- Comments:
- It appears as if you have a Chinese malware in your system, which I was unable to find. However, that should be logged as outgoing if so. It is safest to assume that you are under attack. That IP Address is known to have done so.
- Step 5
Please download Combofix from one of the following locations:
'Link 1'
'Link 2'
**IMPORTANT!**
Let me give you a warning beforehand. I am instructing you to use one of the most powerful removal tool created. A simple mistake of running ComboFix without a helper's advice might render your machine unbootable. Do note that the steps below are crucial for the success of the clean-up you are currently undergoing. If by any chance you failed to meet any of them, I can almost guarantee a dreadful occurrence happening. See to it that you read the instructions first up to the very end and follow them accordingly after to ensure the best possible performance.
- Save ComboFix to your Desktop.
- Disable your anti-virus and anti-spyware applications, usually via a right-click on the System Tray icon. They may otherwise interfere with ComboFix. If you have difficulty properly disabling your protective programs, refer to 'this' link.
- Double-click ComboFix.exe and follow the prompts.
- As part of its process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery or repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
- Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
- If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.
![[Image: RcAuto1.gif]](http://img.photobucket.com/albums/v706/ried7/RcAuto1.gif)
- Save ComboFix to your Desktop.
- Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:
![[Image: whatnext.png]](http://img.photobucket.com/albums/v706/ried7/whatnext.png)
- Click on Yes, to continue scanning for malware.
- When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.
- Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:
Reminders:
- Do not mouse-click ComboFix's window while it is running. That may cause it to stall.
- Do not "re-run" ComboFix. If you have a problem, reply back for further instructions.
- ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.
- ComboFix prevents autorun of all CD, floppy and USB devices to assist with malware removal and increase security. If this is an issue or makes it difficult for you - please tell me.
- ComboFix disconnects your machine from the Internet. The connection is automatically restored before ComboFix completes its run. If ComboFix runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
- In your next post, please provide the following:
- ComboFix Log
- Format of Response
Code:[color=#00BFFF][b]Step #[/b][/color]
[color=#FFD700][b]Problems Encountered:[/b][/color]
[color=#00BFFF][b]Step #[/b][/color]
[color=#FFD700][b]Problems Encountered:[/b][/color]
[color=#00BFFF][b]Step #[/b][/color]
[color=#FFD700][b]Problems Encountered:[/b][/color]
[color=#00BFFF][b]Link To Requested Logs:[/b][/color]