Computer Hope
Software => Computer viruses and spyware => Topic started by: bluehawk on September 21, 2008, 03:33:40 AM
-
i've done along
"Read this before requesting malware removal help"
and i reach the last step
this is my log
i got er....shulbhs.exe and or meex...wlitd i can't remember the name -*-
thanks for helping
i want to know what i need to do next?????
ps.i'm new here, i live in thai so may b some of my english might be a bit terrible haha
[Saving space - attachment deleted by admin]
-
Give me just a minute and I'll take a look at your logs.
-
Sorry for the delay, something came up. Go ahead and open up HijackThis and place a checkmark next to the following entries...
O4 - HKLM\..\Run: [rxmoefa] C:\WINDOWS\system32\shulbhs.exe
O4 - HKLM\..\Run: [aeenaho] C:\WINDOWS\system32\wqdlitd.exe
Close all windows except for HijackThis and then click on Fix Checked. Once that's done, post a fresh new HijackThis log.
Also, download ComboFix (http://download.bleepingcomputer.com/sUBs/ComboFix.exe) and save it to your desktop. Run the program and read its disclaimer (it's fairly short) and make sure you really pay attention to what it says. Follow the prompts and when finished, it will produce a log at C:\ComboFix.txt. Go ahead and post that here. Note: Don't click on the window while it's running; this may cause stalls.
-
ok thank very much
so sorry about my delay too but
i live an my apartment on normal day
so i can only use internet on weekend
here is my new hjt log
and i also dun the combo fix
----------------------------------------------------
i also post the combofix log here
[Saving space - attachment deleted by admin]
-
Don't worry, you're welcome to take as much time as you need. The computer looks clean to me now. However, there is an entry in your registry that refers to infection in drive F. What exactly is drive F? Is it another hard drive? A partition? A flashdrive? Whatever it is, it may still be infected. And it looks like there might also be an autorun file that executes the infection whenever drive F is connected. Based on the file names, it looks like drive F (probably a flashdrive) is what infected your computer.
You should use Flash Disinfector and scan any external drives that you own...
http://experi3nc3.wordpress.com/2007/05/10/flash-disinfector-by-subs
(Simply follow the instructions in that link.)
-
that's IT!!!!
Flash drive is what i thought also -*-
Thanks a million!!!!!
--------------------------
now my pc look clean
thank for help!!!!
i alsoclean my Flash drive and i found Aeenahoe.exe [not exactly this spelling ahahaha] and others -*- i deleted all of them in a sudden
Thank ssssssssssss
i'll told my friend who got problem like me about this webboard also [hope that won't make you too hard working!]
-
I'm happy to help out anytime and we'd be happy to help your friend as well. If you have anymore problems, feel free to come back!