1. Close any open browsers.
2. Open
notepad and copy/paste the text in the quotebox below into it:
Quote:
File::
F:\Utilities\VIDEOS\Entertainment\screenflip.exe
F:\Utilities\VIDEOS\Entertainment\Flash\new flashes\BADDAY.EXE
F:\Utilities\VIDEOS\Entertainment\GUN.EXE
F:\Utilities\VIDEOS\Entertainment\Flash\new flashes\MADCOW.EXE
F:\Utilities\diary\TSUninstaller.exe
D:\Aji\wallpapers\STARS\Kajol\Temp.Htt
D:\Aji\wallpapers\STARS\Kajol\desktop.ini
F:\Utilities\Style-xp\Style.XP.3.18\Keygen\KeyGen [ Style XP 3.18 ].exe
F:\Utilities\Virus scan\Norton 2005\NORTON 2005 - SystemWorks + Internet Security + Ghost 9.0 + GoBack + ALL KEYGENS\NORTON KEY-GENERATORS\KeyGens Norton 2005\NG 9.0 - Keygen SSG.exe
F:\Utilities\Virus scan\Norton 2005\NORTON 2005 - SystemWorks + Internet Security + Ghost 9.0 + GoBack + ALL KEYGENS\Norton Ghost 9.0 (2005)\KEY-GENERATOR NG 9.0\ssg-ng90.exe
F:\Utilities\Virus scan\Norton 2005\NORTON 2005 - SystemWorks + Internet Security + Ghost 9.0 + GoBack + ALL KEYGENS\NORTON KEY-GENERATORS\KeyGens Norton 2005\NAV 2005 - Keygen TMG.exe
F:\Softwares\Last XP Softwares\AppsWPIw\!Nero7\Keygen.exe
Driver::
"PCI Utility"
|
Save this as
CFScript.txt, in the same location as ComboFix.exe
Refering to the picture above, drag CFScript into ComboFix.exe
When finished, it shall produce a log for you at
"C:\ComboFix.txt"
Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall
--------------------------
Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system.
Please follow these steps to remove older version Java components and update.- Download the latest version of Java Runtime Environment (JRE) 6 and save it to your desktop.
- Scroll down to where it says "Java Runtime Environment (JRE) 6 Update 7. The Java SE Runtime Environment (JRE) allows end-users to run Java applications."
- Click the "Download" button to the right.
- Select the Windows platform from the dropdown menu.
- Read the License Agreement and then check the box that says: "Accept License Agreement". Click on Continue.The page will refresh.
- Click on the link to download Windows Offline Installation and save the file to your desktop.
- Close any programs you may have running - especially your web browser.
- Go to Start > Settings > Control Panel, double-click on Add/Remove Programs and remove all older versions of Java.
- Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
- Click the Remove or Change/Remove button.
- Repeat as many times as necessary to remove each Java versions.
- Reboot your computer once all Java components are removed.
- Then from your desktop double-click on jre-6u7-windows-i586-p.exe to install the newest version.
- After the install is complete, go into the Control Panel (using Classic View) and double-click the Java Icon. (looks like a coffee cup)
- On the General tab, under Temporary Internet Files, click the Settings button.
- Next, click on the Delete Files button
- There are two options in the window to clear the cache - Leave BOTH Checked
- Applications and Applets
Trace and Log Files
- Click OK on Delete Temporary Files Window
Note: This deletes ALL the Downloaded Applications and Applets from the CACHE.
- Click OK to leave the Temporary Files Window
- Click OK to leave the Java Control Panel.
--------------------------
- Please go to the following link ESET Online Scanner Link
- Tick the box YES, I accept the Terms Of Use
- Click the Start button
- Now click the Install button
- Click Start
The scanner engine will initialise and update
- Do Not tick the box Remove found threats
- Click the Scan button
The scan will now run, please be patient
- When the scan finishes click the Details tab
- Copy and paste the contents of the %ProgramFiles%\EsetOnlineScanner\log.txt back here.
--------------------------
Required Logs
c:\ComboFix.txt
%ProgramFiles%\EsetOnlineScanner\log.txt
new HijackThis log
Please also provide an update on system behaviour