C-Fu 0 Report post Posted November 21, 2004 haha padan muke ako pi travel takleh tolong bile nak pos hijackthis, yang ko kene make sure adalah1. save hijackthis kat dalam satu folder, bukan kat temporary file.2. tutup SEMUA window, tak kira window biasa atau window IE. pasal kalo ko nak try remove nanti pasal window tu bukak, most probably spyware akan datang balek.pos balik hijackthis, meh ako check Share this post Link to post Share on other sites
civ3 9 Report post Posted November 21, 2004 ahakz!!! akhirnye C-Fu dah sampai utk menolong...... Share this post Link to post Share on other sites
BigBurn 0 Report post Posted November 21, 2004 cuba guna Ad-aware dengan Spybot Search and Destroy...scan dari save mode.... Share this post Link to post Share on other sites
cdR 0 Report post Posted November 22, 2004 ad aware first skali aku pakai. tapi nampaknya yg die degil skit.. aku kat ofis nie semalam sehari beraya so x bukak putera. Nanti aku balik aku buat. Share this post Link to post Share on other sites
man2 0 Report post Posted November 22, 2004 download je la adaware yang baru cdR, dah sure enjin dan patern adalah yg terbaru.. so ok le tuh.. sebelum guna adaware.. ko pi download fail CWShredder.exe kat internet.. search le kat enjin..scan pakai tu dulu..pastu download fail guna adaware.. huhu.. ok cun la lepas tuh!! Share this post Link to post Share on other sites
cdR 0 Report post Posted November 22, 2004 download je la adaware yang baru cdR, dah sure enjin dan patern adalah yg terbaru.. so ok le tuh.. sebelum guna adaware.. ko pi download fail CWShredder.exe kat internet.. search le kat enjin..scan pakai tu dulu..pastu download fail guna adaware.. huhu.. ok cun la lepas tuh!!←2 2 tu aku dah buat. dah diterangkan pun kat atas. Share this post Link to post Share on other sites
cdR 0 Report post Posted November 22, 2004 (edited) Sebelum Fix CheckedLogfile of HijackThis v1.98.2Scan saved at 7:00:15 PM, on 11/22/2004Platform: Windows XP (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 (6.00.2600.0000)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\System32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\Explorer.EXEC:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeC:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXEC:\WINDOWS\System32\winsysec.exeC:\Program Files\Yahoo!\Messenger\ypager.exeC:\WINDOWS\System32\xkagale.exeC:\Program Files\interMute\SpySubtract\SpySub.exeC:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exeC:\WINDOWS\System32\wuauclt.exeC:\Program Files\Yahoo Message Archive Decoder\yahoodecode-cracked by norouzi.exeC:\Program Files\HijackThis\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://find-on-the-net.com/search.htmR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.couldnotfind.com/search_page.ht...count_id=138770R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://web-searcher.infoR1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.couldnotfind.com/search_page.ht...count_id=138770R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://web-searcher.infoR3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)O2 - BHO: BHObj Class - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - C:\WINDOWS\nem220.dllO2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_5_7_0.dllO2 - BHO: IE Search Toolbar Helper - {2C5175A2-ADF3-4F57-AB70-BA90FD60A383} - C:\Program Files\IESearchToolbar\IESearchToolbar.dllO2 - BHO: BAHelper Class - {A3FDD654-A057-4971-9844-4ED8E67DBBB8} - C:\Program Files\SideFind\sfbho.dllO2 - BHO: ADP UrlCatcher Class - {F4E04583-354E-4076-BE7D-ED6A80FD66DA} - C:\WINDOWS\System32\msbe.dllO3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocxO3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_5_7_0.dllO3 - Toolbar: IE Search Toolbar - {EB381422-F797-4A98-A266-9DC490821907} - C:\Program Files\IESearchToolbar\IESearchToolbar.dllO3 - Toolbar: ISTbar - {5F1ABCDB-A875-46c1-8345-B72A4567E486} - C:\Program Files\ISTbar\istbar.dllO4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeO4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\NeroCheck.exeO4 - HKLM\..