Tech Support Forum - View Single Post

ndmmxiaomayi · 12-09-2008, 07:27 AM

Hi tybomb,

Please open Notepad and copy and paste the following in the Code box into Notepad:

Code:

http://www.techsupportforum.com/security-center/hijackthis-log-help/320002-downloader-agent-apko-crypt-axh.html

Netsvc::
hwdorvtqi
aqqamk

Driver::
hwdorvtqi
aqqamk
VZUXJBFOZUVLW

Collect::
c:\windows\system32:messagetec.exe

Registry::
[-HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{1B6FBC9D-FB5F-6DC0-12D0-CD6F4752DEA5}]

Warning: The above script is just for tybomb. If you are not tybomb, please do not use this script as it may damage the workings of your system.

Click on File > Save As....

In the File Name field, copy and paste in CFScript.txt. Do not change the file name.

Click Save.

Referring to the picture below, drag CFScript into Combofix.

Combofix will start running. When done, a log will be produced. Please post this log in your next reply.

In addition, it will prompt you to submit some files for analyzing.

Click OK.

Your web browser (by default it's Internet Explorer) will open.

Please refer to the image below to submit the file for analysis.

http://i35.photobucket.com/albums/d1.../submit_CF.gif

Do not mouse click on Combofix while it is running. That may cause it to stall.

About AVG Antivirus not being able to update, one thing to note - even after we fix your malware issues and AVG is able to update after that, your computer isn't protected.

AVG is no longer updating AVG Antivirus 7, and support for AVG 7.5 is ending this month. You will need to upgrade AVG to AVG 8 for it to continue to protect you.

Please let me know if you don't want to upgrade to AVG 8 so that I recommend alternatives.

Please post the Combofix log in your next reply.

12-09-2008, 07:27 AM	#4 (permalink)
ndmmxiaomayi Analyst, Security Team Join Date: Jun 2006 Posts: 714 OS: immune system, circulatory system, central nervous system, muscular system, skeletal system, digesti	Re: Downloader.Agent.APKO and Crypt.AXH Hi tybomb, Please open Notepad and copy and paste the following in the Code box into Notepad: Code: http://www.techsupportforum.com/security-center/hijackthis-log-help/320002-downloader-agent-apko-crypt-axh.html Netsvc:: hwdorvtqi aqqamk Driver:: hwdorvtqi aqqamk VZUXJBFOZUVLW Collect:: c:\windows\system32:messagetec.exe Registry:: [-HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{1B6FBC9D-FB5F-6DC0-12D0-CD6F4752DEA5}] Warning: The above script is just for tybomb. If you are not tybomb, please do not use this script as it may damage the workings of your system. Click on File > Save As.... In the File Name field, copy and paste in CFScript.txt. Do not change the file name. Click Save. Referring to the picture below, drag CFScript into Combofix. Combofix will start running. When done, a log will be produced. Please post this log in your next reply. In addition, it will prompt you to submit some files for analyzing. Click OK. Your web browser (by default it's Internet Explorer) will open. Please refer to the image below to submit the file for analysis. http://i35.photobucket.com/albums/d1.../submit_CF.gif Do not mouse click on Combofix while it is running. That may cause it to stall. About AVG Antivirus not being able to update, one thing to note - even after we fix your malware issues and AVG is able to update after that, your computer isn't protected. AVG is no longer updating AVG Antivirus 7, and support for AVG 7.5 is ending this month. You will need to upgrade AVG to AVG 8 for it to continue to protect you. Please let me know if you don't want to upgrade to AVG 8 so that I recommend alternatives. Please post the Combofix log in your next reply. __________________ Done your best? Really?