Combofix reboots...then nothing

Hello -- was going through READ AND RUN ME and found I had Virtumonde. I was ready to start Combofix. Upon double clicking the icon, a message came up saying Combofix had detected rootkit activity and would need to reboot. After rebooting, a DOS type window briefly flickered that said "GREP is not recognised as an external file blah blah@, too quick to read it all, then nothing...

I know I am not supposed to click on things during Combofix, BUT in order to reboot, I have to first end a mysterious program called sprtcmd.exe in order to reboot. Then after rebooting, all my start up applications opened, which I had to click on to close.

If I then double click on Combofix again, thinking I should try again, I again get the message that it needs to reboot.

What should I do to get this to run successfully?

Thanks for your help, dear fellow Geekolas.

--alchemilla

 

Thanks. I think McAfee was interfering with the proper download of Combofix in the first place. I turned off McAfee even when downloading and that may have solved the issue. I renamed Combofix also, and it ran successfully. I did combofix last, after MG tools.

I am attaching the logs, all created today. You should note that I ran the SAS, Spybot and MBAM two days ago as well (that's when I got stuck at Combofix) and that is when I saw Virtumonde mentioned, in MBAM. My results looked different today.

Today's logs:

 

And the other logs:

Thanks for this -- your forums are packed with malware sufferers, even more so than the last time I had a problem. I hope you guys get some sleep occasionally!

alchemilla

 

Tim
Well, things SEEMED better...but McAfee has picked up and quarantined four times today a something called Tool-NirCmd. Could that possibly just be a bit of Combofix?

Here's hoping,
alchemilla

 

Nope, will do it now. I wanted to make sure I didn't need to do the whole Read and RunMe process again first.

THank you Tim, you're a dear!