Solve : Infection?

1.	Solve : Infection?
Answer» Hi Guys, I have a laptop which has multiple infected files. I've run the scans as requested and attached them below... Cheers Nick [recovering space - attachment deleted by admin]Did you're virus scan remove those infections?Open Hijackthis and select Do a system scan only then place a check mark next to - O2 - BHO: (no name) - {3cab59b4-55a3-4737-9fd5-b93c6430bf75} - C:\WINDOWS\system32\mlhtjoxf.dll - O2 - BHO: (no name) - {8e1bfc0e-8ad2-424d-ac8a-06038481516e} - (no file) - O2 - BHO: (no name) - {ac4600c0-3418-4dfc-a670-e7feee88a80f} - (no file) - O20 - Winlogon Notify: awtsTMfF - awtsTMfF.dll (file missing) Close all windows except for Hijackthis and click Fix checked. ---------- Please download Malwarebytes' Anti-Malware (MBAM) to your desktop from either of these two links. Link 1 Link 2 Double-click mbam-setup.exe and follow the prompts to install the program. At the end, be sure a checkmark is PLACED next to Update Malwarebytes' Anti-Malware Launch Malwarebytes' Anti-Malware Click Finish. If an update is found, it will download and install the latest version. Once the program has loaded, select PERFORM full scan, then click Scan. When the scan is complete, click OK, then Show Results to view the results. Be sure that everything is checked, and click Remove Selected. When completed, a log will open in Notepad. Please copy and paste the log into your next reply . ---------- Next post MBAM log NEW Hijackthis logHi, Thanks for your help. I deleted the items from Hijack This, then I did a scan using MBAM. It found quite a few things, so I had it remove everything, then did a reboot. I NOTICED that the anti virus was still finding infected files in the system restore folder, so I disabled system restore, then rebooted. I was also getting an error message when booting up: RUNDLL Error loading C:\WINDOWS\System32\wldibtay.dll The specified module could not be found I'm not sure what this refers to, so I opened MSCONFIG and disabled wldibtay.dll in startup. I ran the scan with MBAM again and then scanned with Hijack This again. I have attached both MBAM logs and the new Hijack This log. Cheers Nick [recovering space - attachment deleted by admin]Hello, sorry it has taken so long for me to get back to this. If you still need help then please post a new Hijackthis log. Thanks.I think everything is SORTED on this one. Thanks for you help - I'll repost if I have any more issues with it.

Answer»

Hi Guys,

I have a laptop which has multiple infected files. I've run the scans as requested and attached them below...

Cheers

Nick

[recovering space - attachment deleted by admin]Did you're virus scan remove those infections?Open Hijackthis and select Do a system scan only then place a check mark next to

- O2 - BHO: (no name) - {3cab59b4-55a3-4737-9fd5-b93c6430bf75} - C:\WINDOWS\system32\mlhtjoxf.dll
- O2 - BHO: (no name) - {8e1bfc0e-8ad2-424d-ac8a-06038481516e} - (no file)
- O2 - BHO: (no name) - {ac4600c0-3418-4dfc-a670-e7feee88a80f} - (no file)
- O20 - Winlogon Notify: awtsTMfF - awtsTMfF.dll (file missing)

Close all windows except for Hijackthis and click Fix checked.

----------

Please download Malwarebytes' Anti-Malware (MBAM) to your desktop from either of these two links.

Double-click mbam-setup.exe and follow the prompts to install the program.
At the end, be sure a checkmark is PLACED next to
Update Malwarebytes' Anti-Malware
Launch Malwarebytes' Anti-Malware

Click Finish.
If an update is found, it will download and install the latest version.
Once the program has loaded, select PERFORM full scan, then click Scan.
When the scan is complete, click OK, then Show Results to view the results.
Be sure that everything is checked, and click Remove Selected.
When completed, a log will open in Notepad.
Please copy and paste the log into your next reply

.
----------

Next post
MBAM log
NEW Hijackthis logHi,

Thanks for your help.

I deleted the items from Hijack This, then I did a scan using MBAM. It found quite a few things, so I had it remove everything, then did a reboot.

I NOTICED that the anti virus was still finding infected files in the system restore folder, so I disabled system restore, then rebooted.

I was also getting an error message when booting up:

RUNDLL
Error loading C:\WINDOWS\System32\wldibtay.dll
The specified module could not be found

I'm not sure what this refers to, so I opened MSCONFIG and disabled wldibtay.dll in startup.

I ran the scan with MBAM again and then scanned with Hijack This again. I have attached both MBAM logs and the new Hijack This log.

Cheers

Nick

[recovering space - attachment deleted by admin]Hello, sorry it has taken so long for me to get back to this.

If you still need help then please post a new Hijackthis log. Thanks.I think everything is SORTED on this one. Thanks for you help - I'll repost if I have any more issues with it.

Solve : Infection?

Discussion

No Comment Found

Related InterviewSolutions

Reply to Comment