minem 0 Report post Posted July 29, 2004 akum.. ader tak sape yg tahu pasal bende alah ni, camne nak buang? pc kawan aku pernah kena ngan bende ni.. hampir sume document word x leh buke fail2 mp3 pun kena gak.. antivirus pun x leh nak detect bende ni.. sesapa boleh tolong.. Quote Share this post Link to post Share on other sites
Lasiaf 0 Report post Posted July 30, 2004 ko pegi kat C:\windows@winnt\regedit.exe @ C:\windows@winnt\system32\regedit.exe.. tuka extension jadi regedit.pif.. pas tu gi klik... cari HKEY_CLASSES_ROOT\.exe check kat situ kalo bukan exefile cari menatang ni sampai dapat mhnfile ntah tak ingat.. gi kat situ..... alamak test SDAM nak start... ok... kalo nak senang ko try gi norton... blebla.j@b how to remove...exe,com,scr,pif,bat,cmd.... highest level extension... Quote Share this post Link to post Share on other sites
Power 0 Report post Posted July 30, 2004 (edited) hmmm nie worm.blebla @ seangkatan dengan nyer. memang payah ler kalu dah kena. panjang cite dia. kalu ko tak settle lagi, reply please.aku ada beberapa ekor worm jenis nie dalam cd. jaga ko. aku kerjakan ko malam nie. ==================== copy blue textREGEDIT4[HKEY_CLASSES_ROOT\rnjfile\DefaultIcon]@=""[HKEY_CLASSES_ROOT\rnjfile\shell\open\command]@=""[HKEY_CLASSES_ROOT\.exe]@="exefile"[HKEY_CLASSES_ROOT\.jpg]@="jpegfile"[HKEY_CLASSES_ROOT\.jpeg]@="jpegfile"[HKEY_CLASSES_ROOT\.jpe]@="jpegfile"[HKEY_CLASSES_ROOT\.bmp]@="Paint.Picture"[HKEY_CLASSES_ROOT\.gif]@="giffile"[HKEY_CLASSES_ROOT\.avi]@="avifile"[HKEY_CLASSES_ROOT\.mpg]@="mpegfile"[HKEY_CLASSES_ROOT\.mpeg]@="mpegfile"[HKEY_CLASSES_ROOT\.wmf]@=""[HKEY_CLASSES_ROOT\.wma]@=""[HKEY_CLASSES_ROOT\.wmv]@=""[HKEY_CLASSES_ROOT\.mp3]@="mpegfile"[HKEY_CLASSES_ROOT\.mp2]@="mpegfile"[HKEY_CLASSES_ROOT\.vqf]@=""[HKEY_CLASSES_ROOT\.doc]@="Word.Document.8"[HKEY_CLASSES_ROOT\.xls]@="Excel.Sheet.8"[HKEY_CLASSES_ROOT\.zip]@="WinZip"[HKEY_CLASSES_ROOT\.rar]@=""[HKEY_CLASSES_ROOT\.lha]@=""[HKEY_CLASSES_ROOT\.arj]@="WinZip"[HKEY_CLASSES_ROOT\.reg]@="regfile"=======================paste dalam Notepad dan simpan dengan nama worm.regdouble click fail worm.reg untuk edit fail system.dat (auto)restart computer.Amaran: Jangan lakukan jika anda tidak faham. Edited July 31, 2004 by Power Quote Share this post Link to post Share on other sites
minem 0 Report post Posted July 30, 2004 10q lasiaf.. tp aku tax paham la.. Quote Share this post Link to post Share on other sites
Power 0 Report post Posted July 31, 2004 Sekarang worm merebak diseluruh dunia, dan kebanyakan worm adalah script vb atau delphi yang dilampirkan bersama emel. apabila awak membuka emel, script akan execute.Script worm meminda fail SYSTEM.DAT yang berada dalam C:\Windows. Ini menyebabkan sistem PC telah dijangkiti virus.Sebab itulah kita kena BACKUP fail SYSTEM.DAT dan beberapa fail system lain dan disimpan didalam folder tertentu. Salah satu program yang boleh digunakan untuk backup/restore fail sistem ialah ERU. Quote Share this post Link to post Share on other sites
Lasiaf 0 Report post Posted August 3, 2004 (edited) ko pi copy text biru kat bawah ni pastu ko paste dalam notepad...ko save as sebagai akudanpower.bat kat desktop ke... memana je la...klik jangan tak klik... fail akudanpower.bat tu... @echo offren %windir%\regedit.exe regedit.pif@echo.REGEDIT4>BleBlaRemoV3r.reg@echo.>>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\rnjfile\DefaultIcon]>>BleBlaRemoV3r.reg@echo.@="">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\rnjfile\shell\open\command]>>BleBlaRemoV3r.reg@echo.@="">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.exe]>>BleBlaRemoV3r.reg@echo.@="exefile">>BleBlaRemoV3r.reg@echo.>>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.jpg]>>BleBlaRemoV3r.reg@echo.@="jpegfile">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.jpeg]>>BleBlaRemoV3r.reg@echo.@="jpegfile">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.jpe]>>BleBlaRemoV3r.reg@echo.@="jpegfile">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.bmp]>>BleBlaRemoV3r.reg@echo.@="Paint.Picture">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.gif]>>BleBlaRemoV3r.reg@echo.@="giffile">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.avi]>>BleBlaRemoV3r.reg@echo.@="avifile">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.mpg]>>BleBlaRemoV3r.reg@echo.@="mpegfile">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.mpeg]>>BleBlaRemoV3r.reg@echo.@="mpegfile">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.wmf]>>BleBlaRemoV3r.reg@echo.@echo.@="">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.wma]>>BleBlaRemoV3r.reg@echo.@="">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.wmv]>>BleBlaRemoV3r.reg@echo.@="">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.mp3]>>BleBlaRemoV3r.reg@echo.@="mpegfile">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.mp2]>>BleBlaRemoV3r.reg@echo.@="mpegfile">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.vqf]>>BleBlaRemoV3r.reg@echo.@="">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.doc]>>BleBlaRemoV3r.reg@echo.@="Word.Document.8">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.xls]>>BleBlaRemoV3r.reg@echo.@="Excel.Sheet.8">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.zip]>>BleBlaRemoV3r.reg@echo.@="WinZip">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.rar]>>BleBlaRemoV3r.reg@echo.@="">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.lha]>>BleBlaRemoV3r.reg@echo.@="">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.arj]>>BleBlaRemoV3r.reg@echo.@="WinZip">>BleBlaRemoV3r.reg@echo.[HKEY_CLASSES_ROOT\.reg]>>BleBlaRemoV3r.reg@echo.@="regfile">>BleBlaRemoV3r.reg%windir%\regedit /s BleBlaRemoV3r.reg@echo. This system was cleaned.....Greets. thanks power for your reg...@echo. please restart your computer.... @echo. my motto ke ke ..second... improve the first by -Lasiaf- pauseexit Edited August 3, 2004 by Lasiaf Quote Share this post Link to post Share on other sites
Lasiaf 0 Report post Posted August 3, 2004 kalo notepad ko tak leh bukak.... rename jadi notepad.pif...ko tau tak camne nak tgk extension tersembunyi?kalo tak tau... klik kat tool,folder option,view... ko nampak tak ade mark kat "hide file extension for known file type..." hilang kan mark tu pastu apply...buat cam kat atas... tu a sebab ramai orang kena virus atau worm... pokok pangkal IKON ....dah rename notepad copy,paste,saveas at last run kan script batch tu...semoga berjaya Quote Share this post Link to post Share on other sites
Power 0 Report post Posted August 3, 2004 (edited) kenapa nama fail akudanpower.bat? Hmmmm... bagus gak teknik ko faisal, salut. Edited August 3, 2004 by Power Quote Share this post Link to post Share on other sites
Lasiaf 0 Report post Posted August 5, 2004 apeĀ² koding yang aku ambik dari orang ... aku kena greets ... barula beretika...ambik pastu ngaku die buat tu 'lamer' namenye....ok a.. wei power aku nak bagi source W97.Asmah tapi aku attach kat e-mail die kate tak bleh clean punye virus.... siut McAfee...ok a malam ni aku datastruct... wish me goodluck my friend... terpaksa datang English... dah 4 kali tak datang....lastĀ² pensyarah plak tak datang...(betul ke ? petik mabuk je aku ni )tu aku ade kesempatan ni... (pemalas nak cari kelas) Quote Share this post Link to post Share on other sites
Power 0 Report post Posted August 5, 2004 aku dah ada cik asmah Quote Share this post Link to post Share on other sites