Jump to content

ken545

Trusted Malware Techs
  • Content Count

    292
  • Joined

  • Last visited

About ken545

  • Rank
    Member
  • Birthday 02/20/1939

Profile Information

  • Gender
    Male
  • Location
    Florida's Spacecoast
  • Interests
    Fighting Malware and cooking so great Italian and TexMex food

Previous Fields

  • System Specifications:
    Windows 7 Ultimate Windows 8.1
  • Teams:
    Nothing Selected
  1. Awong, I posted back at Safer to have you run a couple of more scans. I was hoping here at the PIT they would run you through a test to check the health of your hard drive and go from there, lets see if the scans found anything and if not then we can post back here
  2. Glad things are running better for you and we could help, Regards, ken
  3. Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.
  4. Sorry for the delay, missed the email notification that you replied. Yes go ahead and clean out the Recycle Bin Open OTL and click on Clean Up and it will remove most of the tools we used to clean your system along with there backups. How did I get infected in the first place ? Read these links and find out how to prevent getting infected again. Tutorial for System Restore <-- Do this first to prevent yourself from being reinfected. WhattheTech Grinler BleepingComputer GeeksTo Go Dslreports Here are some free programs to install, all free and highly reg
  5. Hi, Lets delete this two files, but leave them in the Recycle bin , reboot and make sure there is no problem, if there is than you can restore them, I am sure there not good. C:\WINDOWS\Xhekoful.dat C:\WINDOWS\Mpemabowinewunoz.bin The two entries that ESET found where just backups of what Combofix removed , we will clean all that out in a bit also. Let me know how it went with those two files
  6. Just curios about these two files. Please download SystemLook from one of the links below and save it to your Desktop. Download Mirror #1 Download Mirror #2 Double-click SystemLook.exe to run it. Copy the content of the following codebox into the main textfield: :file C:\WINDOWS\Xhekoful.dat C:\WINDOWS\Mpemabowinewunoz.bin Click the Look button to start the scan. When finished, a notepad window will open with the results of the scan. Please post this log in your next reply. Note: The log can also be found on your Desktop entitled SystemLook.txt Please run this free o
  7. Orbit, I am still looking at those P2P (File Sharing Programs ) on your system. I strongly urge you to uninstall them. Your downloading that file from and unknown source, malware writers are in tune to this and it has become one of the latest ways to infect your computer. Why don't you run this program, its a quick scan and let me take one more final look. OTL by OldTimer Download OTL to your desktop. Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted. When the window appears, underneath Output at the top change it to Minim
  8. Well , logs look ok, how are things running now ?
  9. Hi Orbit, Your CF log looks fine. Reboot and see if AVG keeps flagging that file. I don't see it anywhere on your log, it may be gone or in quarantine Download and Run SystemLook Please download SystemLook from one of the links below and save it to your Desktop. Download Mirror #1 Download Mirror #2 Double-click SystemLook.exe to run it. Copy the content of the following codebox into the main textfield: :filefind ahicenay.dll Click the Look button to start the scan. When finished, a notepad window will open with the results of the scan. Please post this log in your next r
  10. Go ahead and run Combofix with this new script DDS:: uWinlogon: Shell=c:\documents and settings\eric\application data\hotfix.exe TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File File:: c:\documents and settings\eric\application data\hotfix.exe c:\windows\ahicenay.dll There is one more I want to check but we can do that later
  11. Good Morning Orbit, These two c:\windows\wfctfoc.dll<--This file c:\windows\ahicenay.dll<--This file
  12. Hi, Still looking at some markers in your log for ThinkPoint. You need to enable windows to show all files and folders, instructions Here Go to VirusTotal and submit these files for analysis, just use the BROWSE feature and then Send File , you will get a report back, post the report into this thread for me to see. If the site says this file has already been checked, have them check it again c:\windows\wfctfoc.dll c:\windows\ahicenay.dll If the site is busy you can try this one http://virusscan.jotti.org/en Drag Combofix to the trash and downlo
  13. Hello breakingorbit, JonTom is away and I will be helping you, please post the new DDS log, your wifes account will be fine
  14. Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.
  15. Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.
×
×
  • Create New...