We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

Can someone look at this Combofix log?  Machine still very slow

Jsmply
Jsmply asked
on
Medium Priority
560 Views
Last Modified: 2013-11-22
I have a Windows Vista laptop I'm trying to help with.  It's running VERY slow lately.  Granted the laptop only has 768 MB of ram and it's running Vista, but it still was quicker than this up until recently.  The user never had an issue with basic tasks, now lately opening My Computer can cause it to hang at times.  

I've run Combofix and it removed a lot, but it also mentioned some files it "coudl not find.'  Would someone mind looking over the log and see if a script is needed?

Thanks!
ComboFix.txt
Comment
Watch Question

Unlock this solution with a free trial preview.
(No credit card required)
Get Preview

Author

Commented:
Okay, I finished Malwarebytes, it found a lot of stuff, most of it being the MyWebsearch toolbar so I guess Combofix didn't get it all.  Here is the MBAM log after it ran.

Does this look like it got it all?  I also see things such as Trojan-Vundo, etc.  Do I need a custom script for Combofix or is MBAM able to remove this?
mbam-log-2009-06-29--20-25-25-.txt
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview
Combofix should have removed Vundo. However, in some instances you need to rename Combofix BEFORE you download it to your system. If not, and you are infected Combofix may not run properly. You may also need to run your antimalware applications in Safe Mode (If all else fails).
To enter Safe Mode, reboot and select F8 at startup, log on as usual and then run your scans.
Symantec states to disable System Restore for the Vundo infection. This also allows proper detection and removal.
Directions can be found here:
http://support.microsoft.com/kb/310405
Symantec also offers a free Vundo removal tool.
http://www.symantec.com/security_response/writeup.jsp?docid=2004-112210-3747-99

Author

Commented:
Thx!
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a free trial preview!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.