05-13-2012 01:21 PM
Renamed combofix.exe as badfile.exe but got the same error:
CFScript Name Error
Were you trying to run CFScript?
The name, CFScript appears to be incorrectly spelt
05-13-2012 01:44 PM
Probably easier to have them both in the same location unless you want to have the small C:\ windows open and still have the desktop showing and drag the script right across.
05-13-2012 02:24 PM
That did it - ComboFix ran with no issues this time. As you said would happen after CF finished, got a couple of warnings about programs trying to perform illegal operations on registry keys marked for deletion. Rebooted as instructed, and that seems to have resolved it. CF log is attached.
05-13-2012 05:56 PM
Download a new copy of Combofix like the main instructions in the past and so on, on to your desktop but this time run it without any script.
Have to make sure one of the files is gone.
You Could also have a permissions problem with files / folders.
Also you do or did have Malwarebytes running with it's realtime protection running (another security product), or it could be that the infection hurt Norton.
05-13-2012 08:08 PM
Downloaded a new copy of CF to the desktop and ran it as instructed. (Did not delete the copy we placed in the root directory since you didn't say to do so - hope that was ok.) Logfile is attached.
05-13-2012 08:10 PM
Forgot to add - didn't have any other security product running that I am aware of. Removed mbam several steps ago, when instructed to do so. Norton seems to be running OK now - the error code I reported getting previously when attempting to access the security history is no longer occuring.
05-13-2012 08:24 PM
The file detected is a False Positive ( I went and looked it up)
Please read carefully and Slowly
Please scan with ESET next Using Internet Explorer
I'd like us to scan your machine with ESET OnlineScan
If you think a log should have been generated then go to C:\Program Files\ESET\ESET Online Scanner\log.txt to find it.