This is what's being used presently, but no guarantees
Download ComboFix from
Here or
Here to your Desktop.
Double click combofix.exe and follow the prompts.
When finished, it shall produce a log for you.
Post that log and a HiJackthis log in your next replyNote: Do not mouseclick combofix's window while its running. That may cause it to stall.Download RenV from the link below
1. Save it to your Desktop.
2. Double-click RenV.exe
3. It shall produce a log for you. Please post that log in your reply.
http://download.bleepingcomputer.com/sUBs/Beta/RenV.exeUsing your left mouse drag Log.txt into RenV.exe, see image below.
When finished, it shall produce a new log for you. Post that log in your next reply along with the other logs.
do an online scan with kaspersy
http://www.kaspersky.com/service?chapter=161739400Click on Kaspersky Online Scanner
You will be promoted to install an ActiveX component from Kaspersky, Click Yes.
The program will launch and then begin downloading the latest definition files:
Once the files have been downloaded click on NEXT
Now click on Scan Settings
In the scan settings make that the following are selected:
Scan using the following Anti-Virus database:
Extended (if available otherwise Standard)
Scan Options:
Scan Archives
Scan Mail Bases
Click OK
Now under select a target to scan:
Select My Computer
This will program will start and scan your system.
The scan will take a while so be patient and let it run.
Once the scan is complete it will display if your system has been infected.
Now click on the Save as Text button:
Save the file to your desktop.
Copy and paste or attach that information in your next post.
Note: pause or stop avast's standard shield during the scan, re-enable afterwards.
Try not to restart or turn off your computer if possible, if combofix want to restart the computer let it. Also avoid opening programs and applications as we don't know which are effected.
You can download HJT from here
Click here to download
HJTsetup.exe- Save HJTsetup.exe to your desktop.
- Doubleclick on the HJTsetup.exe icon on your desktop.
- By default it will install to C:\Program Files\Hijack This.
- Continue to click Next in the setup dialogue boxes until you get to the Select Addition Tasks dialogue.
- Put a check by Create a desktop icon then click Next again.
- Continue to follow the rest of the prompts from there.
- At the final dialogue box click Finish and it will launch Hijack This.
- Click on the Do a system scan and save a logfile button. It will scan and the log should open in notepad.
- Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
- Come back here to this thread and Paste the log in your next reply.
- DO NOT have Hijack This fix anything yet. Most of what it finds will be harmless or even required.
