Over 1 million tech questions and answers.

Performed Surgery On My PC With No Knowledge Of Post-Op Care...(I ran Combofix)

Q: Performed Surgery On My PC With No Knowledge Of Post-Op Care...(I ran Combofix)

Hello, I'm Audiotape and I'm in a bit of a pickle,
 
 
--- Before you read the meat and potatoes, I made my thread here as I don't have an active out of control infection or major booting problem, but please let me know if I accidentally bleepposted somewhere and will attempt to fix my post lol. You might be able to avoid reading this whole thing because I have given you (what i think) is the most important info in the next three paragraphs. ---
 
 
Meat and potatoes
 
Yes, as the thread title partially suggests, I ran disk cleanup, Eraser, unhide, rkill, Fixexec, Combofix, and finally Malwarebytes in a normal boot, without being asked by a helper. I have other minor computer issues and although neither new issues nor previous issues were caused or exacerbated by Combofix, respectively, I feel you should know about them.
 
 
Why? Took the advice of another forum and I think they are erroneous. The professionalism and shear number of threads and guides I have seen here suggests this. 
 
 
Everything below this might be info contained in some log Il be asked to produce, idk, but regardless I provided background info. Hope I didn't waste time. Since idk how things work on this forum, if you know what my next steps should be and will stop reading now, atleast skip to the note in red below please!
If not, onward!
 
 
 
 
 
 
I did not run Combofix to fight any suspected infections on my computer (I have errors with Windows Update detailed below), I ran it simply to see if it would find anything. With that said I'm not sure if it found something, when it finished I exited it quickly (I was, um, inebriated) and I didn't manually save, nor can I find the log.txt.   
 
 
The 7 entries in ComboFix-quarantined-files.txt look important.
 
 
 
 
 
My Windows 7 PC has had no new issues after running Combofix. yay.
 
More detailed info:
 
The folder Qoobox is located on my C: drive, and I have not moved it nor edited it nor anything in it since it was created.
I ran Combofix from a single folder located on my Desktop.
I moved (for whatever reason) ComboFix from the folder to the Desktop.
Since running Combofix, Malwarebytes has found something suspicious and it quarantined them.
Unrelated to the Combofix, a few days prior, my PC encountered an error during Windows Update, proceeded to hang for a few minutes at the update screen, then my PC's fan began oscillating between (what sounded like) 50%-100% speed. The period of oscillation was roughly 3-4 seconds. This lasted until the Windows said it was "cleaning up.... ...", this finished and the computer rebooted. The reboot was a few seconds longer than "normal" and was particularly stressful for me, as I'm a college student and bleep's expensive, yo.
I have since turned automatic updates off. Seek advice regarding that as well.
 
 
In addition to the above, the PC has exhibited other, albeit apparently less severe issues that have gone on for months. They haven't gotten worse.
Sometimes my PC will bluescreen with error codes and crash when at the login screen If I touch the trackpad. Can we view these errors in Event Viewer?
explorer.exe will stop working after I close out some .NET runtime error popup, and successfuly restarts itself. Sometimes this "explorer.exe has stopped working issue" happens multiple times in one day.
 
Surely WIndows stores all these error logs somewhere and we can look into them/do some diggin'? Do you even help with that on bleepingcomputer?
 
Note: If any of the issues above might lead to having to do any of the following, I need to know upfront, (specifically which issue(s)) because I will not attempt to fix that particular issue until a few months time after this semester ends (assuming the PC remains somewhat stable) unless I am strongly advised otherwise. I understand this might be irrelevant and impossible to predict due to the number of possible outcomes tests and logs can show. Nonetheless, I need to know where I stand before I begin anything. As of right now, I'm mostly stable.
Windows recovery
OS reinstall
Hell I don't even wanna mess with restore points until this college semester ends (There were a few trialware I was testing (Video editors), trial ran out, I wanted to squeeze more time out of them to finish a project I was working on, so after uninstalling the trialware with an external uninstaller, of course we all know they leave tid bits behind somewhere so you cant just reinstall/uninstall indefinitely for unlimited trials, so reinstalled and I tried to use TimeStopper and RunAsDate, didnt work, one more round of uninstalls/installs, occured. When those didn't work, did Disk Cleanup (does it do restore points ?) and then used Eraser on "previous versions" of folders that stored my exported Videos after I cut the videos to an ext. drive.. Thankfully I didn't mess with REGEDIT cleaners, or do any system restores. I think it backfired on me, I don't really remember, was inebriated at the time and I thought it would all work out... )
 
Haven't done CHKDSK (I heard one should do this in a situation like this?) because "out of sight out of mind"..lol.
 
 
 
 
 
 
Some other info below. 
 
My booting (and only internal) drive is an SSD, and has no partitions that I know of
 
Infectious/Problematic history of PC:
​Trojan horse quarantined and deleted by AVG free 2014 months back
Quarantined entries in Malwarebytes that were in there for a while, but deleted the entries. Still have malwarebytes logs though
Toolbar once or twice/thrice from a CNET downloader which was removed by malwarebytes.
Video Editor trial I downloaded and scanned with either MBAM or AVG (i scan download with both), quarantined and deleted
Had trouble booting into Safe Mode after being instructed to do so 6 months back, Loading screen would hang on avgsci indefinitely, my Computer Guy fixed it, possibly the MBR issue iirc?

​How I maintain my PC
​AVG Free 2014 scans once a week 
malwarebytes after AVG is finished, but I dont recall if they've been full scans or quick.
I use Eraser and/or Shred Files with AVG to delete files I want rendered "unrecoverable"
​please yell at me if this is stupid to do and I should stop lol
 
If it turns out there's exists a high probability that attempting to fix any of the 3 could render the thing useless or push the system to a point that wouldn't allow normal booting of the OS, I am ok with just leaving Combofix where it is until this semester ends, and Il be back in a few months time for help.
 
Hope I haven't wasted one's time by leading one to think there's important info throughout the post, Idk what is needed to determine how to treat PC problems, I'm only trying to help you help me.   
 
 
 
I've learned that the harder and longer I poke at complex computer issues on my own, the harder and longer the blasted things poke me back...And their pokes have hurt. And I'm really afraid of Combofix poking me lol.  
 
 
 
I appreciate your time and look forward to gettin' her stable and back on Windows Update.   
Oh and hi, this is my first topic as well as forum post here!  :bananas:Looking forward to reading some (read: a lot) of the guides here, as well as clearing up misconceptions I've read once and for all.
 
