Jump to content

Recommended Posts

On 18-January I got infected with WindowsRecovery 2011. It threw a party and invited lots of friends, TDSS/Alureon (in various flavors), System Check, and many, many others. Researched numerous forums and over the course of now three weeks, managed to get system seemingly clean but was uncertain due to redraws during boot. At point of infecton, malware was missed by MSE, SuperAnti-spyware, and Malwarebytes' Antimalware, all three of which were used to scan before launch... It happens. (Yes, I know precisely what I did wrong, and about 48-hrs after I got tagged, updates to all three ID'd the culprit. Better late than never ... but they still miss it inside its ZIP carrier.)

Tools used thus far included those as well as unhide, TDSSKiller, RUBotted, RootKitBuster, Housecall, HiJackThis, GMER, ComboFix,and rkill (not in said order). Today after more reading I decided to give it another go to see if any remnants were left lying about, mostly because of the screen draws and (IMO) too-frequent captures of Trojans. So, following the "I'm infected, now what" write up, I ran dds, attach, and ComboFix. Now I need another set of eyes, better trained than mine, to look over the logs and point the way.

Also, FWIW, ComboFix quarantined a false positive. I don't have a clue how to get it to sUBs. It nailed the Data Robotics programs that run the dashboard interface between PC and their super-sweet Drobo hot swap storage device. That software is probably hosed and will need an un/re-install but the interface and data exchange between CPU & storage work fine.

This is all taking place on an XP-SP3 CPU. Interestingly, I tried to open and launch this puppy on a new Windows 7 SP1 64x ultrabook I just got and Windows refused to run it. That's why I ran it on the XP box. (Yeah, I know. Why do you think it's taken so long for me to reach out?) I have no idea what remnant, if any, got onto the Win 7 64x system.

Any help greatly appreciated.

Link to post
Share on other sites

  • Root Admin

Well if you've been reading all these other forums and have used all these tools then you should know that most helpers probably don't want to assist you because you could have damaged the system and made things much harder to detect and fix by using tools indiscriminately.

However please go ahead and follow the directions below and someone should assist you as soon as they can.

If you think you are infected, here are the steps needed to get your computer cleaned....

Please read the following so that you can begin the cleaning process:

Don't use any temporary file cleaners unless requested - this can cause data loss and make recovery difficult

You have 3 Options that you can choose from as listed below:

  • Option 1 —— Free Expert advice in the Malware Removal Forum
  • Option 2 —— Paying customer -- Contact Support via email
  • Option 3 —— Premium, Fee-Based Support

OPTION 1

As we don't deal with malware removal in the
General Malwarebytes' Anti-Malware Forum
, you need to start a topic in the

Malware Removal forum

so a qualified helper can help you fix any malware related problems or infections you may have.
  • Please read and follow the directions here, skipping any steps you are unable to complete.
  • After posting your new post, make sure under options, you select Follow this topic and choose Instantly,
    so that you're alerted when someone has replied to your post.

NOTE: Please do not post back to (bump) your topic within the first 48 hours.

Replying to your own posts changes the post count and helpers are looking for topics with zero replies.

If you reply to your own post helpers may think that you're already being helped and thus overlook your post.


    • If there is no reply from any experts after 48 hours, you can reply to the topic, asking for help again.
      Or
    • You may send a Private Message to a Moderator asking for assistance.

OPTION 2

Alternatively, as a paying customer, you can contact the help desk at
support@malwarebytes.org
or
here
.

OPTION 3

If you would like to use our
Malwarebytes Premium Consumer Services
partner, Comprehensive solutions to all your computer support needs—from installation and set-up to troubleshooting and tune-ups go to our
Malwarebytes Premium Services
support site.

Please be patient, someone will assist you as soon as possible.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.