Tuan Mazwan Misbah 0 Report post Posted October 31, 2007 virus baru masuk kat dlm pendrive........kav x dpt detect lg r Quote Share this post Link to post Share on other sites
matthew.says 0 Report post Posted October 31, 2007 sample? Quote Share this post Link to post Share on other sites
mfaizul89 3 Report post Posted October 31, 2007 aper name virus tue...? Quote Share this post Link to post Share on other sites
Tuan Mazwan Misbah 0 Report post Posted November 3, 2007 matthew...aku xda sample....aku xtau mcm mane nk bg kat korang sample tu.....nama virus aku xtau......tapi bila masuk pendrive....akan kuar nama knight.....klik kanan pada ikon pendrive tersebut....akan terpapar la 2 benda yg menggunakan nama knight....benda tu mcm satu utiliti r untuk virus tuaku mmg konfem knight tu virus r...pasal icon dia kuar icon len...bkn ikon pendrive yg biasa Quote Share this post Link to post Share on other sites
baok 0 Report post Posted November 3, 2007 pencipta Knight Diskcara nak buang Knight Disk Quote Share this post Link to post Share on other sites
METENA 0 Report post Posted November 3, 2007 Haha.... idea menarik eh?Nak membantu tapi bawak masalah ya?Or memang idea asal ialah nak buat virus?Huhu...Geli hati baca artikel tu. :lol: Ada ker software nak protect dari virus tiba2 jadi virus....huhu....Terima kasih kat baok..... Quote Share this post Link to post Share on other sites
Impreza_2004 0 Report post Posted December 13, 2007 info dari precisesecurity:Disk Knight:Category: Unwanted Program, ThreatsDisk Knight is a rogue security application that spreads via removable media storage. It can monitor system activity.Other Alias:Virus.Win32.autorun.fbThreat Level: LowSystems Affected:Windows - All Quote Share this post Link to post Share on other sites
swatman 0 Report post Posted December 14, 2007 aku dah kene virus ni dahaku pakai karspersky 6.0 ... detect jer ..pastu aku pakai GVR 4 beta yang aponie syorkan... ok gak...tapi bila dah clean bende ni... aku nyer folder dalam pendrive sumer jadi hidden... nak xnak /..... aku kene show hidden... then copy n waty folder baru.... i thiink kalo der bende leh fix bende ni .. lagi bagus arrrr Quote Share this post Link to post Share on other sites
funtasie 0 Report post Posted December 14, 2007 virus baru masuk kat dlm pendrive........kav x dpt detect lg rko blh cleane gune autorun eater..download kat cni..http://oldmcdonald.wordpress.com/ko kne download autorun eater 1 dgn 2..install 1 dulu bru install 2..blh clean disk knight n seangkatan dgn nye..aku pon gune benda ni jer...good luck... Quote Share this post Link to post Share on other sites
swatman 0 Report post Posted December 14, 2007 aku dah try donlot eater tu xleh ponnn Quote Share this post Link to post Share on other sites
zareight 7 Report post Posted December 15, 2007 dulu avg xdetect virus ni...skrg baru leh detect..lambatnye.. Quote Share this post Link to post Share on other sites
TonikCapGajah2013 175 Report post Posted December 16, 2007 NOD32 dapat detect dan clean Quote Share this post Link to post Share on other sites
mfaizul89 3 Report post Posted December 17, 2007 NOD32 dapat detect dan cleanBro powertongkatali leh x bg dier punyer 'biskut lemak' tue...plez... emel neh...[email protected]thanks a lot... Quote Share this post Link to post Share on other sites
dzul89 0 Report post Posted December 17, 2007 dah lame dah bende virus nie ... aku dah kasi dulu dia punya source ... eheemm... dak banglades university yg buat .. mula2 nak tolong org . lepastu jadi virus .. huhuhu... kadang2 all aplikasi takbleh guna ... dia kena bagai av nak buang .. kalau korunk try buang kat icon kat jam tu .. nanti lepastu semua apps takbelh bukak... aku dah penah kena ... huhuhu diharap ader update new av ok Quote Share this post Link to post Share on other sites
dzul89 0 Report post Posted December 17, 2007 dah lame dah bende virus nie ... aku dah kasi dulu dia punya source ... eheemm... dak banglades university yg buat .. mula2 nak tolong org . lepastu jadi virus .. huhuhu... kadang2 all aplikasi takbleh guna ... dia kena bagai av nak buang .. kalau korunk try buang kat icon kat jam tu .. nanti lepastu semua apps takbelh bukak... aku dah penah kena ... huhuhu diharap ader update new av ok Quote Share this post Link to post Share on other sites
