virus.virut.win32.n!tk

ekin_mache

ala..bengangnyer..da kali kdua kna virus ni..dulu da kna..kna format tanpa partiton da ok..tapi nak format tu susah..sampai 10 kali cuba  format..baru dpt..tapi kali ni..x leh format langsung da...wa..bengangnyer..caner ni erk..saya scan ngan a asquared free av ..dia da detect beratus virus virut ni membiak..dulu saya penah quarantine..terus kuar blank screen...skang ni ..x tau nak wat caner da..klo boleh format x per jugak..ni da x leh format ..parah tol..da ler tenet jadi slow cam gaban..

ekin_mache

Logfile of HijackThis v1.99.1
Scan saved at 10:58:10 AM, on 6/13/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20696)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\a-squared Free\a2free.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\ctfmon.exe
D:\installer\security installer\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [kava] C:\WINDOWS\system32\kavo.exe
O8 - Extra context menu item: Block frame with Ad Muncher - http://www.admuncher.com/request ... xbrowser=ie&exversion=1.0&pass=13569969&id=menu_ie_frame
O8 - Extra context menu item: Block image with Ad Muncher - http://www.admuncher.com/request ... xbrowser=ie&exversion=1.0&pass=13569969&id=menu_ie_image
O8 - Extra context menu item: Block link with Ad Muncher - http://www.admuncher.com/request ... xbrowser=ie&exversion=1.0&pass=13569969&id=menu_ie_link
O8 - Extra context menu item: Customize Menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Don't filter page with Ad Muncher - http://www.admuncher.com/request ... xbrowser=ie&exversion=1.0&pass=13569969&id=menu_ie_exclude
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Fill Forms - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request ... xbrowser=ie&exversion=1.0&pass=13569969&id=menu_ie_report
O8 - Extra context menu item: RoboForm Toolbar - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Save Forms - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O10 - Unknown file in Winsock LSP: c:\program files\common files\pc tools\lsp\pctlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\pc tools\lsp\pctlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\pc tools\lsp\pctlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\pc tools\lsp\pctlsp.dll
O11 - Options group: [INTERNATIONAL] International*
O11 - Options group: [TABS] Tabbed Browsing
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - Unknown owner - C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe (file missing)
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe

ekin_mache

quarantine dulu kot

roroPo

mna ko dapat virus ni?
time antiv detect ko x try delete file tu kat folder dia?

Lordraziel

cuba kurang kan surf web lucah huhu


ok. paling senang.. kasi clear semua

1. backup benda benda penting dalam komputer  awak
2. BOOT up setup window..  format hardrive awak.. kasi format semua sekali partition
3. install window
4. install antivirus
5. install firewall
6. install ape ape software yang nak guna
7. scan semua fail yang awak backup tadi. kalau ok copy balik masuk dalam pc
8. halang diri dari masuk website lucah.

dune1989

maknanya website lucah ni yang bikin banyak problem ek?

ekin_mache

aduh..bukan website lucah la...saya girl la..pendrive saya kna virus tu kat laptop adek saya..mulanya tu..tapi saya lupa nak delete virus tu..smalam da quarantine virus tu baru leh format..ari ni try format skali lagi..sbb semalam buat partition...lupa nak buang partiiton

ekin_mache

lklo firewall..firewall ape yg best erk..zone alarm erk..av lain x leh detect virus tu..cuma asquared jer leh detect..tapi asquared tu kna scan manual jer..klo virus nak masuk dia x leh detect..ape av yg power skang..yg boleh lawan virut ni

ekin_mache

virus tu sumer dok dalam window...x de dalam tempat lain..bila buang..terus blank

ekin_mache

ngantuknyer format pc smalam..punya banyak kali cuba..last2 baru leh format..ari ni format ag..nti ekin citer perkembangan ..da ok ker blom

ekin_mache

sblm ni ekin pakai pc tools..sbb dia ringan sikit..avast pon da berat sikit skang..lpas kna virus tu..av x leh install da..sumer program x leh install...cuma pakai ape yg ade lam tu jer..software yg ade kat pc ekin tu sumer yg dipakai jer..x banyak pon software..yg penting2 jer..

dune1989

ohh,yeke..
mane teman tau..
erm,gitu gaya ek virus2 itu..
tapi bangga woo same mike,,
ini la pompuan first time teman dengor gheti format laptop..

dune1989

ekin, spec komputer mike mcam mane?
takkan antivirus pon berat?

the latest one orang kata elok even saya..
Kaspersky Antivirus la..
dulu saya pakai version 7..
baik gak la..lama laptop tuh tak rosak sebab virus..
tapi skang dah kuar version 9..
mike beli yang internet security..
sebab kalau yang internet security ada banyak option utk sekat virus dari anti virus..

kalau harga Kaspersky Antivirus 9 tuh target dalam RM60
kalau harga Kaspersky Internet Security 9 target dlm RM80

saya syorkan yang RM80 nye..

ekin_mache

hehe..bukan laptop..pc jer..ekin bukan x suka pakai kasperky..tapi kasperky..berat..tahler..avira pon samer..ekind ok pakai avast ngan pc tools..pastu boh la a squared tu..utk scan normal jek.....

ekin_mache

ala kalo pasal spec ni ekinx  pandai nak tgk la..yg ekin tau pakai 2 gb..tp pc 2nd nyer..tu yg slow sikit kot..tapi benci la virus ni virut ..kna format tanpa partition..ilang sumer backup bookmark..installer nak kan download lain

ekin_mache

klo ekin jer men pc tu x pe la jugak..plg x ekin tau mane virus tu dtg..n cepat2 buang..tp abg ekin slalu men..dia malas nak kodek2..hehe..jadi terpaksa la ekin memeningkan kpala otak utk membuang virus tu..blom jumpa ag av yg boleh buang virus virut ni........klo x ..x yah la format..klo format jer ..ok x per..ni nak format pon x leh ..aduh..

ekin_mache

nak cuba dr web/reader_s.exe removal..ngan avg virut removal tool

ekin_mache

nak kna cuba buang ikut registry plak

dune1989

selalu kalau berat, spec ekin memang outdated dah..
ataupun memang dah banyak virus bebankan PC.
ataupun hard disk dah tak banyak space..

nak check spec leh right click kat my computer then click properties..

dune1989

kalau tak silap, avira yang latesnye ada nama virus ni..
avira pong the best gak..
try download kat www.avira.com