~ I think I've found an intellectual goldmine ~
 
Audiotape

RELEVANCY SCORE 200
Preferred Solution: Performed Surgery On My PC With No Knowledge Of Post-Op Care...(I ran Combofix)

For anything regarding erasing your history and maintaining privacy, I really recommend downloading History Fixer. It deletes all traces of online and offline computer activity including Internet searches, history and chat sessions. Includes a file shredder feature.

You can download it direct from this link http://goo.gl/7JS9gZ. (This link will automatically start a download of History Fixer that you can save to your computer.)

A: Performed Surgery On My PC With No Knowledge Of Post-Op Care...(I ran Combofix)

Since you ran combofix, Please follow the instructions in ==>This Guide<==.Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include the link to this topic in your new topic and a description of your computer issues and what you have done to resolve them.If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.Once you have created the new topic, please reply back here with a link to the new topic.

Read other 4 answers
RELEVANCY SCORE 56.8

Hello,

It seems I have a nasty virus and can't figure out how to get rid of it for good. I can use combofix but after a few days, the virus comes back and shuts the system down. I can then start in safemode again, use combofix again to remove the virus and the computer will work for a few days. It is like the virus is dormant and combofix doesn't get rid of all of it.

What can I do to get rid of this virus??


Here is the ComboFix log:

A:Nasty virus- ComboFix won't take care of it

Can anyone help?

Read other 3 answers
RELEVANCY SCORE 55.6

I recently purchased a post warranty care pack for my nearly two year old laptop. I received the package from HP yesterday, but I cannot register the care pack because the serial number was not included in the package. I was told that you are supposed to receive a certificate with the care package's serial number in order to register it online, but all I received was a small card with a barcode. My warranty expired on 1/15/2016 so I cannot use the live chat option to have this sorted out.The care pack's product number is: U4820PALaptop's product number: J9N59UA#ABAWarranty on laptop started on 1/15/2015.

Read other answers
RELEVANCY SCORE 49.2

 ComboFix.txt   14.76KB
  26 downloadsHi All!
This is a tremendous forum wiyh great info. I have just finished going through my daughters computer/ multimedia bedlam. Cleaned out 32 problems and concluded with the running of combofix. Had Brastk malware as well as a couple of bogus anti spyware programs. Does combo fix remove most problems? And would someone be willing to check the log generated prior to me giving it back. File is attached. You are all great Jim

A:Ran Combofix and now better. Should I post log?

ComboFix logs should not to be posted outside the HijackThis forums. It is an extremely powerful tool which should only be used when instructed to do so by someone who has been properly trained. ComboFix is intended by its creator to be "used under the guidance and supervision of an expert", NOT for private use. Please read Combofix's Disclaimer. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again.Please create a new topic in the Am I infected? What do I do? forum, explaining the nature of your problem. Describe pop-ups and system tray or desktop icons that have appeared. Explain what is "going wrong" with your computer. Note any tools you have used and their respective results.If needed, we will direct you to our HJT Preparation Guide.Thank you for using BleepingComputer as your malware removal source.This topic is now closed. The BC Staff

Read other 1 answers
RELEVANCY SCORE 49.2

Is this where I post the Combofix log?

A:Where to post Combofix Log?

Please read the 5 bulleted items under the title of: Forum Guidelines at the very top of this page. That will help you get started.

Read other 1 answers
RELEVANCY SCORE 49.2

Hello,I have just signed up to this forum site. I have contracted some sort of virus on Monday night (7 Sep 09 - around 8pm Australian Eastern Standard time). I have run various antivirus software programs including:- AVG free- Windows Defender- Malicious software removal tool (which is now infected and cannot be removed)- Malwarebytes antimalware- Clamwin- Win32Diag- ESET NOD32I did all this because when I attempted to run an antivirus program the virus shut down the program or would skip over the files in the WINDOWS folder. I have tried to scan the folders remotely via my home network, but the scan only takes minutes (rather than the usual 1.5-2 hours) and skips over many files. Popup windows keep occuring if I am connected to the internet, so I have disconnected it from the internet now (I am using my netbook to write this). If you require more information, just let me know...My last resort has been to run the combofix program listed on this website. Only after running the program did I realise that I have nowhere to post the log report. The combofix page listed here http://www.bleepingcomputer.com/combofix/how-to-use-combofix has a link of where to post the log here http://www.bleepingcomputer.com/forums/f/22/virus-trojan-spyware-and-malware-removal-logs/ but it says posts are only for hijackthis and only for combofix when instructed. Please help. I am not very tech savvy, and my boyfriend is only a little tech savvy (he has done all the work mentioned above). Any sugges... Read more

A:Hello & help with combofix - where to post log??

Hello and welcome. You will need to run HJT/DDS. Please follow this guide. go and do steps 6-8 Preparation Guide For Use Before Using Hijackthis. Then go here HijackThis Logs and Virus/Trojan/Spyware/Malware Removal ,click New Topic,give it a relevant Title and post that complete log. add your ComboFix log there.Let me know if it went OK.

Read other 3 answers
RELEVANCY SCORE 49.2

Hi,
This is my first post and I'm not sure where it goes. I ran combofix and it told me topost my log here for help. Above it says not to post combofix logs so can someone please advise me? Thanks.

A:Where do I post combofix log?

No one should be using ComboFix unless specifically instructed to do so by a Malware Removal Expert who can interpret the logs. Please read the pinned topic ComboFix usage, Questions, Help? - Look here. ComboFix logs, where should I post them?

Read other 1 answers
RELEVANCY SCORE 49.2

I ran Malwarebytes and Superantivirus and Vipre. May I now post the ComboFix log? Thanks.

A:Can I post ComboFix log?

Hello,Please follow the instructions in ==>This Guide<== starting at step 6. If you cannot complete a step, skip it and continue.Once the proper logs are created, then post them in a reply to this topic by using the Add Reply button.If you can produce at least some of the logs, then please create the post and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the reply and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.Please note that I am not a member of the Malware Removal Team and will not be assisting you in removing the infection. I'm simply helping you to post the information they need in order to assist you.If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.Orange Blossom

Read other 3 answers
RELEVANCY SCORE 49.2

Sorry if I am not doing this right but I need help ASAP. Seems the virus took all printers away and when I ran combofix and restored them. This is the output txt. Now it is asking me if I want to creat a new file because it can't find C:\Docume~1\Ellie\Locals~1\Temp\log.txt filePlease help.....ComboFix 08-09-20.05 - Administrator 2008-09-22 12:51:10.1 - NTFSx86 MINIMALMicrosoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1216 [GMT -4:00]Running from: C:\Documents and Settings\Administrator.TRAINING\Desktop\ComboFix.exeWARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!.((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))).C:\WINDOWS\Install.txtC:\WINDOWS\system32\adubes.dllC:\WINDOWS\system32\afisicx.exeC:\WINDOWS\system32\comsa32.sysC:\WINDOWS\system32\inf\svchoct.exeC:\WINDOWS\system32\mabidwe.exeC:\WINDOWS\system32\mywfhit.iniC:\WINDOWS\system32\mywfhit.ini.tmpC:\WINDOWS\system32\noytcyr.exeC:\WINDOWS\system32\roytctm.exeC:\WINDOWS\system32\rtl60.bplC:\WINDOWS\system32\tdydowkc.exeC:\WINDOWS\system32\tpszxyd.sysC:\WINDOWS\system32\wsldoekd.exeC:\WINDOWS\tawisys.iniD:\Autorun.inf C:\WINDOWS\system32\spo... Read more

A:Combofix Post....

