1. Please open Notepad
Click Start , then Run
Type notepad .exe in the Run Box.
2. Now copy/paste the entire content of the codebox below into the Notepad window:
KillAll:: File:: C:\WINDOWS\cdti.exe C:\WINDOWS\˙IEXPLORE.EXE C:\WINDOWS\System32\cfmom.exe C:\WINDOWS\˙upd.dll C:\Windows\ upd.dll
Note: the above code was created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.
3. Save the above as CFScript.txt
4. Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
5. Then drag the CFScript.txt into ComboFix.exe as depicted in the animation below. This will start ComboFix again.
Do not mouse-click combofix's window while it is running. That may cause it to stall.
6. ComboFix will automatically REBOOT your machine when the KillAll:: switch is used..
7. Next, re-enable all the programs that you disabled prior to running ComboFix.
CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
8. Post the following logs/Reports:
Fresh HijackThis log
good luk mschroe919