Trojan/Vundo problems - is it clean?

fredtgreco · Jan 5, 2009

I am attempting to clean a colleague's laptop. He reported it "crashed" but after running some hard drive tools and spyware tools, it appeared to be infected with multiple trojans.

Anyway, I followed the instructions on the MajorGreeks thread about cleaning an XP system:
http://forums.majorgeeks.com/showthread.php?t=139313

And after running SuperAntiSpyware, Spybot S&D, Malwarebytes, the Combo Fix and the MGTools, it appears (with one caveat,* see below) to be working fine. Before I allow the laptop out of the quarantine box, and allow it to network, I was hoping to get a "second opinion" as to whether or not it is clean. So I am posting the logs here. Any help would be appreciated.

* The one caveat is that I can't seem to share the C:/ drive (the root itself) any more. I am wondering if this is a result of the ComboFix. The ComboFix appeared to change my internet settings to a specific IP (or maybe that was malware, I don't know) from the DHCP assigned IP I had it at. I am guessing that it would do that to combat Malware trying to hijack the IP, but don't know. Would it also have changed a registry setting as well on the sharing?

I can't even get the sharing tab to show up on the C:/ folder (it shows up on the others). I have done the basic things, like a Google search, and unchecking "Use SImple File Sharing" in the folder options. Any help would be appreciated:

1. To confirm the PC is clean
2. To allow sharing the C:/ root.

chaslang · Jan 8, 2009

Welcome to Major Geeks!

You need to attach the logs from SUPERAntiSpyware and Malwarebytes. We did not need to copies of the ComboFix log. Only the C:\combofix.txt log is the one we want. It will always be there after combofix finishes running properly.

Log in or Sign up

Trojan/Vundo problems - is it clean?

fredtgreco Private E-2

Attached Files:

log.txt

MGlogs.zip

ComboFix.txt

chaslang MajorGeeks Admin - Master Malware Expert Staff Member