zareight 7 Report post Posted December 17, 2007 sampai 2posting ko pos..isk3...neway byk av da detek da virus tu...so,xda hal lar.. Quote Share this post Link to post Share on other sites
Impreza_2004 0 Report post Posted December 17, 2007 ko lagi la..sampai 4 post..hehehe..tapi aku rasa semo av da leh detect...just update.. .. Quote Share this post Link to post Share on other sites
zareight 7 Report post Posted December 17, 2007 ko lagi la..sampai 4 post..hehehe..tapi aku rasa semo av da leh detect...just update.. ..tadik hang siot..tekan byk2 kali..xsangke 4post.. xpe2..aku da remove..sorry off topic.. Quote Share this post Link to post Share on other sites
Impreza_2004 0 Report post Posted December 17, 2007 tadik hang siot..tekan byk2 kali..xsangke 4post.. xpe2..aku da remove..sorry off topic..hang??..pc ko ke web ni hang?..ooo..mungkin web ni la hang..yer la kekadang tu aku masuk je tetiba kuar msg ips error..lak da..kekadang tu kuar lak connection false.. ...tak pe..kesilapan kecil je tu ... Quote Share this post Link to post Share on other sites
zareight 7 Report post Posted December 17, 2007 web le hang... Quote Share this post Link to post Share on other sites
TonikCapGajah2013 175 Report post Posted December 17, 2007 Bro powertongkatali leh x bg dier punyer 'biskut lemak' tue...plez... emel neh...[email protected]thanks a lot...Apasal aku tak leh PM ko? Quote Share this post Link to post Share on other sites
atomic98 1 Report post Posted December 18, 2007 AVIRA tak dapat detect Knight.exe lagih...huhuhuhu... Quote Share this post Link to post Share on other sites
Impreza_2004 0 Report post Posted December 18, 2007 web le hang... heheh...selalu sangat web hang...heheh Quote Share this post Link to post Share on other sites
nalzar_04 0 Report post Posted December 18, 2007 tolong check hijack nie blh bro...computer wa maslah la.Logfile of Trend Micro HijackThis v2.0.2Scan saved at 12:20:38 PM, on 12/18/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\Ati2evxx.exeC:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exeC:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.exeC:\Program Files\Unlocker\UnlockerAssistant.exeC:\WINDOWS\RTHDCPL.EXEC:\Program Files\ATI Technologies\ATI.ACE\CLI.EXEC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\WINDOWS\vsnp2std.exeC:\WINDOWS\AcerOrbiCam.exeC:\Program Files\Common Files\Symantec Shared\ccApp.exeC:\Program Files\Bargain Buddy\bin\bargains.exeC:\WINDOWS\SYSTEM32\BrO_AcT.exeC:\Program Files\Messenger\msmsgs.exeC:\Program Files\ClockSync\Sync.exeC:\Program Files\Eraser\eraser.exeC:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exeC:\Program Files\Voobys\Voobys.exeC:\DOCUME~1\BLACKP~1\LOCALS~1\Temp\RtkBtMnt.exeC:\PROGRA~1\Grisoft\AVG7\avgamsvr.exeC:\PROGRA~1\Grisoft\AVG7\avgupsvc.exeC:\PROGRA~1\Grisoft\AVG7\avgemc.exeC:\Program Files\Norton AntiVirus\navapsvc.exeC:\Program Files\Norton AntiVirus\IWP\NPFMntor.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXEc:\progra~1\exact\exactupdate.exeC:\Program Files\ATI Technologies\ATI.ACE\cli.exeC:\Program Files\ATI Technologies\ATI.ACE\cli.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Documents and Settings\Black Parade\Local Settings\Temporary Internet Files\Content.IE5\KJHJQUFX\hijackthis[1].exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/F2 - REG:system.ini: Shell=Explorer.exe "C:\WINDOWS\default__.pif"O2 - BHO: MyWay Search Assistant BHO - {04079851-5845-4dea-848C-3ECD647AA554} - C:\Program Files\MyWay\SrchAstt\1.bin\MYSRCHAS.DLLO2 - BHO: myBar BHO - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLLO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dllO2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dllO2 - BHO: NavHelper Class - {C1E58A84-95B3-4630-B8C2-D06B77B7A0FC} - C:\Program Files\NavExcel\NavHelper\v2.0.4\NHelper.dllO2 - BHO: Url Catcher - {CE31A1F7-3D90-4874-8FBE-A5D97F8BC8F1} - C:\Program Files\Bargain Buddy\bin\apuc.dllO2 - BHO: eXact Browser Companion - {F9765480-72D1-11D4-A75A-004F49045A87} - C:\Program Files\eXact\eXactToolbar.dllO3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dllO3 - Toolbar: My &Search Bar - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLLO3 - Toolbar: &eXact Toolbar - {224530A0-C9CB-4AEE-9C0F-54AC1B533211} - C:\Program Files\eXact\eXactToolbar.dllO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dllO4 - HKLM\..