Your very welcome.
Yes, you did it correctly. I forgot you had C:\WINNET as your root drive, and you saved me a step.
We will run ComboFix. You should NOT use Combofix unless you have been instructed to do so by a Malware Removal Expert.
It is intended by its creator to be used under the guidance and supervision of an Malware Removal Expert, not for private use. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again.
Please read Combofix's Disclaimer.
Further, ComboFix logs are not
permitted outside the HijackThis
forums and then only when requested by a HJT Team member.
You need to disable
your AVG Antivirus
before running ComboFix
, as it will prevent it from running.
To disable AVG antivirus:
Please open the AVG Control Center
program -> double-click on the "AVG Resident Shield"
component (looks like this: )
-> deselect the "Turn on AVG Resident Shield"
checkmark and save the setting.
When you need to enable the AVG Resident Shield, just open the AVG Control Center program -> double-click on the "AVG Resident Shield"
component -> select the "Turn on AVG Resident Shield"
checkmark and save the setting.Note: If you already have a copy of ComboFix on your system it is essential that you delete it before downloading this copy.
Please visit this webpage for instructions for downloading and running ComboFix: http://www.bleepingcomputer.com/combofix/how-to-use-combofix
To work properly, you must install ComboFix
on the Desktop
Post the log from ComboFix in your next reply,A caution -
ComboFix may reset a number of Internet Explorer's settings, including making IE the default browser.
ComboFix prevents autorun of ALL CD, floppy and USB devices to assist with malware removal and increase security. If this is an issue or makes it difficult for you -- please tell me.
Have no other programs running. Your Task Bar should be clear of any program entries including your Browser.
Do not run Combofix more than once.
Do not touch your mouse/keyboard until the scan has completed, as this may cause the process to stall or your computer to lock.
The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop.
Even when ComboFix appears to be doing nothing, look at your Drive light. If it is flashing, Combofix is still at work.
Edited by SifuMike, 20 September 2009 - 11:38 AM.