I dont know whether is Virus or Malware or spyware...but i need u guys help... my whole office got this problem prompt out ..






pls help thx!!!

aha... meet this thing recently and this is what i do...

1. Press CTRL+ALT+DEL and go to the processes tab
2. Look for svchost.exe under the image name. There will be many but look for the ones which have your username under the username
3. Press DEL to kill these files. It will give you a warning, Press Yes
4. Repeat for more svchost.exe files with your username and repeat. Do not kill svchost.exe with system, local service or network service!
5. Now open My Computer
6. In the address bar, type C:\heap41a and press enter. It is a hidden folder, and is not visible by default.
7. Delete all the files here
8. Now go to Start --> Run and type Regedit
9. Go to the menu Edit --> Find
10. Type "heap41a" here and press enter. You will get something like this "[winlogon] C:\heap41a\svchost.exe C:\heap(some number)\std.txt"
11. Select that and Press DEL. It will ask "Are you sure you wanna delete this value", click Yes
12. Now close the registry editor.

nothing like good old instruction from former victims.

works better than most help.

after deleted the hidden files ..

when search the regedit .. it seems doesnt have this : "[winlogon] C:\heap41a\svchost.exe C:\heap(some number)\std.txt"

but we have the normal C:\heap41a

that's ok, sometimes the virus will not drop certain file that it's suppose to drop, no idea why. Lauzy coding perhaps.

okok tenkiu big bro~! all bros helped me owe u a teh tarik!