Can anyone check this Comofix Log? Might need a script

Hi All,

We have a Windows XP Pro SP3 machine that seems to have a bad infection.  It gets constant pop-ups and fake AV messages.  Combofix ran and didn't seem to remove it.  Hitmanpro hasn't done much good either.  Working on an MBAM log to post next.  

Would appreciate it if anyone can help review and perhaps get a custom CF script written if needed.

Thanks!
ComboFix.txt
JsmplyAsked:
Who is Participating?
 
Sudeep SharmaConnect With a Mentor Technical DesignerCommented:
are you able to update the MBAM? If you do them log into safe mode and do the full system scan

Sudeep
0
 
Sudeep SharmaTechnical DesignerCommented:
0
 
Sudeep SharmaTechnical DesignerCommented:
Also try renaming combofix.exe to something else like cf.com and run it then if that makes any difference.

Sudeep
0
Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

 
JsmplyAuthor Commented:
Hi Sudeep, Combofix is able to run but it just doesn't seem to fix the problem.  Can try with a rename anyway.
0
 
Sudeep SharmaTechnical DesignerCommented:
Also try the TDSSKiller as suggested earlier.

Sudeep
0
 
JsmplyAuthor Commented:
Thanks, already running now.  Will post back soon.
0
 
JsmplyAuthor Commented:
TDSSKiller says no infection found.  Definitely still there though, getting constant pop-ups from fake AV's, etc.
0
 
JsmplyAuthor Commented:
Well it took multiple passes in MBAM and SAS, along with Combofix and CCleaner, but the machine is now giving a clean result in all scans.  Thx!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.