Tech Support Forum - View Single Post

**TheBruce1** · 12-03-2007, 12:06 PM

Hello again

Please follow all instructions and in which order they come,if you have any questions,please ask before proceeding.ts important that you follow this through until i give you the all clear,a lack of symptoms does not mean the infection is gone.

======================================================

You are running DSS.exe(Deckard System Scanner)from a temporary directory. It needs to be in a permanent folder. Please go into Windows Explorer, click on C: then click on File > New > Folder and call it DSS , or another name of your choice. Then move DSS.exe to this new folder.

Locate

C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\JMPQLKHP\dss[1].exe

Right-click and select send to>send to Desktop

======================================================

Click > Start > Control Panel > Add / Remove Programs and uninstall the following programs:

WinTouch<---Wintouch downloads additional files and displays pop-up advertisements.

=======================================================

Download Combofix Here

* IMPORTANT !!! Place combofix.exe on your DesktopDo not run just yet,we will shortly

====================================================

Windows Defender

Please disable your Windows Defender Real-time Protection, as it may hinder the removal of some entries.

Open Windows Defender.
Click on Tools>Options.
Scroll down and uncheck "Use real-time protection (recommended)".
After you uncheck this, click on the Save button and close Windows Defender.

=====================================================

Go to

→ Run → paste in the single line command & click OK

"%userprofile%\desktop\combofix.exe" /killall

When finished, it shall produce a log for you. Post that log & a fresh HJT log in your next reply

Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall

=================================================================

Open HijackThis and click on 'Do a System Scan and save a Logfile'. Save the log file and post it here.

=================================================================
Logs Required
C:\Combofix.txt
Hijackthis log

12-03-2007, 12:06 PM	#4 (permalink)
TheBruce1 Moderator, Analyst, Security Team Join Date: Oct 2006 Location: Dùn Èideann,Scotland. Posts: 5,093 OS: XP	Re: Whole Bunch of Viruses Hello again Please follow all instructions and in which order they come,if you have any questions,please ask before proceeding.ts important that you follow this through until i give you the all clear,a lack of symptoms does not mean the infection is gone. ====================================================== You are running DSS.exe(Deckard System Scanner)from a temporary directory. It needs to be in a permanent folder. Please go into Windows Explorer, click on C: then click on File > New > Folder and call it DSS , or another name of your choice. Then move DSS.exe to this new folder. Locate C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\JMPQLKHP\dss[1].exe Right-click and select send to>send to Desktop ====================================================== Click > Start > Control Panel > Add / Remove Programs and uninstall the following programs: WinTouch<---Wintouch downloads additional files and displays pop-up advertisements. ======================================================= Download Combofix Here * IMPORTANT !!! Place combofix.exe on your DesktopDo not run just yet,we will shortly ==================================================== Windows Defender Please disable your Windows Defender Real-time Protection, as it may hinder the removal of some entries. Open Windows Defender. Click on Tools>Options. Scroll down and uncheck "Use real-time protection (recommended)". After you uncheck this, click on the Save button and close Windows Defender. ===================================================== Go to → Run → paste in the single line command & click OK "%userprofile%\desktop\combofix.exe" /killall When finished, it shall produce a log for you. Post that log & a fresh HJT log in your next reply Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall ================================================================= Open HijackThis and click on 'Do a System Scan and save a Logfile'. Save the log file and post it here. ================================================================= Logs Required C:\Combofix.txt Hijackthis log __________________ Member of ASAP since 2007 Member of UNITE since 2008 Notice to BT customers BT to dump Phorm, see Here for more information. No DPI If we have helped you in anyway, please consider Donating