Archive for November, 2007

Check virus

Tuesday, November 27th, 2007

Tak pasti samada ada virus dalam PC korang? dan korang tak puas hati ngan antivirus yang ada… hmm.. apa kata korang try program RegRun Reanimator 5.5.923 utk check samada ada ke virus sedang berpesta dalam memori PC korang.. korang boleh download kat http://www.greatis.com/security/download.htmVirus31

Posted in Computer & IT | No Comments »

Virus Jambanmu.com

Tuesday, November 27th, 2007

Adakah komputer awak dijangkiti virus jambanmu.com ? Cepat-cepat lah buangkan, sebabnya, untuk pengetahuan awak, virus ini adalah variant virus ‘trojan.win32.vb.ayo’. Ianya juga dikenali sebagai “flash.10.exe”.
“W/2.Virus.Jamban.Busuk.BlaBla”. Virus Trojan merbahaya oleh kerana tujuan ianya ditulis/program untuk mencuri maklumat dengan masuk ke komputer kita tanpa kita sedar (back door). "Trojan" adalah jenisnya, tapi aku lebih suka panggil virus nih dengan nama Melayu iaitu TOYOL. Toyol ngan trojan nih sama jer. sama ada curi maklumat atau pun curi password akaun maybank2u awak.. hehehee.. awak takut??

Okaylah.. kat sini saya ada penawarnya. Jangan la risau sangat.

Mula-mula awak copy text warna merah kat bawah ni, copy semua sampai hujung.

Echo This will remove and recover back your windows from flash 10 virus.
taskkill /f /im flash.10.exe /t
@reg delete hkcu\software\microsoft\windows\currentversion\policies\system /v disableregistrytools /f
@reg delete HKLM\Software\Classes\.empty /f
@reg delete HKLM\Software\Classes\.fold /f
@reg delete HKLM\Software\Classes\.ie /f
@reg delete HKLM\Software\Classes\.lagu /f
@reg delete HKLM\Software\Classes\.msn /f
@reg delete HKLM\Software\Classes\.pikz /f
@reg delete HKLM\Software\Classes\.texz /f
@reg delete HKLM\Software\Classes\.vidz /f
@reg add HKLM\Software\Classes\comfile\DefaultIcon /ve /t REG_SZ /d %systemroot%\System32\shell32.dll,2 /f
@reg add HKLM\Software\Classes\.vbs /ve /t REG_SZ /d vbsfile /f
@reg delete HKLM\Software\Microsoft\JambanMuV2 /f
@reg delete HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer /v NoFolderOptions /f
@reg add "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon" /v Shell /t REG_SZ /d Explorer.exe /f
@reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced /v Hidden /t REG_DWORD /d 00000001 /f
@reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced /v ShowSuperHidden /t REG_DWORD /d 00000001 /f
@reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoFind /f
@reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoFolderOptions /f
@reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v "Windows MSN" /f
@reg add "HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows" /v load /t REG_SZ /d "" /f
@reg delete HKCU\Software\Policies\Microsoft\Windows\System /v DisableCMD /f
@attrib -s -h -r C:\DOCUME~1\ALLUSE~1\STARTM~1\Programs\Startup\(Empty).empty
@del C:\DOCUME~1\ALLUSE~1\STARTM~1\Programs\Startup\(Empty).empty
@attrib -s -h -r c:\windows\system32\cmd.com
@attrib -s -h -r c:\windows\system32\dxdiag.com
@attrib -s -h -r c:\windows\system32\Flash.10.exe
@attrib -s -h -r c:\windows\system32\JambanMu.com
@attrib -s -h -r c:\windows\system32\msconfig.com
@attrib -s -h -r c:\windows\system32\ping.com
@attrib -s -h -r c:\windows\system32\regedit.com
@del c:\windows\system32\cmd.com
@del c:\windows\system32\dxdiag.com
@del c:\windows\system32\Flash.10.exe
@del c:\windows\system32\JambanMu.com
@del c:\windows\system32\msconfig.com
@del c:\windows\system32\ping.com
@del c:\windows\system32\regedit.com
@attrib -s -h -r c:\progra~1\common~1\micros~1\macromedia.10.exe
@del c:\progra~1\common~1\micros~1\macromedia.10.exe
@attrib -s -h -r c:\progra~1\common~1\micros~1\dao\MSN.msn
@del c:\progra~1\common~1\micros~1\dao\MSN.msn
@attrib -s -h -r "c:\docume~1\User\mydocu~1\My Secret.fold"
@attrib -s -h -r "c:\docume~1\User\mydocu~1\mymusi~1\New Song.lagu"
@attrib -s -h -r "c:\docume~1\User\mydocu~1\mymusi~1\New Video.vidz"
@attrib -s -h -r c:\docume~1\User\mydocu~1\mypict~1\aweks.pikz
@attrib -s -h -r c:\docume~1\User\mydocu~1\mypict~1\seram.pikz
@del "c:\docume~1\User\mydocu~1\My Secret.fold"
@del "c:\docume~1\User\mydocu~1\mymusi~1\New Song.lagu"
@del "c:\docume~1\User\mydocu~1\mymusi~1\New Video.vidz"
@del c:\docume~1\User\mydocu~1\mypict~1\aweks.pikz
@del c:\docume~1\User\mydocu~1\mypict~1\seram.pikz

Lepas tu awak buka program notepad, paste kat situ.. save file nih sebagai "bunuhjamban.bat" atau "jambankill.bat" what ever awak suka.. tapi ".bat" tu wajibbbb bebb!! Mesti taruk ‘bat’. Sebab ‘.bat’ tu ialah extension untuk batch file.. kalau tak letak ‘.bat’ tu, nanti sistem komputer tak kenal lak file tadi sebagai program.

Kemudian, awak double click jer file tadi. nanti awak akan nampak window gelap ngan tulisan bergerak gerak.. bila dah habis, dia akan close sendiri. Semua selesai.

 

kemudian jangan ler pulak awak cucuk-cucuk pulak thumb drive  sebelum instal atau update antivirus yer.. kalau kena virus tu lagi, awak double click jer file tadi. Ok.. selamat mencuba!

Kalau tak leh jugak.. awak try ler link nih

http://soleh.net/2007/09/26/cara-remove-virus-jamban/

Posted in Computer & IT | No Comments »