ComboFix logs should not to be posted outside the HijackThis forums. It is an extremely powerful tool which should only be used when instructed to do so by someone who has been properly trained. ComboFix is intended by its creator to be "used under the guidance and supervision of an expert", NOT for private use. Please read Combofix's Disclaimer. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again.Please create a new topic explaining the nature of your problem in the Am I infected? What do I do? forum. Describe pop-ups and system tray or desktop icons that have appeared. Explain what is "going wrong" with your computer. Note any tools you have used and their respective results.If needed, we will direct you to our HJT Preparation Guide.Thank you for using BleepingComputer as your malware removal source.I will have a moderator close this topic.dc3

Read other 1 answers
RELEVANCY SCORE 49.2

Hi, my computer was infected by malware that was redirecting my browser after google searches. I used combofix and it worked but I would like to post the log to have in analyzed. I have seen the posts that discourage using combofix without tech help but at this point I have already used it and would like to know if someone can help. Thanks.

A:would like to post combofix log for help

As no logs have been posted, I am shifting this topic from the specialized HiJack This forum to the Am I Infected forum.==>PLEASE DO NOT NOW POST LOGS<== unless a log is specifically requested.

Read other 3 answers
RELEVANCY SCORE 49.2

My Mcafee reported zerroaccess.hi in desktop.ini and it could not clean it.
 
Windows update and windows firewall stopped working.
 
My PC was a mess....
 
Quad core, 8 gigs ram, geoforce navida 240 video, current windows 7 64 bit os.
 
Being and upper level pc user and part time programmer I decided to run combofix on my own. 
 
I let it run over night and let it do it'd thing. It seems to have fixed every thing, all is working so well it's like I reinstalled the os.
 
So my question is do I need to look for other problems?
 
I'm thinking of dumping Mcafee and use windows anti virus tools!
 
Combofix log attached.
 
Any comments would be most wellcomed.
 
Combofix seems to be a gift from above.
 
Thanks,
 
RM

A:post combofix help

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

Your ComboFix log looks clean. Lets check further.

Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.

1: DDS.scr (Not recommended if you use Chrome to download this .scr file. Use the other options.)
2: DDS.pif
3: DDS.COM

Double click on the DDS icon, allow it to run.
A small box will open, with an explanation about the tool. No input is needed, the scan is running.
Notepad will open with the results.
Follow the instructions that pop up for posting the results.[/list]Please note: You may have to disable any script protection running if the scan fails to run.

Please just paste the contents of the DDS.txt log in your next post. DO NOT attach the log.===

Third party programs if not up to date can be the cause of infiltration an infection.
===

Please run this security check for my review.

Download Security Check by screen317 from here.Save it to your Desktop.Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.A Notepad document should open automatically called checkup.txt; please post the contents of that document.
===

Search and delete the AdWare, PUP (Potentially Unwanted Program) installed on your computer.

Please download AdwCleanerby Xplode onto your Desk... Read more

Read other 1 answers
RELEVANCY SCORE 49.2

I had the virus or adaware or whatever you want to call it zelojive.dll and I think I got it fixed no more problems and my laptop is super fast again. I was told to post my combofix log in this forum so some experts can look at it and make sure its clean. I don't see the proper place for posting it. Could someone help me out? Thanks!

A:Where to post combofix log??

Conbofix logs are permitted in the HJT forum and ,usually, only when requested for from a team memberIf you would like to start the process, please follow these directions and good luckPlease read the pinned topic titled "Preparation Guide For Use Before Posting A Hijackthis Log". If you cannot complete a step, then skip it and continue with the next. In Step 6 there are instructions for downloading and running DDS which will create a Pseudo HJT Report as part of its log. You will also be instructed to create a Root Repeal LogWhen you have done that, post your log in the HijackThis Logs and Malware Removal forum, NOT here, for assistance by the HJT Team Experts. A member of the Team will walk you through, step by step, on how to clean your computer. If you post your log back in this thread, the response from the HJT Team will be delayed because your post will have to be moved. This means it will fall in line behind any others posted that same day.The HJT team is very busy and it will take awhile to get to your postPlease be patient and good luck

Read other 1 answers
RELEVANCY SCORE 49.2

Hello all, new here, i have just run a combofix thing and need to post the log for further help?

A:where do i post a combofix log for help please?

Right here: Please follow the instructions in ==>This Guide<==.Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include the link to this topic in your new topic and a description of your computer issues and what you have done to resolve them.If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.Once you have created the new topic, please reply back here with a link to the new topic.

Read other 4 answers
RELEVANCY SCORE 49.2

Since I am so infected I can't update, I submitted my problem to Microsoft. Their tech recently suggested I download and run Combofix and post my log here, follow your directions, then run a tdss killer he has given me a link for and report my results back to him if everything isn't fixed.

This tech had previously suggested I run my AVG virus in safe mode to clean the computer but my computer stopped the scan and either crashed or tried to reboot as soon as AVG began scanning my temporary computer files.

When I tried to run the Combofix -- after disabling everything that could possibly ever be of help to keep me safe -- the first 3 lines appeared in the blue box telling me that run time was usually 10 minutes but a heavily infected computer could take double that time. I left it running for 4 hours. Nothing else ever happened so I finally gave up and came here hoping for help.

I am sending everything to you on my old computer as the new one is officially out of service until the problem is fixed and I can put my AVG, spybot, ad-aware, etc. back in.

My computer is running win xp with avg virus protection.

Many thanks for any help or advice. If it was a horse, I'd shoot it!

