what is gmgcjs?

[Julius_Z]

Please, find enclosed the Combofix report. The beep was frightening. Otherwise I'm fine. How about the gmgcjs? Got rid of? Or still alive?

[Julius_Z]

Because I have just checked \system32\drivers\ and the name is still there... maybe it only is the name?

[essexboy]

Nope it is  half dead at the moment the re-spawner is now revealed though

1. Please open Notepad

• Click Start , then Run
• Type notepad .exe in the Run Box.

2. Now copy/paste the entire content of the codebox below into the Notepad window:

Code: [Select]

Rootkit::
c:\windows\system32\drivers\gmgcjs.sys

File::
c:\windows\system32\drivers\gmgcjs.sys
c:\windows\system32\config\systemprofile\Dane aplikacji\fvgqad.dat

Driver::
gmgcjs



3. Then in the text file go to FILE > SAVE AS and in the dropdown box select SAVE AS TYPE to ALL FILES

4. Save the above as CFScript.txt

5. Then drag the CFScript.txt into ComboFix.exe as depicted in the animation below.  This will start ComboFix again.




6. After reboot, (in case it asks to reboot), please post the following reports/logs into your next reply:

• Combofix.txt .

[Julius_Z]

I did it. The new ComboFix.txt is enclosed. Is that deadly centipede finally killed?

[Julius_Z]

Avast! doesn't see it and I don't see it either in the catalogue. It seems the creature that had been trying to ruin my nerves and my computer for so long has disappeared.

My great thanks to polonus for his great help at the beginning and teaching me about the useful software and procedures, and to essexboy, for providing the extremely efficient tools, a lot of patience, and ultimately killing the beast.

May God bless all the wonderful people who fight that disease and ... hope not to trouble you again for some time...   

[essexboy]

If you coulkd now run OTS and hit the cleanup button that should clear all the tools - enjoy

[Julius_Z]

Done