Great....let's continue.
One or more of the identified infections is a backdoor trojan.
This type of infection allows hackers to remotely control your computer, steal critical system information and download and execute files without your knowledge.
If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.
You can read this:
How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
---------------------------------------------------------------------------------------------
Before beginning the fix, read this post completely. If there's anything that you do not understand, kindly ask your questions before proceeding. Ensure that there aren't any opened browsers when you are carrying out the procedures below. Save the following instructions in Notepad as this webpage would not be available when you're carrying out the fix.
It is IMPORTANT that you don't miss a step & perform everything in the correct order/sequence.
---------------------------------------------------------------------------------------------
Be sure to disable the resident protection of BitDefender. It may interfere with ComboFix.
See if this information helps:
http://www.gsd.k12.ms.us/techdocs/disbd.htm
- Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with ComboFix.
- Open notepad and copy/paste the text in the quotebox below into it:
Quote:
http://www.techsupportforum.com/security-center/hijackthis-log-help/256214-bugs-screen.html
Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareBot"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareBot"=-
"lphcll0j0eecl"=-
"sysrest32.exe"=-
Collect::
C:\WINDOWS\system32\blphcll0j0eecl.scr
C:\WINDOWS\system32\lphcll0j0eecl.exe
C:\WINDOWS\system32\phcll0j0eecl.bmp
DirLook::
C:\Documents and Settings\Administrator\Application Data\shcjl0j0eecl
Folder::
C:\Program Files\SpywareBot
FileLook::
C:\bitdefender_antivirus.exe
|
Save this as CFScript.txt
Referring to the picture above, drag CFScript.txt into ComboFix.exe
- Your desktop may go blank. This is normal. It will return when ComboFix is done. ComboFix may reboot your machine. This is normal.
- When finished, it shall produce a log for you. Post that log in your next reply
Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall.
- When ComboFix finishes running, the ComboFix log will open along with a message box--do not be alarmed. With the above script, ComboFix will capture a file to submit for analysis.
- Ensure you are connected to the internet and click OK. A browser will open. Simply follow the instructions to copy/paste/send the requested file..
---------------------------------------------------------------------------------------------
- Open HijackThis and click on 'Do a System Scan and save a Logfile'. Save the log file and post it here.
---------------------------------------------------------------------------------------------
__________________
Practice Safe Surfing
Because what you don't know, CAN hurt you.
Proud Member of ASAP since 2005
Proud Member of UNITE since 2006