\Run: [EPSON Stylus C61 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C61 Series" /O6 "USB001" /M "Stylus C61"O4 - HKLM\..\Run: [pcsec] C:\WINDOWS\System32\winsysec.exeO4 - HKLM\..\Run: [iST Service] C:\Program Files\ISTsvc\istsvc.exeO4 - HKLM\..\Run: [internet Optimizer] "C:\Program Files\Internet Optimizer\optimize.exe"O4 - HKLM\..\Run: [sais] c:\program files\180solutions\sais.exeO4 - HKLM\..\Run: [bullsEye Network] C:\Program Files\BullsEye Network\bin\bargains.exeO4 - HKLM\..\Run: [sfopsjif] C:\WINDOWS\sfopsjif.exeO4 - HKLM\..\Run: [Power Scan] C:\Program Files\Power Scan\powerscan.exeO4 - HKLM\..\Run: [WebRebates0] "C:\Program Files\Web_Rebates\WebRebates0.exe"O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /backgroundO4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quietO4 - HKCU\..\Run: [JavaUpdate0.07] C:\WINDOWS\System32\xkagale.exeO4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exeO4 - Global Startup: SpySubtract.lnk = C:\Program Files\interMute\SpySubtract\SpySub.exeO8 - Extra context menu item: Web Rebates - file://C:\Program Files\Web_Rebates\Sy1150\Tp1150\scri1150a.htmO9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} - C:\Program Files\SideFind\sidefind.dllO9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dllO9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dllO16 - DPF: {386A771C-E96A-421F-8BA7-32F1B706892F} (Installer Class) - http://www.xxxtoolbar.com/ist/softwares/v4.0/0006_cracks.cabO16 - DPF: {4418DD4D-7265-4C32-BC0A-3FDB3C2DA938} (Protecter Class) - http://www.xxxtoolbar.com/ist/softwares/v3...ect_regular.cabO17 - HKLM\System\CCS\Services\Tcpip\..\{0F74DD07-A6CF-4B14-B7A2-117BC2A30E89}: NameServer = 202.188.1.5,202.188.0.132O17 - HKLM\System\CS1\Services\Tcpip\..\{0F74DD07-A6CF-4B14-B7A2-117BC2A30E89}: NameServer = 202.188.1.5,202.188.0.132O17 - HKLM\System\CS2\Services\Tcpip\..\{0F74DD07-A6CF-4B14-B7A2-117BC2A30E89}: NameServer = 202.188.1.5,202.188.0.132lepas tu aku del yg nie R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://find-on-the-net.com/search.htmR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.couldnotfind.com/search_page.ht...count_id=138770R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://web-searcher.infoR1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.couldnotfind.com/search_page.ht...count_id=138770R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://web-searcher.infoR3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)pastu aku restart. lepas restart yg nie ader balik.R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://find-on-the-net.com/search.htmR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://web-searcher.infoader yg aku miss ke.. Edited November 22, 2004 by cdR Share this post Link to post Share on other sites
cdR 0 Report post Posted November 22, 2004 update:lepas tu aku del balik n restart pastu scan pakai Ad Aware Se ngan SpySubtract. resultnya..Ad Aware : 142 New Critical ObjectSpySubtract : 26 Newpadahal aku baru je scan tadi.. perghh dah jadi ladang ternak spyware ke pc aku nie. Share this post Link to post Share on other sites
civ3 9 Report post Posted November 22, 2004 huhuhu...sabar jealah cdR...nanti adelah solutions kpd masalah kau tu.... Share this post Link to post Share on other sites
