 11:36 am

    e_sentinel wrote:Tu ler .. lain kali bagi scan log atau error pop-up screenshots, bukannya bagi virus tu .. haaa, kan dah jadi tak elok, salah sangka, buruk sangka dsbnya .. silap2 kena lak virus tu kat orang yang berniat nak tolong .. tak ke haru Mad

    O4 - HKUS\S-1-5-19\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user')

    Ini aje unusual entry yang aku nampak, tak sepatutnya ada dalam startup entry .. ko tak bagi detail "benda" tu, pop-up ke apa ke ...
    masalahnya xsemua yang pham log ni dan boleh bg suggestion yg btol2 membntu.
    stakat scan kt online scanner pastu soh clean yg tu je xsemestinya jln pnyelesaiannya.


    --------------------------------------------

    tahukah kamu saat kamu menangis
    adalah air mata ku yang jatuh berlinang
    tahukah kamu saat kamu tersakiti
    adalah aku yang pertama terluka
    Jangan Klik

    test0123
    Ahli Rajin
    Ahli Rajin

    Gender : Male Number of posts : 1002
    Age : 33
    Location : Bandar Tasek Mutiara, Penang
    Job/hobbies : Executive/ Cari Gondang
    Registration date : 20/02/2009

    Re: minta tolong

    Post by test0123 on Wed Sep 23, 2009 1:32 pm

    bro..john..at least kita cuba bantu setakat mana yg kita boleh.. Basketball

    makora
    Ahli Baharu
    Ahli Baharu

    Gender : Male Number of posts : 48
    Age : 34
    Location : Johore
    Job/hobbies : Tooling Technician & Sla 3d System
    Registration date : 20/03/2009

    Re: minta tolong

    Post by makora on Wed Sep 23, 2009 3:03 pm

    e_sentinel wrote:Tu ler .. lain kali bagi scan log atau error pop-up screenshots, bukannya bagi virus tu .. haaa, kan dah jadi tak elok, salah sangka, buruk sangka dsbnya .. silap2 kena lak virus tu kat orang yang berniat nak tolong .. tak ke haru Mad

    O4 - HKUS\S-1-5-19\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user')

    Ini aje unusual entry yang aku nampak, tak sepatutnya ada dalam startup entry .. ko tak bagi detail "benda" tu, pop-up ke apa ke ...



    ya allah sedih betul hati aku ni,
    virus ni dah beranak2 dkt pc aku ni..
    virus = win32:malob-r (crps) ada
    virus HTML:iframe.js ada
    dan sekutunya..
    bila aku scan lebih dri 180 virus dlm pc aku.. dh buang, tpi virus ada g..
    check dkt regedit ada, dkt temporary files ada, window/system/32 semua tmpat virus ni ada.
    bila aku restart pc, window logon tk pasal2 kuar pasword..
    padahal pc aku tkde password pun..
    bila pc open je.. ape2 pun tkde.. semua hilang.. kosong terus
    program files aku semua rosak.. termasuk la hardware ram kingston 1 gb aku rosak..
    aku repair window pun tk guna.. still rosak and rosak..
    aku dah patah hati.. so aku format pc..
    sedih sangat2.. sbb tk sempat buat backup files penting..
    alahai.. kurang ajar betul la sape yg buat virus ni..

    makora
    Ahli Baharu
    Ahli Baharu

    Gender : Male Number of posts : 48
    Age : 34
    Location : Johore
    Job/hobbies : Tooling Technician & Sla 3d System
    Registration date : 20/03/2009

    Re: minta tolong

    Post by makora on Wed Sep 23, 2009 3:24 pm

    e_sentinel wrote:Tu ler .. lain kali bagi scan log atau error pop-up screenshots, bukannya bagi virus tu .. haaa, kan dah jadi tak elok, salah sangka, buruk sangka dsbnya .. silap2 kena lak virus tu kat orang yang berniat nak tolong .. tak ke haru Mad

    O4 - HKUS\S-1-5-19\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user')

    Ini aje unusual entry yang aku nampak, tak sepatutnya ada dalam startup entry ..
    ko tak bagi detail "benda" tu, pop-up ke apa ke ...

    punyanya.. aku ade surf web bla bla bla bla
    sbb dkt sane mcm2 ada..
    then bila aku click link dlm list tuh..
    tk pasal2 kuar pop-up..
    then antivirus aku trus menjerit..
    so aku terus la delete virus tu..
    bila aku delete jer..
    antivirus aku trus menjerit sepanjang mase..
    lagi aku delete.. lagi menjerit..

