That is the result we want.
Please do the following, running ComboFix first, and the program that follows next. If ComboFix does not run, press on to run TDSSKiller:
If you have ComboFix
(CF) already on your Desktop, please remove it. We'll download an updated version.
Save ComboFix.exe to your Desktop!!
Make sure you temporarily
disable your AntiVirus, Firewall, and any other AntiSpyware applications, usually via a right clicking on the System Tray icon. They may interfere with the running of CF.
Note: If you are having difficulty properly disabling your protective programs, or are unsure as to what programs need to be disabled, please refer to the information available through this link
Right-click on ComboFix.exe
and select: 'Run as Administrator'
Click on Yes
, to continue scanning for malware.
When finished, CF produces a report.
Please provide a copy of the C:\ComboFix.txt
in your reply.
1. Do not mouse-click the ComboFix window while it is running.
This action may cause it to stall.
2. ComboFix may reset a number of Internet Explorer's settings, including making IE the default browser.
3. CF disconnects your machine from the internet. However, the connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
Please remove any previous download of TDSSKiller
(if used) and download the latest version: TDSSKiller.exe
Save the file to your Desktop!!
Execute the file:
Right-click TDSSKiller and select: 'Run as Administrator'
Press the button: Start Scan
The tool scans and detects two object types: Malicious
(where the malware has been identified) Suspicious
(where the malware cannot be identified)
When the scan is over, the tool outputs a list of detected objects (Malicious or Suspicious) with their description.
It automatically selects an action (Cure
) for Malicious
objects. Leave the setting as it is.
It also prompts the User to select an action to apply to Suspicious
, by default). Leave the setting as it is.
After clicking 'Next/Continue', the tool applies the selected actions.
A Reboot Required
prompt may appear after a disinfection. Please reboot.
By default, the tool outputs its log to the system disk root folder (the disk with the Windows operating system, normally C:\
Logs have a name like:
Please post the TDSSKiller
log in your reply.
Need to see the following in your reply:
**The ComboFix log
**Whether TDSSKiller needed a reboot
Need to go out for a while, but will be back later this evening.
Edited by Aaflac, 20 September 2011 - 07:53 PM.