Hi Esecurity,
Let us try and cleanse it.
Download Trend Micro Hijack This from
http://download.bleepingcomputer.com/hijackthis/HJTInstall.exe Doubleclick on HJTInstall.exe
Hijackthis is being installed onto your PC, an icon is being placed onto the desktop.
HijackThis will open after installation.
Click on "Do a systemscan and save a logfile".
A Notepad window will open, press the CTRL and A key toets at a time, all is being selected.
Then push both CTRL and C key at a time, all is being copied.
Log into the virus and worms section of this forum and look for "reply"
Now attach the HJT logfile through CTRL-V
In your case we have to rename hijackthis as follows:
Rename HijackThis.exe to pol.exe by doing the following;
* Navigate here using Windows Explorer (windows button + E) or My Computer -> Local Disk C: -> C:\Program Files\Trend Micro\HijackThis
* Right-click on the HijackThis.exe
* Choose from the pull-down menu; "Rename"
* And now Rename HijackThis.exe to pol.exe
* When you've renamed HijackThis, open HijackThis again.
* Take a fresh HijackThis log (click Do a system scan and save a log file)
* Post the fresh HijackThis log here.
__________________
1. Download combofix from one of this links and save it to Desktop:
http://download.bleepingcomputer.com/sUBs/ComboFix.exe2. Double click combofix.exe & follow the prompts.
3. When finished, it shall produce a log for you. Post that log in your next reply
Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall
Combofix should never take more that 20 minutes including the reboot if malware is detected.
If it does, open Task Manager then Processes tab (press ctrl, alt and del at the same time) and end any processes of findstr, find, sed or swreg, then combofix should continue.
If that happened we want to know, and also what process you had to end.
Post as Attachments:
- a fresh HijackThis log
- combofix report
__________________
pol
