Hello, there is still some cleanup to do, so please stick with me until I say your system is clean.
Open
notepad and copy/paste the text in the quotebox below into it:
Quote:
KILLALL::
File::
C:\WINDOWS\BM8f105bed.xml
Folder::
C:\WINDOWS\system32\modtrux05
C:\temp\syschk3
DirLook::
C:\Documents and Settings\Kevin\!
|
Save this as
CFScript
Referring to the picture above, drag CFScript into ComboFix.exe
Follow the prompts, and post the resulting log, C:\ComboFix.txt
Warning:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall
--------------------------------------------------------------
Establish an internet connection & perform an online scan with Internet Explorer at
Kaspersky Online Scanner
Answer Yes, when prompted to install an ActiveX component.
- The program will then begin downloading the latest definition files.
- Once the files have been downloaded click on NEXT
- Locate the Scan Settings button & configure to:
- Scan using the following Anti-Virus database:
- Scan Options:
- Scan Archives
- Scan Mail Bases
- Click OK & have it scan My Computer
- Once the scan is complete, it will display if your system has been infected. It does not provide an option to clean/disinfect. We only require a report from it.
- Click the Save as Text button to save the file to your desktop so that you may post it in your next reply
* Turn off the real time scanner of any existing antivirus program while performing the online scan
--------------------------------------------------------------
Please reply back with the following logs:
C:\ComboFix.txt
Kaspersky online scan results