XIJMX 0 Report post Posted November 22, 2004 (edited) ko dah disable system restore blom? kalau belom sila Disable dulu!masuk safe mode dan pegi kat Add/Remove Program dan uninstall menda ni (kalo ada salah satu):Win CommInternet OptimizerWebRebatesWhenUSearchBullsEye NetworkWhenUSavepastu run hijackThis dan tanda ni (pastikan window lain tutup) dan fixed:C:\WINDOWS\System32\xkagale.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://find-on-the-net.com/search.htmR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.couldnotfind.com/search_page.ht...count_id=138770R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://web-searcher.infoR1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.couldnotfind.com/search_page.ht...count_id=138770R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://web-searcher.infoR3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)O2 - BHO: BHObj Class - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - C:\WINDOWS\nem220.dllO2 - BHO: IE Search Toolbar Helper - {2C5175A2-ADF3-4F57-AB70-BA90FD60A383} - C:\Program Files\IESearchToolbar\IESearchToolbar.dllO2 - BHO: BAHelper Class - {A3FDD654-A057-4971-9844-4ED8E67DBBB8} - C:\Program Files\SideFind\sfbho.dllO2 - BHO: ADP UrlCatcher Class - {F4E04583-354E-4076-BE7D-ED6A80FD66DA} - C:\WINDOWS\System32\msbe.dllO3 - Toolbar: IE Search Toolbar - {EB381422-F797-4A98-A266-9DC490821907} - C:\Program Files\IESearchToolbar\IESearchToolbar.dllO3 - Toolbar: ISTbar - {5F1ABCDB-A875-46c1-8345-B72A4567E486} - C:\Program Files\ISTbar\istbar.dllO4 - HKLM\..\Run: [iST Service] C:\Program Files\ISTsvc\istsvc.exeO4 - HKLM\..\Run: [internet Optimizer] "C:\Program Files\Internet Optimizer\optimize.exe"O4 - HKLM\..\Run: [sais] c:\program files\180solutions\sais.exeO4 - HKLM\..\Run: [bullsEye Network] C:\Program Files\BullsEye Network\bin\bargains.exeO4 - HKLM\..\Run: [sfopsjif] C:\WINDOWS\sfopsjif.exeO4 - HKLM\..\Run: [Power Scan] C:\Program Files\Power Scan\powerscan.exeO4 - HKLM\..\Run: [WebRebates0] "C:\Program Files\Web_Rebates\WebRebates0.exe"O4 - HKCU\..\Run: [JavaUpdate0.07] C:\WINDOWS\System32\xkagale.exeO8 - Extra context menu item: Web Rebates - file://C:\Program Files\Web_Rebates\Sy1150\Tp1150\scri1150a.htmO9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} - C:\Program Files\SideFind\sidefind.dllO16 - DPF: {386A771C-E96A-421F-8BA7-32F1B706892F} (Installer Class) - http://www.xxxtoolbar.com/ist/softwares/v4.0/0006_cracks.cabO16 - DPF: {4418DD4D-7265-4C32-BC0A-3FDB3C2DA938} (Protecter Class) - http://www.xxxtoolbar.com/ist/softwares/v3...ect_regular.cabkemudian masuk safe mode dan buang semua file/folder ni:C:\WINDOWS\nem220.dllC:\Program Files\IESearchToolbar\C:\Program Files\SideFind\C:\WINDOWS\System32\msbe.dllC:\Program Files\ISTbar\C:\Program Files\ISTsvc\C:\Program Files\Internet Optimizer\c:\program files\180solutions\C:\Program Files\BullsEye Network\C:\Program Files\Power Scan\C:\WINDOWS\sfopsjif.exeC:\Program Files\Web_Rebates\C:\WINDOWS\System32\xkagale.exeC:\Program Files\SideFind\dan kemudian masuk c:\windows\temp pastu select all dan delete dan jgk masuk C:\Documents and Settings\<username-ko>\Local Settings\Temp pastu select all dan delete...empty recycle binok pastu restart dan scan balik paste log file yg baru... Edited November 22, 2004 by XIJMX Share this post Link to post Share on other sites
C-Fu 0 Report post Posted November 22, 2004 (edited) also jangan lupa untuk start>run>cmdpastu taip regsvr32 /u namafail.dllprobably ko takkan dapat nak delete file2 macam msbe.dll sebelum ko regsvr32.dll dulu, dan make sure buat semua keje2 scanning dan deleting dalam safe mode.or just gune spybot? apsal tanak gune spybot? Edited November 22, 2004 by C-Fu Share this post Link to post Share on other sites
civ3 9 Report post Posted November 23, 2004 huhuhu...akhirnye setelah sekian lame...Ie aku akhirnye telah dihijack jua pd hari nie....huhuhu.....spyware aureatepastuh aku dah buang spyware tuh...tetapi masalahneyr font aku kat Ie tuh jadi besau-besau lak.....tgk kat sini lakssshuhuhu...menyampah nak pakai Ie nie.... Share this post Link to post Share on other sites
