Another: 62.122.73.203/545/getcfg.php

Hello! I also I have this virus just a few minutes ago. I browsed the forum and I followed Essex’s guide, but the problem continues. MBAM removed some infected files, and I have to run OTS, I leave here the data file. I need your help because I am a novice in these matters.
Thanks in advance!

Sorry for my English, I speak Spanish… :-X

Your English is better than my Spanish ;D

Start OTS. Copy/Paste the information in the quotebox below into the panel where it says “Paste fix here” and then click the Run Fix button.

[Unregister Dlls]
[Processes - Safe List]
YY -> dat1f26.tmp.exe -> C:\Users\Santi\AppData\Local\Temp\DAT1F26.tmp.exe
[Win32 Services - Safe List]
YY -> (stblxxis) stblxxis [Auto | Stopped] -> C:\Users\Santi\AppData\Local\Temp\DAT1F26.tmp
[Files/Folders - Modified Within 30 Days]
NY ->  str.sys -> C:\Windows\System32\drivers\str.sys
[Empty Temp Folders]
[EmptyFlash]
[CreateRestorePoint]
  

The fix should only take a very short time. When the fix is completed a message box will popup telling you that it is finished. Click the Ok button and Notepad will open with a log of actions taken during the fix. Post that information back here

I will review the information when it comes back in.

THEN

Download ComboFix from one of these locations:

Link 1
Link 2

* IMPORTANT !!! Save ComboFix.exe to your Desktop

[]Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools
[
]Double click on ComboFix.exe & follow the prompts.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.

Hello again! I think it’s all good, because there’s nothing strange! :smiley:
I hope it stays that way!

Thanks for everything, you’re a genius! jaja
I leave the last files as you asked me, if there are any problems yet.

Greetings!

Well Combofix could not find anything untoward ;D

So subject to no further problems

Click Start > Run and copy/paste the following bolded text into the Run box and click OK:

ComboFix /Uninstall

Run OTL and hit the cleanup button. It will remove all the programmes we have used plus itself.

Done! Thank you very much! :wink:

My pleasure ;D