A:Can't Post a Log Because Combofix won't run

Hello and welcome to Bleeping Computer We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here. Please take note: If you have since resolved the original problem you were having, we would appreciate you letting us know. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
If you are unsure about any of these characteristics just post what you can and we will guide you.Please tell us if you have your original Windows CD/DVD available. If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far. Upon completing the steps below another staff member will review your topic and do their best to resolve your issues. If you have already posted a DDS log, please do so again, as your situation may have changed. Use the '... Read more

Read other 6 answers
RELEVANCY SCORE 49.2

I installed and ran Combofix. Instructions indicated to post the log here on the forum....which one??

A:where to post combofix log

If you are dealing with a malware infection, please be aware that using ComboFix is only one part of the disinfection process. Preliminary scans from other tools like DDS, RSIT and GMER should be used first because they provide comprehensive logs with specific details about files, folders and registry keys which may have been modified by malware infection. Analysis of those logs allows planning an strategy for effective disinfection and a determination if using ComboFix is necessary. ComboFix was never meant to be used as a general purpose malware scanner like SuperAntispyware or Malwarebytes' Anti-Malware which scan individual drives or different folders on a computer for viruses. With that said, please read the pinned topic ComboFix usage, Questions, Help? - Look here. ComboFix logs, where should I post them?ComboFix logs are not permitted outside the Virus, Trojan, Spyware, and Malware Removal Logsl forum and then only when requested by a Malware Response Team member. However, If you ran or want to run ComboFix on your own due to malware infection, please be aware that a ComboFix log is only one part of the disinfection process. Therefore we ask that you please read the "Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help". When you have done that, post the required logs to include your ComboFix log in that forum, NOT here, for assistance by the Malware Response Team Experts.

Read other 1 answers
RELEVANCY SCORE 49.2

Hi,

I suffered a spyware attack, ran a HijackThis scan, and posted the log on another site for analysis. The staff at the other site then advised me to run ComboFix and post my log. The other site is now down (it has been down all day) and I can't post my log to it or get further help from the staff there. Can someone here analyze my log? I still notice malware symptoms on my computer.

Thanks

A:May I post a ComboFix log here?

Hello hibleeping and welcome to BC I'm shifting your query here to the Am I Infected forum as you haven't posted any logs. As for your question, as Galadriel stated in response to your first topic here: http://www.bleepingcomputer.com/forums/t/190664/lavasoft-support-site-is-down-anyone-know-for-how-long/ Lavasoft is working to resolve the issue. While it may be a couple days before they are back up, frankly you will receive assistance a lot faster there since you are already in the disinfection process there already.Further, if you were to continue here instead, we would need to get all the prior information, logs, etc. from you as well as full descriptions of what had been done already in order to assist you, and it could very likely be up to 10 days and possibly longer before you got a response because of the very large number of logs we have right now. For the sake of continuity of the disinfection process and a much shorter wait period, I would continue at the LavaSoft forum where your disinfection process is already underway. I'm certain the issues LavaSoft is experiencing will be resolved within a day or two.I wish you the best of luck with the disinfection process. I know that you are frustrated and want your computer fixed as soon as possible. I truly think that waiting for the LavaSoft forums to come back up is your best option at this point.To avoid confusion, I am closing this topic. If you have other questions regarding this, please post them in your initia... Read more

Read other 1 answers
RELEVANCY SCORE 49.2

hi guys

is this forum the place to post my combofix log?
thx

Roy

A:is this where i can post my combofix log ?

Please note the message text in blue at the top of this forum. You should not be using Combofix unless instructed to do so by a Malware Removal Expert who can interpret the logs. It is a powerful tool intended by its creator to be "used under the guidance and supervision of an expert", NOT for general public or personal use. Combofix was never meant to be used as a general purpose malware scanner like SuperAntispyware or Malwarebytes' Anti-Malware. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again. Please read Combofix's Disclaimer. That's the decision by the creator and we will abide by that decision.Further, ComboFix logs are not permitted outside the HijackThis Logs and Malware Removal forum and then only when requested by a HJT Team member. What issues are you having that requires using ComboFix?

Read other 4 answers
RELEVANCY SCORE 49.2

I need help - combofix told me to post this in the forum to get assistance. If anyone can help, I would be so grateful! Thanks!    ComboFix 14-04-30.01 - Kristin 05/04/2014  13:07:38.1.4 - x64Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.6052.3450 [GMT -6:00]Running from: c:\users\Kristin\Downloads\ComboFix.exeAV: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}AV: Norton 360 *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}FW: AVG Internet Security 2014 *Disabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}FW: Norton 360 *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}SP: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}SP: Norton 360 *Disabled/Outdated* {D8BEB080-B73A-17E3-1B37-B6B462689202}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}..(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))..c:\program files (x86)\I Want Thisc:\program files (x86)\I Want This\I Want This.icoc:\programdata\374311380c:\programdata\374311380\BITC716.tmpc:\programdata\PCDr\6426\AddOnDownloaded\0bb0beb6-da93-477d-980d-15bb6e2df09c.dllc:\programdata\PCDr\6426\AddOnDownloaded\59be3af2-87f2-4d3a-b380-7509f3d47c40.dllc:\programdata\PCDr\6426\AddOnDownloaded\8745715d-dc8a-4b32-b6a6-89cd3d0cc3c5.dllc:\programdata\PCDr\6426\AddOnDownloaded\9c07cc30-4011-4e36-a63d-e59077a22... Read more

A:COMBOFIX LOG POST -PLEASE HELP!!!

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.===Before I suggest any fix I will need your to run these tools.Download Malwarebytes' Anti-Malware from HereDouble-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).The scan may take some time to finish,so please be patient.If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.The log is automatically saved by MBAM and can also be viewed b... Read more

Read other 2 answers
RELEVANCY SCORE 49.2

I apologize, have tried to read through this to see exactly when and where it is appropriate to post my ComboFix log to be analyzed but I don't understand. Do I attach it here? Thank you, MikkiMad

A:Post Combofix log where?

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below I will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Follow the instructions... Read more

Read other 2 answers
RELEVANCY SCORE 49.2

I have the results of my Combofix Log and don't know where to post it?

GSearnest

A:Where do I post Combofix Log ?

Hello having run ComboFix we need to see that and a DDS log.Please go here....Preparation Guide ,do steps 6 - 9.Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.Skip the GMER step and instead post the ComboFix log you have.Let me know if that went well.

Read other 6 answers
RELEVANCY SCORE 48.8

Hi,i was hoping someone can tell me what i should do next.i had Empire monkey
virus and cleaned it from my computer ,you were recommended by the people over
at McAfee,they said someone can explain what to do next.

respectfully,
LL
 

A:After the surgery!

Hi,
From what you say I think you need to post a HijackThis log and then wait for someone qualified (gold shield next to their name) to take you through what needs to be done. Please go no further than the steps below and posting your results for now.You may want to print off this guide just in case.

Using Hijackthis with the self-installer that puts it into Program Files for you:

go to Click here to download HJTsetup.exe

Save HJTsetup.exe to your desktop.
Double click on the HJTsetup.exe icon on your desktop.
By default it will install to C:\Program Files\Hijack This.
Continue to click Next in the setup dialogue boxes until you get to the Select Additional Tasks dialogue.

Put a check by Create a desktop icon then click Next again.

Continue to follow the rest of the prompts from there.
At the final dialogue box click Finish and it will launch Hijack This.

Click on the Do a system scan and save a log file button. It will scan and then save the log and then the log will open in Notepad.

Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
Paste the log in your next reply.
DO NOT have Hijack This fix anything yet. Most of what it finds will be harmless or even required.

Once you've done this, hang on for further guidance.

Richard.
 

Read other 3 answers
RELEVANCY SCORE 48.8

High, I am new here and as per guidance from a well respected freind working in computers I ran Combofix as directed by BleepingComputer and have a log file which I would like help with. Up till now I have run Malwarebytes, Adaware, Spybot, Norton Antivirus scanners. They seemed to get most of my problems. I lastly ran Combofix because I was advised to and I was still feeling as though I might have infections or problems remaining. Things appear rather good except there is still what seems to be a real problem with memory functions. Mostly my machine will keep freezing somewhat or stalling all together. I have resorted to many a cold shutdown. As per instructions I will wait to post the Combofix log file. I hope I am doing this correctly. I very much lack any experience working within forums of any type. Very inexperienced there. My operating system is Wndows XP Pro SP2, Antivirus is Norton Antivirus 2003, my computer is any ISA no name laptop model, CPU = P4 3000 Mhz, 512 RAM, Video is SiS, and Realtek AC'97 Audio card.

A:request to post a Combofix log.

Hello leighwill Welcome to the BC HijackThis Log and Analysis forum. I will be assisting you in cleaning up your system.I ask that you refrain from running tools other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.In the upper right hand corner of the topic you will see a button called Options. If you click on this in the drop-down menu you can choose Track this topic. By doing this and then choosing Immediate E-Mail notification and then clicking on Proceed you will be advised when we respond the your topic and facilitate the cleaning of your machine.After 5 days if a topic is not replied to we assume it has been abandoned and it is closed.Although I am sure your friend would not give you what he/she considered bad advice it is highly inadvisable to run ComboFix except when you are working with someone trained in its use. That way if something goes wrong we have the support to help figure out what the problem is. But since you have already run it go ahead and post the log and let's see what is going on then we'll go from there.Please do not post any logs as an attachment unless asked to do so.Thanks,thewall

Read other 32 answers
RELEVANCY SCORE 48.8

Got a call from a new client. He had someone work on his machine, Acer tower running Windows XP Media Center. The person ran ComboFix, supposedly created the restore point during that. Since ComboFix completed, attempts to start system come to an NT login screen asking for passowrd. This was a single user system that booted straight to the desktop. Owner advises never had a password. I made one attempt to reset pasword using Hiren's Boot CD with no success. Attempts to start in safe mode hang right after it reaches the point of loading the AGP sections. Any help will be appreciated.

A:Post ComboFix disaster

If you have CF log, I suggest you submit it...along with other requested logs...following the directions at Preparation Guide Before Using Malware Tools .Your topic has been moved because it does not reflect any of the appropriate malware logs...I have also listed it on our internal list of systems which are unbootable due to malware. Someone will attempt to assist you shortly.Louis

Read other 6 answers
RELEVANCY SCORE 48.8

Aloha,I ran combofix.Stuff ended up in the quarantine folder.Now what?Here's the log attachedThanks

A:Post-ComboFix Actions

Hello , And to the Bleeping Computer Malware Removal Forum. My name is Elise and I'll be glad to help you with your computer problems.I will be working on your malware issues, this may or may not solve other issues you may have with your machine.Please note that whatever repairs we make, are for fixing your computer problems only and by no means should be used on another computer.The cleaning process is not instant. Logs can take some time to research, so please be patient with me. I know that you need your computer working as quickly as possible, and I will work hard to help see that happen. Please reply using the Add/Reply button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply. Only attach them if requested or if they do not fit into the post.Unfortunately, if I do not hear back from you within 5 days, I will be forced to close your topic. If you still need help after I have closed your topic, send me or a moderator a personal message with the address of the thread or feel free to create a new one.You may want to keep the link to this topic in your favorites. Alternatively, you can click the button at the top bar of this topic and Track this Topic, where you can choose email notifications. The topics you are tracking are shown here.-----------------------------------------------------------If you have since resolved the original problem you were having, we would appreciate you let... Read more

Read other 2 answers
RELEVANCY SCORE 48.8

I feel awful posting this because rule #2 above is "DO NOT post a ComboFix log unless requested to." Unfortunately, I was following the instructions for using ComboFix, and the last step is "You should now post this log as a reply to the topic where you were asked to run Combofix." Obviously I got ahead of myself. If someone can help me, I'd be INCREDIBLY appreciative. I'm a single mom & my husband used to take care of all of this for me.The problem began this morning. I came downstairs and I had two error messages about Trojans found. I thought it was no big deal, I'd just reboot in safe mode & run SuperAntiSpyware. I tried, and SuperAntiSpyware wouldn't run. Neither would Malwarebytes (which I just downloaded today hoping for some luck). I looked in my processes running, and the only one that looked suspicious was b.exe. After trying unsuccessfully to get any spyware removers to run several times, I came across the ComboFix solution, and followed the steps. I am not sure if this took care of my problem or not. But since the last step is to post logs, I thought I'd give it a shot. I have no idea where else to turn. Here's my log:ComboFix 09-10-17.01 - Computer User 10/18/2009 10:42.1.4 - NTFSx86Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.3071.2695 [GMT -4:00]Running from: h:\documents and settings\Administrator\Desktop\ComboFix.exe.((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))... Read more

A:Following ComboFix instructs, can I post log?

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

Read other 2 answers
RELEVANCY SCORE 48.8

Hello,

gf (Mac User...) connected her external HD to my WinXP machine and I caught some stuff through AutoPlay I guess.

I ran ComboFix and it reported a number of deletions. I include these, but would appreciate if someone took the time to look over the complete log, to tell me if I am clean. I won't attach it to this posting yet.