muffinxe 0 Report post Posted November 23, 2004 salam..hmmm, setahu aku kalau guna adware 6.0 okey tuh, but before use it better ko update dulu file file nyakalau x berjaya juga gunakan spybot (serach n destroy), penggunaan sama jugak..kalau x berjaya juga, ko guna hijack tadi, tapi masalahnya ko kena ler cari apa file file yang curious tuh, tapi dalam penggunaan hujack ni susah sikit sbb ianya akan melambakl lambakan lagi dll file sbb kita tak tahu info software yang kita delete tuh..aku rasa bagus kalau ko cuba guna autorun utility sbb ko ianya ada info software yang kita nak delete, dan boleh terus check sampai terus ke registry.. Share this post Link to post Share on other sites
cdR 0 Report post Posted November 23, 2004 ok boss. thanks all. balik karang aku buat. Share this post Link to post Share on other sites
cdR 0 Report post Posted November 23, 2004 ok, aku dah buat sebijik aper yg korang suruh buat. dan resultnya..Logfile of HijackThis v1.98.2Scan saved at 9:10:00 PM, on 11/23/2004Platform: Windows XP (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 (6.00.2600.0000)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\System32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\Explorer.EXEC:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeC:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXEC:\WINDOWS\System32\winsysec.exeC:\Program Files\Yahoo!\Messenger\ypager.exeC:\Program Files\interMute\SpySubtract\SpySub.exeC:\WINDOWS\System32\wuauclt.exeC:\WINDOWS\System32\wuauclt.exeC:\Program Files\HijackThis\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://find-on-the-net.com/search.htmR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://web-searcher.infoO2 - BHO: (no name) - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - (no file)O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_5_7_0.dllO3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocxO3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_5_7_0.dllO4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeO4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\NeroCheck.exeO4 - HKLM\..\Run: [EPSON Stylus C61 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C61 Series" /O6 "USB001" /M "Stylus C61"O4 - HKLM\..\Run: [pcsec] C:\WINDOWS\System32\winsysec.exeO4 - HKLM\..\Run: [sfopsjif] C:\WINDOWS\sfopsjif.exeO4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /backgroundO4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quietO4 - HKCU\..\Run: [JavaUpdate0.07] C:\WINDOWS\System32\xkagale.exeO4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exeO4 - Global Startup: SpySubtract.lnk = C:\Program Files\interMute\SpySubtract\SpySub.exeO9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dllO9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dllO17 - HKLM\System\CCS\Services\Tcpip\..\{0F74DD07-A6CF-4B14-B7A2-117BC2A30E89}: NameServer = 202.188.1.5,202.188.0.132O17 - HKLM\System\CS1\Services\Tcpip\..\{0F74DD07-A6CF-4B14-B7A2-117BC2A30E89}: NameServer = 202.188.1.5,202.188.0.132O17 - HKLM\System\CS2\Services\Tcpip\..\{0F74DD07-A6CF-4B14-B7A2-117BC2A30E89}: NameServer = 202.188.1.5,202.188.0.132MENATANG TU KUAR LAGI SIOT. ARGGGGGGGGGGG....C-fu, aku try spybot lak lepas nie. Share this post Link to post Share on other sites
badai_707 0 Report post Posted November 24, 2004 hoho .. ko nih leh jadi penternak adware yang berjaya la.. ko pakai win yang origenel ke yang pirated?kalu yang ori ko update service pack then update windows. pas tu ko tutup semua ie, run hijackthis. untuk menyedapkan rasanya masukkan norton, activekan spyware+adware scan. klu ko pakai yang cetak rompak susah sikit sebab windows security tak leh update.ko cari yang [biskut tawar] nyer la Share this post Link to post Share on other sites
man2 0 Report post Posted November 24, 2004 ko agaknya rajin masuk laman web xxx kot.. huhuhu... takpun ko suke download jadah kadah software free and install dalam pc ko!!sebab tu le ko sememangnya penternak berjaya tahap cipan!! Share this post Link to post Share on other sites
