Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Reenabling the Services caused by Malware


  • Please log in to reply
1 reply to this topic

#1 Zonny

Zonny

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:08:11 PM

Posted 26 October 2009 - 08:49 AM

On September 8, 2009, I downloaded and installed the latest version of Combofix, which I had used several times previously with success.

I was working on a Dell XPS M1330 with Vista; the PC in question was infected with GreenAV, a variant of common scareware.

Combofix ran and appeared to remove the malware. Two serious problems have occurred:

=== Unfortunately, I forgot to disable the Windows Firewall and Windows Defender. These features and other related Windows Services are disabled; I can not reenable them from the Services menu.

=== Even worse, when I click on C:\Combofix a loop is created of the C drive. Each time I click on the loop repeats. There is no apparent way to uninstall Combofix.

I am uncertain whether the malware or Combofix have caused the problems.

QUESTIONS:
=== Is there an easy solution other than a clean install?
=== Is there a way to uninstall combofix from the RecoveryConsole?

Zonny

BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,771 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:11 PM

Posted 26 October 2009 - 09:26 AM

Please note the message text in blue at the top of this forum.

You should not be using Combofix unless instructed to do so by a Malware Removal Expert who can interpret the logs. It is a powerful tool intended by its creator to be "used under the guidance and supervision of an expert", NOT for general public or personal use. Combofix was never meant to be used as a general purpose malware scanner like SuperAntispyware or Malwarebytes' Anti-Malware. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again. Please read Combofix's Disclaimer. That's the decision by the creator and we will abide by that decision.

To uninstall ComboFix, go to go to Posted Image > Run... and type in the run dialog box: ComboFix /Uninstall
  • Press OK.
  • When shown the disclaimer, Select "2"
  • Doing this will:[list]
  • Delete ComboFix's related folders and files.
  • Reset the clock settings.
  • Hide file extensions and system files.
  • Clear the System Restore cache to prevent possible reinfection
  • Create a new Restore point.

.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users