Also:

- How do I remove the virus/malware from the external HD without re-infecting my HD? (Disable AutoPlay and manually delete?)
- Anything I need to do to un-install ComboFix, I have some folders in C:\, should I just delete them?
Thanks,

David
Just an extract of the ComboFix Log indicating what was deleted:

C:\Autorun.inf
C:\m0vnonh.bat
C:\nq0cq.cmd
c:\windows\system32\ckvo.exe
c:\windows\system32\ckvo0.dll
c:\windows\system32\nmdfgds0.dll
c:\windows\system32\olhrwef.exe

A:Ran ComboFix - request to post log

Moving from HiJack This forum to Am I Infected as no logs are posted. ~ OB

Read other 2 answers
RELEVANCY SCORE 48.4

Yesterday I spent two hours opening a Radeon 5850, cleaning and lubing it. It was noisy as hell and now it's quiet, so time well spent.
 

A:My most complex surgery I ever did

Did you happen to document your progress? Like take pictures of the before, during and after? How about recording fan speeds and temps for the before and after? What did you use to clean it?
Just thinking if someone comes here looking for information on how to do what you just did, by having such information attached, it may very well help that person make a decision on doing it themselves versus bringing it to a "Computer Repair" shop.
 

Read other 4 answers
RELEVANCY SCORE 48

Operating System: Windows Xp System Packet 2

What is the computer used for: Mostly just music and a java based game called Runescape.

What's wrong?: The computer slowed down quite a bit, I installed 1 512 Mb stick of ram, Sped it up for a few weeks but went back to the same old slow speed.

What I've done: Ace utilities, Tuneup Utilities, Spybot Search and Destroy, Avg 8.0, Disk Cleanup, Disk Defrag, Dr. Web Cure It, Combo Fix.

Hijack Log 1:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:21:49 AM, on 5/25/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe
C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R0 - HKCU\Softwar... Read more

A:2 Post's Combofix/Hijackthis/Dr.Web Logs.

Read other 6 answers
RELEVANCY SCORE 48

After a recent Malware infection combofix was used. Everything seems back to normal now except 20 gigs of hard disk space is gone.

~~~~
Completion time: 2009-07-23 17:01 - machine was rebooted [Daniel]
ComboFix-quarantined-files.txt 2009-07-23 21:01

Pre-Run: 71,331,946,496 bytes free
Post-Run: 52,345,913,344 bytes free
~~~~

Any clues on how this could have occured?

Attached is the combofix log file.
Thank you in advance,
Djs20077

A:Post Combofix Disk Space

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

Read other 2 answers
RELEVANCY SCORE 48

I ran the combofix on my computer but do not know where to post the log report for further help. I think there is still some google redirect virus existing on my computer because a second web page opened simultaneous to me opening the mybleeping computer sight. Could someone assist me in where to post the log. Thanks.
Regards,
Terrry

A:where to post log report after running combofix

Please follow the instructions in ==>This Guide<==.Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include the link to this topic in your new topic and a description of your computer issues and what you have done to resolve them.If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.Once you have created the new topic, please reply back here with a link to the new topic.

Read other 1 answers
RELEVANCY SCORE 48

So...my PC is infected by Trojan Horse Generic and Trojan Horse Downloader since yesterday (July 13, 2008). I searched ways to fix this infection and I used ComboFix and did a scan using ComboFix. Now that I'm done scanning, I have my ComboFix Log File. Where do I post that Log File so that it can be analyzed by someone?

A:Where Do I Post My Combofix Log File For Analysis?

Hello ji-ji, Welcome to Bleeping Computer.ComboFix logs should not to be posted outside the HijackThis forums. It is an extremely powerful tool which should only be used when instructed to do so by someone who has been properly trained. ComboFix is intended by its creator to be "used under the guidance and supervision of an expert", NOT for private use. Please read Combofix's Disclaimer. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again.Please explain the nature of your problem. Describe pop-ups and system tray or desktop icons that have appeared. Explain what is "going wrong" with your computer. Note any tools you have used and their respective results.If needed, we will direct you to our HJT Preparation Guide.

Read other 1 answers
RELEVANCY SCORE 48

How do I "post this log as a reply to the topic where you were asked to run combofix??? Where do I do this and how? Do I copy and paste? Attached is the combofix log file. Please advise what I need to do. Thanks!Moderator note: Addressed above question via PM. Pasting in contextual information submitted to me in reply. ~ OBMys desktop computer was infected with the Google/Bing redirect virus. It would not let me search without redirecting me to bogus search engines. I did a search from my laptop on how to fix this issue. Combofix came up as a solution. It seems to have worked. I already unistalled it from my desktop and it appears to be working okay. (???)End of added content. ~ OB

A:How do I post log as reply to topic combofix?

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything. We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here. To help Bleeping Computer better assist you please perform the following steps:*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/424852 <<< CLICK THIS LINK If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.*************************************************** If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lo... Read more

Read other 2 answers
RELEVANCY SCORE 48

I had a good friend who is great with computers tell me to run Combofix on my computer after I was attacked by Vundo. I got this computer fairly new from a friend about four days ago, but when I plugged in my Memory Card from my camera, Vundo popped up, followed by Security Center almost locking me out of the computer completely. I ran ComboFix, and it seems to have helped, but I wanted to post the log and get all of your advice on further actions...THanks a lot for the help! Let me know what you think! ComboFix 09-10-30.01 - Mary 10/30/2009 18:48.1.2 - NTFSx86Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1918.1361 [GMT -5:00]Running from: c:\documents and settings\Mary\Desktop\ComboFix.exe.((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))).c:\docume~1\Mary\LOCALS~1\Temp\csrss.exec:\docume~1\Mary\LOCALS~1\Temp\services.exec:\docume~1\Mary\LOCALS~1\Temp\taskmgr.exec:\docume~1\Mary\LOCALS~1\Temp\winlogon.exec:\documents and settings\Mary\ntuser.dllc:\documents and settings\Mary\Start Menu\Programs\Startup\scandisk.dllc:\documents and settings\Mary\Start Menu\Programs\Startup\scandisk.lnkc:\recycler\S-1-5-21-0050314162-1399679369-598512128-4147c:\recycler\S-1-5-21-0050314162-1399679369-5... Read more

A:Post Vundo Massacre....I need ComboFix Log Help!!!!!

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. Please include a clear description of the problems you're having, along with any steps you may have performed so far.Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.Please download OTL from following mirror:This is THE MirrorSave it to your desktop.Double click on the icon on your desktop.Click the "Scan All Users" checkbox.Push the button.Two reports will open, copy and paste them in a reply here:OTL.txt <-- Will be openedExtra.txt <-- Will be minimizedIn the upper right hand corner ... Read more

Read other 2 answers
RELEVANCY SCORE 48

I have used rkill, Malwarebytes, SuperAntiSpyware, Hijack This, Trojan Romover and AVG. After all this failed I used Defogger, turned off AVG and used Combofix. My browser search is still hijacked. Someone please help! Here is my Combofix log...