BigBurn 0 Report post Posted November 24, 2004 CDR...kau scan dalam mode apa?...normal ke safe mode?...kalau kau buat dalam normal, try buat dalam safe mode lak....run kan utilities yg kau pakai sebelum nie... Share this post Link to post Share on other sites
suriasah_putera 0 Report post Posted November 24, 2004 Dulu CEO aku kena gak mcm nih....anak dia yg main...ape yg aku buat, scan registry dia jer...pas2, delete jer ape2 perkataan yg kuar tuh...mcm ko nyer, aku find "searcher"so, aku delete jer....tp, aku delete file .dll gak...biasa kalau ko launch IE, kuar web yg ko menyampah tu...URL dia mesti ada mcm.... ......com/&...=benci.dllko search file dll tuh dlm registry...pastu delete....pastuh dlm OS, search gak file .dll tu...delete gak....make sure guna safe mode....kalo ko nak ternak gak, bagus tu....hahahaha... Share this post Link to post Share on other sites
cdR 0 Report post Posted November 24, 2004 CDR...kau scan dalam mode apa?...normal ke safe mode?...kalau kau buat dalam normal, try buat dalam safe mode lak....run kan utilities yg kau pakai sebelum nie...←safe mode. still da same. Share this post Link to post Share on other sites
mus3na 5 Report post Posted November 24, 2004 Howto make your Internet Explorer more secureSeperti biasa, IE merupan antara product microsoft yg paling banyak menerima serangan dari dunia internet, samaada serangan berbentuk cookies, script mahupun vulnerability. Oleh itu setting yg betul adalah perlu untuk menambah kekuatan IE anda. Tips yg diberikan dibiwah hanyalah sekadar cadangan tiada sebarang paksaan dari author supaya setiap reader menggunakan settings ininak more detail masuk web akuhttp://www.microetech.com/softwares/tunesp2.htm Share this post Link to post Share on other sites
potong 0 Report post Posted November 25, 2004 ko nyer log file analysis:http://www.hijackthis.de/logfiles/f826f7b4...18e3ca88af.htmlcheck le memaner yg nasty / unknown tu,okies~ Share this post Link to post Share on other sites
cdR 0 Report post Posted November 28, 2004 camne ko check... thanks. Share this post Link to post Share on other sites
DarkWan 3 Report post Posted November 28, 2004 ko run HijackThis .. pastu ko masuk http://www.hijackthis.de/paste logfile dlm textbox atau locate logfile tu dan tekan analyze. Share this post Link to post Share on other sites
tokancs 0 Report post Posted December 1, 2004 Akum. Minta maaf la. Saya orang baru kat sini . Tapi, cuma nak berkongsi² pengetahuan. Kalau ada salah, sila betulkan yek .Sebenarnya, perkara nie pernah terjadi kat saya. Kalau anda menggunakan platform windows 98, cuba tekan ctrl + alt + del . Pastu, cuba tengok senarai program yang dilistkan. Kalau ada saper² perasan, ada nama program asing seperti "age", "over" dan sebagainya. Hahhhhh, itu disyaki program yang telah tertanam dlm komputer. Program tu selalunya di 'generate' setiap kali start up komputer. Cuba run kan program Ad-aware Professional SE. Kalau dia dapat detect file, delete kan fail tersebut. Cuba camkan nama program tersebut, (selalunya file berbentuk format *.EXE). Kemudian search fail tersebut dlm hardisk anda. Kalau masih ada lagi fail tersebut, (kemungkinan dalam folder WINDOWS), cuba delete kan fail tersebut. Kalau takleh gak, delete guna bios. Tapi, hati-hati la.....Kekadang, secara tak sengaja, kita tgah surfing, ada la pulak pop-up keluar suruh install tahapekemendetah. Pastu, kena jangkit. Selalunya jugak ada program sebagai DIALER utk generate program tu. Kita tgah syok² surfing, tetiba bertukar ke web lucah pulak. Kan ke pelik tu.So, apa yang aku syorkan, guna browser firefox, install Ad-Aware dan antivirus. Kalau nak guna IE, hati-hati kalau ada suruh download program. So, itu jer... ader saper-saper nak betulkan ker???? hehehehehehhee . Sori banyak beleter... hek hek hek Share this post Link to post Share on other sites