It keeps coming up with alternating messages:
Infiltration Client: it shows an address/port with Win32/Nugel.E or BankerFox.A
I cannot click on any .exe without it saying the file is corrupt.
If I boot in Safe Mode, or if I log in using a different log-in the virus does not pop up.
So far, I've downloaded and ran ccleaner, then I ran Malwarebyte's Anti-Malware
It found 4 items to remove. Removed them, rebooted and tried to log-in nomally with the problem Log-in.
I then downloaded and ran Spybot S&D, it found a few more items to remove.
I then downloaded DDS.scr and saved the log in case someone needs me to post it.
and Combofix.exe and saved those logs.
I thought I had cleared it up after that. I logged in with the problem login and for 15 + minutes
it seemed clear. shut it down and set it up at the user's station and it started up again.
The user can login with another login and he can run all his software and get his work done.
I'd appreciate any thoughts.
Edited by Orange Blossom, 01 March 2010 - 10:56 PM.
Move to AII. ~ OB
Back to top