ComboFix 10-07-19.01 - Joe 07/19/2010 16:14:18.6.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1535.1020 [GMT -5:00]
Running from: c:\documents and settings\Joe\My Documents\Downloads\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.

((((((((((((((((((((((((( Files Created from 2010-06-19 to 2010-07-19 )))))))))))))))))))))))))))))))
.

2010-07-19 04:50 . 2010-03-17 16:35 309248 ----a-w- c:\documents and settings\Joe\Application Data\Mozilla\Firefox\Profiles\7mxnvpfg.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}\plugins\npietab2.dll
2010-07-19 04:44 . 2010-07-19 04:44 -------- d-----w- c:\program files\Common Files\Java
2010-07-19 04:44 . 2010-07-19 04:44 503808 ----a-w- c:\documents and settings\Joe\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-14c3f1e6-n\msvcp71.dll
2010-07-19 04:44 . 2010-07-19 04:44 499712 ----a-w- c:\documents and settings\Joe\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-14c3f1e6-n\jmc.dll
2010-07-19 04:44 . 2010-07-19 04:44 348160 ----a-w- c:\documents and settings\Joe\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-14c3f1e6-n\msvcr71.dll
2010-07-19 04:44 . ... Read more

Read other answers
RELEVANCY SCORE 48

Recently I have been noticing, from time to time, when I type something, the key strokes come after a few seconds. Initially nothing appears in the filed where I type (say on Goole search filed) and laster a few characters appear. Sometimes they appear fine. I ran malware Bytes and it said there have been no infections. I ran Combofix and it created a log. I read in the forum rules that I should only post Combofix log when I am asked to do. Shall I post?

Arun Rao

A:Slow Key Strokes - Can I post ComboFix Log?

It could just be that your computer is not done loading the site yet. On one of my computers that i use that connects over WiFi that sometimes happens to me. Also your computer could just be taking time to load. I have no reason to belevie there is a virus on your computer but someone else might. If you ran MalwareBytes and nothing then you should be fine. As long as you have some sort of anti virus on your computer.

Read other 1 answers
RELEVANCY SCORE 48

So I ran the comboFix based on instructions from a previous thread. After running I still have quite a few errors, but i have a significant amount of warnings that pertain to Symantec Antivirus (provided by my school), I was wondering if someone could take a look at the log and tell me what still needs to be fixed

Read other answers
RELEVANCY SCORE 48

How do I post the combofix log to a forum to be analized? I've never posted anything so at the post the log instructons, I am lost.

A:how do i post the combofix log to a forum to be analized?

Hi Workingnana,Firstly, for the benefit of both you and others reading this thread, please take note of the following:ComboFix (CF for short) is intended by its creator to be "used under the guidance and supervision of an expert", NOT for personal, unsupervised use. Please read Combofix's Disclaimer. When CF is run without trained assistance, it can no longer be considered a "safe" tool. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again.You may find this topic to be informative - ComboFix usage, Questions, Help? - Look hereSecondly, in regards to your issue. Reboot the computer again. That should set everything straight.~Blade

Read other 2 answers
RELEVANCY SCORE 47.6

Presario V3000 laptop, XP, NVIDIA GeForce Go 6150, drivers up to date, so Windows says.

Modem went out, sent to HP twice. Finally fixed. They had to change main board. Now it looks like a wide screen TV receiving nonHD signal and stretching it to full screen. What should be a square is wider than tall.

Also seems to be glary. White fonts on desktop under icons were opaque until I changed to bold font. Menu font (black) sometimes seems to fade together.

It's probably settings, but I don't know where.

I can call HP (AGAIN) but (no offense to anyone) I just hate to talk to people I have trouble understanding. Thought someone here might be able to help.

Appreciate any help.
 

A:Solved: After HP 'surgery' display not right

Read other 16 answers
RELEVANCY SCORE 47.6

I have used rkill, Malwarebytes, SuperAntiSpyware, Hijack This, Trojan Romover and AVG. After all this failed I used Defogger, turned off AVG and used Combofix. My browser search is still hijacked. Someone please help! Here is my Combofix log...ComboFix 10-07-19.01 - Joe 07/19/2010 16:14:18.6.1 - x86Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1535.1020 [GMT -5:00]Running from: c:\documents and settings\Joe\My Documents\Downloads\ComboFix.exeAV: AVG Anti-Virus Free *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}.((((((((((((((((((((((((( Files Created from 2010-06-19 to 2010-07-19 ))))))))))))))))))))))))))))))).2010-07-19 04:50 . 2010-03-17 16:35 309248 ----a-w- c:\documents and settings\Joe\Application Data\Mozilla\Firefox\Profiles\7mxnvpfg.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}\plugins\npietab2.dll2010-07-19 04:44 . 2010-07-19 04:44 -------- d-----w- c:\program files\Common Files\Java2010-07-19 04:44 . 2010-07-19 04:44 503808 ----a-w- c:\documents and settings\Joe\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-14c3f1e6-n\msvcp71.dll2010-07-19 04:44 . 2010-07-19 04:44 499712 ----a-w- c:\documents and settings\Joe\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-14c3f1e6-n&#... Read more

A:post combofix search engine hijack

I really need someone to help me. I posted this 4 days ago and now my computer is starting to freeze up on me.

Read other 13 answers
RELEVANCY SCORE 47.6

So, Im VERY new here and Im not exactly a novice, but its been awhile since I tangled with windows. Im fixing an old PC I have to gift to a friend, and its totally infected with a ton of malware. I remember a friend recommending ComboFix and before I could join, I ran it. Worked Beautifully. So a few machines from family and friends later, and all of a sudden this happens. 
 
 
It's a windows xp pro SP3 system with a Realtek sound card. It was loaded with malware, and I used combofix to get rid of most of it. The sound disappeared and Im being told the computer has no audio controller installed, and to install one. 
 
In device manager, it says my Realtek HD audio card is working. 
 
