- Messages
- 130
- Reaction score
- 0
- Points
- 26
Re: Symbianize Lab
eto na sir yung second scan nang HJT
Ok re run hjt and post the newly log here. .
eto na sir yung second scan nang HJT
Most of our features and services are available only to members, so we encourage you to login or register a new account. Registration is free, fast and simple. You only need to provide a valid email. Being a member you'll gain access to all member forums and features, post a message to ask question or provide answer, and share or find resources related to mobile phones, tablets, computers, game consoles, and multimedia.
All that and more, so what are you waiting for, click the register button and join us now! Ito ang website na ginawa ng pinoy para sa pinoy!
Ok re run hjt and post the newly log here. .
Alam mo ba ang mga ito sir?
C:\Users\PIK^NIK\AppData\Roaming\DRPSu\DrvUpdater.exe
C:\Program Files\Winstep Nexus\Nexus-Ultimate.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{8DA0865F-B845-42E2-9CC4-7ECC50EC3353}: NameServer = 121.1.3.172 121.1.3.89
Run ComboFix in safemode and post the log here.
Sa tanong mo bout sa pag run ng combofix sa safemode kasi aggresive tool sya at dahil nature nya yan maaring maapektuhan ang pag scan nya kung nasa normal mode ang computer dahil sa mga running processes, mas maganda kasing mag scan ng isang system na kunti lang ang nag ra run na process kaya sinabi ko na safemode dapat. About naman sa HJT pwede syang i run sa normal mode hindi naman po ako nagsabi na i run si hjt sa safemode
Sir eto na po yung log ng combi fix ko.. eto na rin po yung log nung hijack after ko mag combofix..
sir pa check ulet
eto na sir yung second scan nang HJT
Eto na po sir..
Done. . system is clean, gamit ka ng CCleaner sir.
Thanks po sa help sir..
tanong ko lng.. curious talaga ako sa "O17 - HKLM\System\CCS\Services\Tcpip\..\{8DA0865F-B845-42E2-9CC4-7ECC50EC3353}: NameServer = 121.1.3.172 121.1.3.89"..
hehe..
anu kaya yan?
Diba tinanong na kita kung ano yan? sabi mo alam mo yan at IP mo yan. .
Yan ay O17 - Lop.com domain hijacks , kung alam mo ang domain ng ISP mo at sure ka na yan ay wag mo ng i fix pero kung di mo alam i fix mo, nagtatanong ako kasi baka domain talaga sya ng ISP mo.
sir.. sorry sa abala.. ewan ko kung dahil sa combofix.. hindi na hidden si "$RECYCLE.BIN" Folder at my RECYCLER na.. tapos yung "PROGRAM DATA" hindi na din hidden.. ang mga hidden naging hindi na hidden.. sorry sa pag kalat ko dito.. edit ko lng maya..
Done.. system is clean, fix this entries using HJT
O9 - Extra button: Fiddler2 - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files\Fiddler2\Fiddler.exe" (file missing)
O9 - Extra 'Tools' menuitem: Fiddler2 - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files\Fiddler2\Fiddler.exe" (file missing)
Ok may titingnan pa ako, re run HJT again and post the newly hjt log here. .
Sir ito yung log ng HJT, censya po ngayon lang ulit naka pag online medyo may out of town na lakad. Pasilip po ulit thanks
Done. . fix this entries using HJT
R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll
O2 - BHO: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll
O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll
O16 - DPF: {063F7D71-5E0B-48F2-87D5-F63C5917947E} (Aosmgr Control) - http://ahnlabdownload.nefficient.co.kr/aos/plugin/aosmgr.cab
O24 - Desktop Component 0: (no name) - http://upload.wikimedia.org/wikipedia/commons/thumb/4/42/Constructing_NOR_gate_f rom_NAND_gates.png/220px-Constructing_NOR_gate_from_NAND_gates.png
eto po ung log file paki analyze nalang po ...thanx ...
ts pacheck na rin po ung sakin..TIA!!!
boss salamat sa pagcheck..pwede pacheck na rin ng sa laptop ko?salamat!!