Other > Viruses and worms
C:\windows\system32\explorer.exe may have a malware infection?
<< < (4/6) > >>
magna86:
Hi,
It is necessary that you follow instructions that is given ...


Step#1

Open notepad and copy/paste the text present inside the code box below:



--- Code: ---
KillAll::

File::
c:\windows\Tasks\OptimizerProUpdaterTask{C216DF16-E33C-4CF7-AFAD-7D410EF1B4B1}.job

Folder::
c:\programdata\Premium\OptimizerPro

ClearJavaCache::

DDS::
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} -


--- End code ---


Save this as CFScript.txt



Close all browser windows and refering to the picture above.

Referring to the screenshot above, drag CFScript.txt into ComboFix.exe.
ComboFix will will re-run. When finished, it will produce a log for you.
Attach the contents of the log in your next reply. (typical location: C:\ComboFix.txt )
**************************

Step#2

Download TDSSKiller  and save it to your desktop

    Execute TDSSKiller.exe by doubleclicking on it.

[*]    Press Start Scan

 [*]  If Suspicious object is detected, the default action will be Skip, click on Continue.
 [*]  If Malicious objects are found, select Cure.
[/list]
    Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt


Please post the contents of that log in your next reply.

**************************

Step#3


--- Quote from: magna86 on February 07, 2013, 12:14:09 AM ---Re-run OTLScan

[*] Make sure all other windows are closed and to let it run uninterrupted.
   
[*] Click on Scan All Users
 
[*] Paste this into Custom Scans/Fixes box at the bottom

[/list]
--- Code: ---

%SYSTEMDRIVE%\*.exe
/md5start
explorer.exe
/md5stop
CREATERESTOREPOINT


--- End code ---
[*] Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
        [*] When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
         
[*] Please attach them in this thread.
[/list]
[/list]

--- End quote ---
REDACTED:
My TDSSKILLER log.
REDACTED:
The new combofix text.
REDACTED:
New OTL text, I didn't get an Extra.txt file this time.
REDACTED:
Also my desktop is back up I can see my profile.
Navigation
Message Index
Next page
Previous page

Go to full version