\Run: [unlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe -HO4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXEO4 - HKLM\..\Run: [skyTel] SkyTel.EXEO4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXEO4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exeO4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exeO4 - HKLM\..\Run: [iNPROCOMMWireless] C:\Program Files\Atheros\Wireless\Utility\WlanUtil.exeO4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exeO4 - HKLM\..\Run: [Acer OrbiCam] C:\WINDOWS\AcerOrbiCam.exeO4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exeO4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUPO4 - HKLM\..\Run: [bargains] C:\Program Files\Bargain Buddy\bin\bargains.exeO4 - HKLM\..\Run: [system] C:\WINDOWS\SYSTEM32\BrO_AcT.exeO4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /backgroundO4 - HKCU\..\Run: [ClockSync] C:\Program Files\ClockSync\Sync.exe /qO4 - HKCU\..\Run: [WhenUSave] "C:\Program Files\Save\Save.exe"O4 - HKCU\..\Run: [Eraser] C:\Program Files\Eraser\eraser.exe -hideO4 - HKCU\..\Run: [svchost] C:\WINDOWS\SYSTEM32\WIN06V5\svchost.exeO4 - HKCU\..\Run: [kava] C:\WINDOWS\system32\kavo.exeO4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exeO4 - HKUS\S-1-5-19\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\Run: [msnsc] C:\WINDOWS\system32\msnsc.exe (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-20\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background (User 'NETWORK SERVICE')O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'NETWORK SERVICE')O4 - HKUS\S-1-5-18\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background (User 'Default user')O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exeO4 - Global Startup: Voobys.lnk = ?O8 - Extra context menu item: &Dictionary - http://files.db3nf.com/scripts/ie.htmO8 - Extra context menu item: &Encyclopedia - http://files.db3nf.com/scripts/ie-e.htmO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLLO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dllO23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exeO23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exeO23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exeO23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exeO23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeO23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeO23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: KSD2Service - Unknown owner - C:\WINDOWS\system32\EXPL0RER.exe (file missing)O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exeO23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exeO23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXEO23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exeO23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exeO23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exeO23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe--End of file - 8836 bytes Quote Share this post Link to post Share on other sites
Impreza_2004 0 Report post Posted December 18, 2007 (edited) ko fix nie....F2 - REG:system.ini: Shell=Explorer.exe "C:\WINDOWS\default__.pif"O4 - HKCU\..\Run: [kava] C:\WINDOWS\system32\kavo.exeO4 - HKLM\..\Run: [system] C:\WINDOWS\SYSTEM32\BrO_AcT.exeso lagi satu..ko pakai av yg ne satu??..sampai 2 tapi tak dapat detect bro_act??...mmdan lagi satu yg nieO4 - HKCU\..\Run: [svchost] C:\WINDOWS\SYSTEM32\WIN06V5\svchost.exetapi yg nie ko de main ragnarok on9 ke??.. Edited December 19, 2007 by Impreza_2004 Quote Share this post Link to post Share on other sites
