Death B4 Reformat Posted October 20, 2010 ID:330401 Share Posted October 20, 2010 Hi. I got a ramnit B virus about a week ago. It was picked up by my AVG 9.0 which couldnkaspersky_scan.txtAVSCAN_20101019_162252_3B6955FD.LOGmbam_log_2010_10_14__19_09_30_.txtOTL.TxtOTL_Extras.Txt Link to post Share on other sites More sharing options...
Gammo Posted October 22, 2010 ID:331912 Share Posted October 22, 2010 Hi,Download ComboFix from one of these locations:Link 1Link 2* IMPORTANT !!! Save ComboFix.exe to your DesktopDisable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. Here is a guide on how to disable them: Click meIf you can't disable them then just continue on.Double click on ComboFix.exe & follow the prompts.As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:Click on Yes, to continue scanning for malware.When finished, it shall produce a log for you. Please include the C:\ComboFix.txt log in your next reply. Link to post Share on other sites More sharing options...
Death B4 Reformat Posted October 23, 2010 Author ID:332475 Share Posted October 23, 2010 Hi Gammo. I ran combofix. It successfully tackled a winlogon infection, but on reboot i had to activate my copy of windows. I clicked yes to do this and i got to a screen which said my copy was unauthorised and i had to enter my product key. Seeing as i bought the computer with XP pre-installed and not had serious virus trouble before i've never had cause to write it down from My Computer > Properties; that's assuming it's legit. Is there anyway around this?I notice on booting up i now have the OP option of Microsoft recovery console, though it says not to choose this option cause of debugger enabled? Link to post Share on other sites More sharing options...
Death B4 Reformat Posted October 23, 2010 Author ID:332476 Share Posted October 23, 2010 Hi Gammo. I ran combofix. It successfully tackled a winlogon infection, but on reboot i had to activate my copy of windows. I clicked yes to do this and i got to a screen which said my copy was unauthorised and i had to enter my product key. Seeing as i bought the computer with XP pre-installed and not had serious virus trouble before i've never had cause to write it down from My Computer > Properties; that's assuming it's legit. Is there anyway around this?I notice on booting up i now have the OP option of Microsoft recovery console, though it says not to choose this option cause of debugger enabled? Link to post Share on other sites More sharing options...
Gammo Posted October 24, 2010 ID:332926 Share Posted October 24, 2010 Hi,ComboFix installed the Recovery Console. You don't have to do anything with it, unless I tell you to do so. Please run the MGA Diagnostic Tool and post the report it produces:Download MGADiag to your desktop.Double-click on MGADiag.exe to launch the program.Click Continue.Ensure that the Windows tab is selected. (It should be by default.)Click the Copy button to copy the MGA Diagnostic Report to the Windows clipboard.Paste the MGA Diagnostic Report into your next reply.~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Please download WVCheck by Artellos from one of the mirrors below;Artellos.com (exe)Artellos.com (zip)After the download, run WVCheck.exeAs indicated by the prompt, This program can take a while depending on your hard drive space.Once the program is done, copy the contents of the notepad file as a reply. Link to post Share on other sites More sharing options...
Death B4 Reformat Posted October 24, 2010 Author ID:332961 Share Posted October 24, 2010 Hi Gammo,Perhaps i should have said that i made the earlier post on (this) other computer. I can't get to the start page of my main computer. It won't let me unless i activate Windows with the product key i don't have. Any ideas? Link to post Share on other sites More sharing options...
Gammo Posted October 24, 2010 ID:333039 Share Posted October 24, 2010 Seeing as i bought the computer with XP pre-installedWhere did you buy your computer?Is there a Windows license sticker on the computer case? Link to post Share on other sites More sharing options...
Recommended Posts