Ive tried uninstalling the driver and rebooting, letting it reinstall, Ive tried installing it manually as well, but every time, I get this error:
 
Error Code: -5009 : 0x800706ba
Error Information:
>Ctor\ObjectWrapper.cpp (407)
>Kernel\Component.cpp (1163)
>Kernel\CABFile.cpp (389)
>SetupDLL\SetupDLL.cpp (1541)
pAPP:Realtek High Definition Audio Driver
PVENDOR:Realtek Semiconductor Corp.
PGUID:f132af7f-7bca-4ede-8a7c-958108fe7dbc
$11.50.0.42618
@Windows XP Service Pack 3 (2600) BT_OTHER 0.0
 
When I try to adjust the volume, Im told I had a violation and it will now close. 
I even downloaded a hotfix from Microsoft, but windows update wont run. 
 
Any ideas? A similar topic on another site had similar issues, but the so... Read more

A:Lots of Malware, post-Combofix, No Sound now

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.===--RogueKiller--Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit Quit all programs that you may have started.Please disconnect any USB or external drives from the computer before you run this scan!For Vista or Windows 7, right-click and select "Run as Administrator to start"For Windows XP, double-click to start.Wait until Prescan has finished ...Then Click on "Scan" buttonWait until the Status box shows "Scan Finished"click on "delete"Wait until the Status box shows "Deleting Finished"Click on "Report" and copy/paste the content of the Notepad into your next reply.The log should be found in RKreport[1].txt on your DesktopExit/Close RogueKiller+===Search and delete the AdWare, PUP (Potentially Unwanted Program) installed on your computer.Please download AdwCleaner by Xplode onto your Desktop.Close all open programs and internet browsers.Double click on AdwCleaner.exe to run the tool.Click the Scan button and wait for the process to complete.Click the Report button and the report will open in Notepad.IMPORTANTIf you click the Clean button all items listed in the report will be removed.If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.Close all open programs and internet browsers.Double clic... Read more

Read other 2 answers
RELEVANCY SCORE 47.6

I've run ComboFix to attempt to solve what seemed to be a search redirecting rootkit, per instructions on a previous thread with identical symptoms. The redirect symptoms are still present. All tools except for GMER were run in Safe Mode (ComboFix would crash due to McAffe in normal mode).I need help to fix the redirecting problem, and request other recommendations to fully clean this system. Follows is the DDS output file. Other log files are attached. The GMER log file is not complete: the file scan is taking hours to complete, so I've attached a GMER log without the file scan at this point. The file scan will be appended later.DDS (Ver_10-03-17.01) - NTFSx86 MINIMAL Run by student at 18:24:05.14 on Fri 06/11/2010Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_18Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.511.301 [GMT -4:00]AV: VirusScan Enterprise + AntiSpyware Enterprise *On-access scanning disabled* (Updated) {918A2B0B-2C60-4016-A4AB-E868DEABF7F0}============== Running Processes ===============C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\system32\svchost.exe -k netsvcsC:\Program Files\McAfee\VirusScan Enterprise\engineserver.exeC:\WINDOWS\explorer.exeF:\dds.scr============== Pseudo HJT Report ===============mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr7/*http://www.yahoo.com/ext/search/search.htmlBHO: Adobe PDF Link Helper: {18df0... Read more

A:Search Redirect Rootkit - post ComboFix

Here's the full ark.txt scan, after uninstalling McAffe.

Read other 15 answers
RELEVANCY SCORE 47.6

When trying to install combofix.exe it stalls with a "prep.com has encountered a problem and needs to close" error box.

I have WINxp SP3,
AVG 8.0 free and SPYBOT S&D disabled

PREP.COM seems to be a new error ?? Anyone know about this? Tried 2 links to combofix download, from TSG forum. Bad files?

Have been fighting "antivirus 2009" win32/heur bug. Related?
 

A:Combofix post.com error prevents installation

Welcome to TSG

Sorry for the delay, please post a fresh HIjackthis log. Thanks

Go Here
 

Read other 1 answers
RELEVANCY SCORE 47.2

Hi all,
Haven't made a post in a long time and I'm surprised my account is still active.

Here's the verdict; my laptop came shipped with an OEM Windows Vista installation. I wanted to dual-boot it with Windows XP but needed XP on the C: partition (plus the issue with older version of windows should be installed before a new version is installed) forced me to re-format, install XP SP3, install all the drivers and bring me to what it is now.

My laptop is fully functioning with Windows XP. I have a Linux Ubuntu 8.04 CD, Windows Vista OEM dvd and windows xp sp3 cd at hand. I want to dual boot my system with either windows vista, linux, or both.

Please answer these two questions:

1.) If I create a new partition and install Vista on the new partition, is it possible to upgrade the Vista installation to Windows 7 WITHOUT DOING ANY HARM AT ALL TO THE XP PARTITION OR IT'S BOOT LOADER? So I will then have a dual boot system with Windows XP and 7 (and both OS's fully working)?

2.) If I install Linux in a new partition alongside my XP partition will it be possible to install vista on a third partition AFTER I have installed Linux? So the order in which the operating systems have been installed would be:
- 1. Windows XP installed first
- 2. Linux Ubuntu installed second
- 3. Windows Vista installed third

Any help will be very much appreciated (as long as it's from someone who knows what they are talking about).

Thanks

Read other answers
RELEVANCY SCORE 47.2

Hi I think there,s a problem in here. I have BB (Comcast) running XP sp2 IE sp2
i'd sure be grateful if someone would please take a look ay my HJT? My puter is running so slow at times and doing other strange mysteries. I thought at one point I may be have a trojan, but NIS , S&D, Spyware Dr and Spywre Blaster & Ad Aware don't pick anything up. Thank you all. Bad

Logfile of HijackThis v1.99.1
Scan saved at 10:28:57 AM, on 5/1/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Nhksrv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Common Files\Symantec Shared\Security C... Read more

A:i tnink this puter needs some brain surgery

Read other 8 answers
RELEVANCY SCORE 47.2

Good morning, all! I would like to transplant a Samsung EVO 850 SSD into my Ideapad Z580 notebook from another machine of mine. The SSD has a different OS on it (Linux Mint) than what is on the Lenovo's HDD (which is Windows 8.1), and it is also half the size of the HDD (SSD=250GB, HDD=500GB). When I attempted the transplant, the Lenovo would not boot up past the opening screen and gave me an error message that stated something along the lines of (it went by fast, so I couldn't get the exact wording) "PCI (?) media test failure, please check cable." When I put the original HDD back in there, it booted up as though nothing had happened. I'm wondering why this happened, and would putting a new SSD in there to do a clean install of my OS of choice be preferable? Also, when I attempted to use both a USB drive and a disc to install my OS of choice on it, I could not get it to boot from either of those options in BIOS. What am I doing wrong, here?

A:Ideapad Brain Surgery Not Working!

I would expect it to work.  Are you sure the SSD is good?

Read other 1 answers