dreamyfantasy
Right off the assembly line
I believe i have a malware infection on my computer. can you help me?
i have a virus/worm file in my usb pen drive like G:/pisted/offline.exe. Along with this autorun.exe is created in the root directory of the usb drive everytime i plug in my pendrive. I am able to remove it from safe mode or from Linux. But i am unable to delete it, rename it or quarantine it in during normal windows operation. also even after removal from pendrive these files get created everytime in plug in my pendrive to my system.
It changes the icon for my removable disk to a trash can like symbol. and it wont let me to do safe removal.
The autorun.exe has the following info
[autorun]
USEAUTOPLAY=1
shellexecute=pisted/offline.exe
Shellhuji
shell\\Explore\\command=pisted/offline…
shell\Open\\command=pisted/offline.exe
icon=pisted/offline.exe
open=pisted/offline.exe
action=0pen folder to view files using Windows Explorer
I have avast installed and it is not reporting it as a virus. But it shows a warning that a autorun virus is trying to access my firefox session info and it reports that it has blocked it. but the warning appears frequently. i think avast is not identifying the original problem but it dealing with one of the various manifestations of the virus. Since it is trying to access session info i believe this could be a serious security . I have tried with nod 32, and also Malwarebytes antimalware. none is able to identify the root of the problem.
I did a google search and couldnt find any clue about this one.
any help or suggestions as to how to proceed are highly welcome.
i have a virus/worm file in my usb pen drive like G:/pisted/offline.exe. Along with this autorun.exe is created in the root directory of the usb drive everytime i plug in my pendrive. I am able to remove it from safe mode or from Linux. But i am unable to delete it, rename it or quarantine it in during normal windows operation. also even after removal from pendrive these files get created everytime in plug in my pendrive to my system.
It changes the icon for my removable disk to a trash can like symbol. and it wont let me to do safe removal.
The autorun.exe has the following info
[autorun]
USEAUTOPLAY=1
shellexecute=pisted/offline.exe
Shellhuji
shell\\Explore\\command=pisted/offline…
shell\Open\\command=pisted/offline.exe
icon=pisted/offline.exe
open=pisted/offline.exe
action=0pen folder to view files using Windows Explorer
I have avast installed and it is not reporting it as a virus. But it shows a warning that a autorun virus is trying to access my firefox session info and it reports that it has blocked it. but the warning appears frequently. i think avast is not identifying the original problem but it dealing with one of the various manifestations of the virus. Since it is trying to access session info i believe this could be a serious security . I have tried with nod 32, and also Malwarebytes antimalware. none is able to identify the root of the problem.
I did a google search and couldnt find any clue about this one.
any help or suggestions as to how to proceed are highly welcome.