Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Rustock, Vundo, Combofix, No Connectivity


  • Please log in to reply
3 replies to this topic

#1 mcostanzo

mcostanzo

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:12 PM

Posted 17 February 2009 - 10:01 AM

Good morning --

I recently experienced an alureon infection on one computer at home, and had professional help running combofix and Malware Bytes Anti-malware to remove it successfully.

Yesterday, another laptop, running Windows XP Home edition on a separate network alerted me via Windows Defender and AVG that it was infected with many, many things including rustock.b and vundo. Icons began flickering on and off, everything ran extremely slowly, and the computer kept crashing. AVG and Windows Defender could not seem to successfuly delete any of the corrupted files.

I restarted the computer in Safe Mode and downloaded and ran combofix. It found several infected files and deleted them. Now, however, I am unable to connect to the internet. I reset the router, and restarted the computer a few times. I tried in safe mode and regular mode. I also attempted to run ipconfig\release (renew), but the computer cannot find any ip settings for the computer. I ran AVG once more in Safemode, and it did not find any infections (though I'm not sure I trust this).

Any suggestions about what I might try next? I would run MBAM, but I cannot connect to download this.

Thanks so much

BC AdBot (Login to Remove)

 


#2 DaChew

DaChew

    Visiting Alien


  • BC Advisor
  • 10,317 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:millenium falcon and rockytop
  • Local time:03:12 PM

Posted 17 February 2009 - 02:44 PM

This is one of the main reasons Combofix is not intended for general use, it's a special tool meant only to be used under a trained helpers supervision, they use special tools and know when to use combofix. All the guides and warning are there for
a reason.

You could use a usb drive to transfer such tools and post in their forum

http://www.bleepingcomputer.com/forums/t/34773/preparation-guide-for-use-before-using-malware-removal-tools-and-requesting-help/
Chewy

No. Try not. Do... or do not. There is no try.

#3 mcostanzo

mcostanzo
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:12 PM

Posted 18 February 2009 - 10:22 AM

Thanks for your help. I was definitely aware of the risks, and I guess I just made a bad decision I apologize for posting in the wrong forum.
Thanks again.

#4 DaChew

DaChew

    Visiting Alien


  • BC Advisor
  • 10,317 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:millenium falcon and rockytop
  • Local time:03:12 PM

Posted 18 February 2009 - 10:27 AM

This is a rather advanced problem and I would assume that it will take a trained expert to unravel and they will need to see that combofix log at some point, I can only guess since I have not had that training.

Edited by DaChew, 18 February 2009 - 10:27 AM.

Chewy

No. Try not. Do... or do not. There is no try.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users