Virtumonde and other issues

I have a computer with winxp pro with sp2 on it with all of the updates. Has been running for about 6 months with no issues. Booted the other day and found Dealio icon popup in my task bar and knew that all was not well. Tried to go to Start, Run, and then Msconfig to see what was going on, but no can do. The Shutdown and Run dialog boxes were missing. I knew I was in for trouble. I ran Superantispyware, Spybot S&D, and Mcafee and they all found many issues. Most problems were gone, but I ran them every day for a few days and they still found just a few things, but never totally clean. I found this forum and I have run all the basics. I have updated my java to Java6 update 3. I had Java6 update 2. I ran counterspy and I have a log. I was at the step to run the online portion, but I can no longer get online either in safe mode or regular mode. I ran winsockxpfix.exe, which has fixed connection problems in the past on my machine and several others, but I still can not get online. When I plug in my cable to my switch, I see the green light come on, but no connection. I try to disable and reinable my NIC, but no luck. Repairing the connection does not work either. Since I can not get online, I have halted at the step of online scanning.

Brian

 

Ran combofix but still can not get on line.

 

I also ran vundofix but it could not complete. It asked to reboot to take care of a file, but then it still could not get rid of it. The name of the file is:

wvurqnl.dll

Rian

 

Here are my logs.

Brian

 

OK, I followed your instructions and I am posting the logs. I have been using a different computer to use the internet than the one that has the problem. It is still disconnected from the net. After your next response, I will hook it back up and try to get back on. I will post the last file on the next post.

Brian

 

Here is avenger.

Brian

 

Still no internet, would you like any new logs after I entered the new reg data?

Brian

 

Okay, I reset the defaults and no luck. I changed my cable, no luck. Plugged directly into router instead of switch, no luck. Used external USB NIC, no luck. When I plug my internal or external NIC into switch or router, the light comes on to indicate a connection was made. Powered down router and switch, no luck. All other computers on network work fine. I removed my network card from device manager and rebooted, but all that did was make it to where I can not see any network connections at all. If I try to run the network connection wizard or get to the network properties, it will usually just hang. I pulled up the task manager and looked at the processes and there is one process that takes up 50% of my core 2 duo processor. I can not seem to enable my network at all. I tried to disable then reinable my NIC's, but no luck. I can not post any ipconfig data because I can not access it

Brian

 

Yes, I did see a balloon, but I think that I had previously installed that usb nic, so I uninstalled it and manually added it like you mentioned. The link light comes on and the tx/rx light comes on as well, but still no network. Which event logs are you speaking of?

Brian

 

Well, I could not get the network to work at all, so the whole thing was hosed. Finally had to reformat and start from scratch. Tried to do a repair install, but it hung at the installing network part. Thanks for the help anyways. That was a real booger !!

Brian