Posted 04 December 2011 - 10:37 PM
I just read that you don't want to see a log file from ComboFix on the first post, so I won't post it.
Here is a description of the problem: I'd been seeing a lot of viruses and trojans being caught by MS security, so I was running antivirus scans and also Spybot scans regularly. I had an AV Security Suite virus that I also attempted to remove. I came home from work one day and there were about 50 dialog boxes open stating that windows couldn't find some file or some such nonsense, the desktop was black, and there appeared to be no files on the computer. In fact, all of my files had been made hidden. I couldn't open task manager because it had been "blocked by my administrator". I stopped in at a local computer repair shop and spoke with someone who said he'd seen that happen before, and he said ComboFix usually took care of it and to run it from a flash drive. I did so in safe mode, but I had chosen plain safe mode, not safe mode with networking, so it didn't install a restore point. ComboFix said I had the Rockit virus and that it was particularly difficult to remove and had to reboot my computer. So it rebooted and continued until it finished. I then rebooted again with networking (still in safe mode) and ran it again for good measure and it installed the system restore software.
So I have two logs and would like someone to look at them.
I also have a couple of questions:
1. How did I get these viruses?
2. Is it possible that I was infected because there was a port open that should not have been? I stupidly installed a NDIS program so that I could run an old dos game in multiplayer mode, without reading up on how DosBox handles it for you. I uninstalled the NDIS software, but I'm not sure it got everything or closed the port (if it even opened one).
3. What should I do next?