Combofix log Explanation

Discussion in 'Malware Help (A Specialist Will Reply)' started by melm, Aug 6, 2008.

  1. melm

    melm Private First Class

    I am interested to learn what this means and if there are any problems lurking in my computor. Any input is appreciated.


    Thanks, Mel



    ComboFix 08-08-04.09 - Owner 2008-08-06 18:41:15.1 - NTFSx86
    Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.347 [GMT -4:00]
    Running from: C:\Documents and Settings\Owner\Desktop\ComboFix.exe
    Command switches used :: C:\Documents and Settings\Owner\Desktop\WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe


    Edit by chaslang: Inline ComboFix log removed. READ & RUN ME sticky not followed.
     
    Last edited by a moderator: Aug 7, 2008
    melm, Aug 6, 2008
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    Please do not post inline logs! All logs must be attachments as stated in the forum sticky threads.

    We do not really have time to teach you about everything in a ComboFix log. If you have a very good understanding of the Windows Operating System, you would understand most of it already. In addition a ComboFix log by itself is not going to tell you if you have malware problems as ComboFix is not a comprehensive malware scanning tool. It is a specialty tool and should only be run when directed and under the supervision of an experience malware expert. There was nothing of concern in your log. If you think you are having malware problems, the proper procedure is to follow the instructions in the below sticky thread:

    READ & RUN ME FIRST. Malware Removal Guide
     
    chaslang, Aug 7, 2008
    #2
  3. melm

    melm Private First Class

    Thank you for your reply. I appologize for posting the log the wrong way. It won't happen again. I did the 'Read & Run', and the Malwarebytes was great, it cleaned out the adware. Spybot is another story. Not a good one.

    Thanks again for the information and thank you for your great website.
    It has helped a great deal.

    Melm.
     
    melm, Aug 7, 2008
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You're welcome.


    Now we need to cleanup some items from running ComboFix.

    Copy the bold text below to notepad. Save it as fixme.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.
    Make sure that you tell me if you receive a success message about adding the above
    to the registry. If you do not get a success message, it definitely did not work.

    If you are not having any other malware problems, it is time to do our final steps:
    1. You can uninstall SUPERAntiSpyware now.
    2. We recommed you keep Malwarebytes Anti-Malware as a scanner. It uses no resources except a little disk space until you run a scan.
    3. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop & renamed it like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combo-fix" /u
        • Notes: The space between the combo-fix" and the /u, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
      • Delete the C:\combo-fix folder from combofix.
    4. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
    5. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    6. Go to add/remove programs and uninstall HijackThis.
    7. You can delete the C:\MGtools folder and the C:\MGtools.exe file. You can also delete the C:\MGlogs.zip
    8. If you are running Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning steps in the READ ME for your Window version and see the steps to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.
    9. After doing the above, you should work thru the below link:
     
    chaslang, Aug 7, 2008
    #4
  5. melm

    melm Private First Class

    Thank you for the information and attempt to clean things up, but I'm afraid it went downhill shortly after my last post. The "parrot has been nailed to the perch". I had to do some system restores, followed by a system recovery. So the combofix/mgtools is a mute issue. The laptop got reborn and now I want to throw it out the window, but there is a black bear prowling around my bird feeders and he might not like having a laptop heaved at him. :(

    Thank you very much for your help. I have learned something. Now I have a resource when I screw up my next laptop. :cry
     
    melm, Aug 10, 2008
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    chaslang, Aug 11, 2008
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds