Re: belh.exe
From: David H. Lipman (DLipman~nospam~_at_Verizon.Net)
Date: 10/11/04
- Next message: Andre Da Costa: "Re: Two Problems with XP Professional"
- Previous message: Andre Da Costa: "Re: system sounds"
- In reply to: shawn: "Re: belh.exe"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 11 Oct 2004 14:14:03 -0400
Deleting the file is NOT the objective. Cleaning the OS of infectors and parasites IS the
objective.
Download and run the utilities is Safe Mode as I indicated. I'll be that file is malware
and probably Adaware will catch as such. Executable files don't belong in the "Application
Data" directory of a user profile. That is the base of a tree of user based data files and
that is NOT a OS file.
In short -- No it does NOT belong to the Operating System and I strongly believe you have at
least parasitical malware on your PC.
Dave
"shawn" <shawn@discussions.microsoft.com> wrote in message
news:EEE3E1DE-221B-41CC-934B-00A320F086B6@microsoft.com...
| I know how to delete the file , but I don't know if the file blongs to
| Operating System or not.
|
| Shawn
|
|
|
| "David H. Lipman" wrote:
|
| > 1) Download the following three items...
| >
| > Trend Sysclean Package
| > http://www.trendmicro.com/download/dcs.asp
| >
| > Latest Trend signature files.
| > http://www.trendmicro.com/download/pattern.asp
| >
| > Adaware SE (personal free version)
| > http://www.lavasoftusa.com/
| >
| > Create a directory.
| > On drive "C:\"
| > (e.g., "c:\New Folder")
| > or the desktop
| > (e.g., "C:\Documents and Settings\lipman\Desktop\New Folder")
| >
| > Download sysclean.com and place it in that directory.
| > Dowload the signature files (pattern files) by obtaining the ZIP file.
| > For example; lpt194.zip
| >
| > Extract the contents of the ZIP file and place the contents in the same directory as
| > sysclean.com.
| >
| > 2) Update Adware with the latest definitions.
| > 3) If you are using WinME or WinXP, disable System Restore
| > http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm
| > 4) Reboot your PC into Safe Mode
| > 5) Using both the Trend Sysclean utility and Adaware, perform a Full Scan of your
| > platform and clean/delete any infectors/parasites found.
| > 6) Restart your PC and perform a "final" Full Scan of your platform using both the
| > Trend Sysclean utility and Adaware
| > 7) If you are using WinME or WinXP,Re-enable System Restore and re-apply any
| > System Restore preferences, (e.g. HD space to use suggested 400 ~ 600MB),
| > 8) Reboot your PC.
| > 9) If you are using WinME or WinXP, create a new Restore point
| > 10) Please report back your results
| >
| > Dave
| >
| >
| >
| >
| >
| >
| > "shawn" <shawn@discussions.microsoft.com> wrote in message
| > news:D1CE91E0-9462-4FB6-93A5-1411991A4A58@microsoft.com...
| > |
| > | There is a file(belh.exe)that try to access my network whenever my system is
| > | booting up, I am wondering if the file is part of Windows XP professional or
| > | not. The location of the file is as follow:
| > | C:\Documents and Settings\Shawn\Application Data\belh.exe
| > | Thank you
| > |
| > | Shawn
| > |
| >
| >
| >
- Next message: Andre Da Costa: "Re: Two Problems with XP Professional"
- Previous message: Andre Da Costa: "Re: system sounds"
- In reply to: shawn: "Re: belh.exe"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
