Open
notepad and copy/paste the text in the quotebox below into it:
Quote:
http://www.techsupportforum.com/security-center/hijackthis-log-help/198207-forced-download-firefox-post1193585.html#post1193585
Killall::
File::
C:\WINDOWS\askerserkb.dll
Registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{242F800B-2172-4659-A381-476B66E3DE2A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{956D977E-3EE4-460F-8CD2-23CDEABBDC94}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Vmlist"=-
Collect::
C:\WINDOWS\system32\evxluuuxvnfpu.dll
C:\WINDOWS\mhqq.exe
C:\WINDOWS\system32\wseqxvis.dll
C:\WINDOWS\inituusee.exe
Suspect::
C:\WINDOWS\SlientInstall2143.exe
C:\WINDOWS\system32\detoured.dll
C:\WINDOWS\ie.ini
|
Save this as
CFScript.txt
Refering to the picture above, drag CFScript.txt into ComboFix.exe
When finished, it shall produce a log for you, C:\ComboFix.txt. Post that log in your next reply.
Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall
When CF finishes running, the ComboFix log will open along with a message box--do not be alarmed. With the above script, ComboFix will capture a file to submit for analysis.
Ensure you are connected to the internet and click OK. A browser will open. Simply follow the instructions to copy/paste/send the requested file.
---------------------------------------------------------------------------------------------
Open HijackThis and click on 'Do a System Scan and save a Logfile'. Save the log file and post it here.
---------------------------------------------------------------------------------------------
__________________
Practice Safe Surfing
Because what you don't know, CAN hurt you.
Proud Member of ASAP since 2005
Proud Member of UNITE since 2006