Hi slinkykatt,
OK, just some leftovers to take care of.
Please delete the following file:
C:\WINDOWS\
DHU.exe
NEXT:
Reconfigure Windows XP to show hidden files:
- Click Start -> My Computer.
- Select the Tools menu and click Folder Options. Select the View tab.
- Under the Hidden files and folders heading check "Show hidden files and folders".
- Uncheck the "Hide protected operating system files (recommended)" option.
- Uncheck the "Hide file extensions for known file types" option.
- Click Yes to confirm. Click OK.
CAUTION : You will see many folders and files which you may not recognize. Most of these folders and files are
LEGITIMATE. Please do
NOT delete anything you deem suspicious unless you are specifically instructed to do so. To do otherwise may irreparably damage your system.
NEXT:
Please go to:
VirusTotal- At the top of the page you'll find a "Browse" button. Click the "Browse" button and browse to next file:
C:\WINDOWS\bytespersecond.dat
- Click "Open".
- Then click the "Send" button at the top of the VirusTotal page.
- This will scan the file. Please be patient.
- Once scanned, copy and paste the results in your next reply together with a new HijackThis log.
Then please do the same as above for the following files:
C:\WINDOWS\
elmore music messenger.exe
C:\Documents and Settings\ali\Application Data\
GDIPFONTCACHEV1.DAT
NEXT:
Please
reboot your computer normally into Windows, and then please post the
reports from VirusTotal and a new
HijackThis log.
How are things running now? Please let me know about any problems that persist.