    johnburn
    Moderators
    Moderators

    Gender : Male Number of posts : 755
    Location : Terengganu
    Registration date : 07/03/2009

    Re: minta tolong

    Post by johnburn on Wed Sep 23, 2009 3:40 pm

    mmg bgus nk tlg tp kne lengkapkn diri dgn kefahaman untk apa yg kte nk tlg tu.
    terutamanya ttg penggunaan tool2 ni. aku tgk rmai yg suggest soh pkai tool itu la ini la tnpa tau fungsi tool tersebut. ada antara tool2 (seperti combofix) bleh merosakkan sistem jika slah pkai. bg yg btol2 ingin membntu korg bleh mendpt training penggunaan hijackthis dan tools len dr site2 sperti bleepingcomputer dan spywareinfoforum. diorg ada sedia bootcamp untk jd helper dan mengajar penggunaan tool2 ni suma beserta ngan test lg.
    sekadar berkongsi. slamat hari raya Smile


    --------------------------------------------

    tahukah kamu saat kamu menangis
    adalah air mata ku yang jatuh berlinang
    tahukah kamu saat kamu tersakiti
    adalah aku yang pertama terluka
    Jangan Klik

    e_sentinel
    Ahli Baharu
    Ahli Baharu

    Number of posts : 479
    Registration date : 02/03/2009

    Re: minta tolong

    Post by e_sentinel on Wed Sep 23, 2009 3:55 pm

    Aaaa .. ok .. x banyak membantu .. at least, kasi petunjuk dari sekadar menunjuk .. macam "Guru" yang sebelum ni??

    Ok2 .. sorry .. sign off.

    johnburn
    Moderators
    Moderators

    Gender : Male Number of posts : 755
    Location : Terengganu
    Registration date : 07/03/2009

    Re: minta tolong

    Post by johnburn on Wed Sep 23, 2009 4:04 pm

    e_sentinel wrote:Aaaa .. ok .. x banyak membantu .. at least, kasi petunjuk dari sekadar menunjuk .. macam "Guru" yang sebelum ni??

    Ok2 .. sorry .. sign off.
    oleh kerana TS dh setelkn problem dia dgn format n forum ni pn xda mod yg pantau sgt, so aku nk off topic jap hehe

    Guru mana ko mksdkn ni? dia menunjuk cmna?


    --------------------------------------------

    tahukah kamu saat kamu menangis
    adalah air mata ku yang jatuh berlinang
    tahukah kamu saat kamu tersakiti
    adalah aku yang pertama terluka
    Jangan Klik

    makora
    Ahli Baharu
    Ahli Baharu

    Gender : Male Number of posts : 48
    Age : 34
    Location : Johore
    Job/hobbies : Tooling Technician & Sla 3d System
    Registration date : 20/03/2009

    Re: minta tolong

    Post by makora on Wed Sep 23, 2009 4:14 pm

    johnburn wrote:
    e_sentinel wrote:Aaaa .. ok .. x banyak membantu .. at least, kasi petunjuk dari sekadar menunjuk .. macam "Guru" yang sebelum ni??

    Ok2 .. sorry .. sign off.
    oleh kerana TS dh setelkn problem dia dgn format n forum ni pn xda mod yg pantau sgt, so aku nk off topic jap hehe

    Guru mana ko mksdkn ni? dia menunjuk cmna?

    aku terpaksa format..
    sbb aku nk surf pun tk boleh..
    ie,chorme,firefox semua hilang..

    e_sentinel
    Ahli Baharu
    Ahli Baharu

    Number of posts : 479
    Registration date : 02/03/2009

    Re: minta tolong

    Post by e_sentinel on Wed Sep 23, 2009 5:08 pm

    johnburn wrote:
    e_sentinel wrote:Aaaa .. ok .. x banyak membantu .. at least, kasi petunjuk dari sekadar menunjuk .. macam "Guru" yang sebelum ni??

    Ok2 .. sorry .. sign off.
    oleh kerana TS dh setelkn problem dia dgn format n forum ni pn xda mod yg pantau sgt, so aku nk off topic jap hehe

    Guru mana ko mksdkn ni? dia menunjuk cmna?

    Hmmm .. lupakan lah .. haha .. tadi aku tersedak lemang, tu yang merapu sikit tue .. mai makan, berlambak lagi nih .. Very Happy

    Sponsored content

    Re: minta tolong

    Post by Sponsored content Today at 10:59 am


      Current date/time is Sat Dec 10, 2016 10:59 am