I am guessing it is NOT all cleaned. Only because every cleaning program was not done on all drives which is the way it should have been done.
Bulk of cleaning was done on C drive. Combofix was only run on C drive for instance as was SDFix.
Administrator
I am guessing it is NOT all cleaned. Only because every cleaning program was not done on all drives which is the way it should have been done.
Bulk of cleaning was done on C drive. Combofix was only run on C drive for instance as was SDFix.
Member
So would you rather I go to another forum for help at this point?
Administrator
Ok, here is the reason this upset me so much, as you know you said nothing about multiple hard drives, so, I wasn't LOOKING for multiple hard drives, which means I made and error.
Now look at all these scans and what YOU told the programs to scan:
1st MBA-M...C & E
2nd MBA-M...C, E, F, G
3rd MBA-M...C,F,G,H.
Rootkit Reveal found items on C & E
Dr Web Cureit found items on C & F
ESET I have to assume was only run on C
Combofix of course ran on C
SDFix ran on C
You were never consistent on what drives you had scanned, especially with MBA-M which can pretty much scan all drives.
Yes, many infections showed on C drive...is this the one with the new install or was it one of the other ones?
Most infections were found on C but I have no way of knowing if C is the infected drive and it is infecting the others or if one of the other's is infected and is spreading the infections to C.
Member
I have three hard disks, one of them I was initially going to wipe, however by the time this thread was answered I had decided to include it in the process and salvage some of the files. the fourth is a 4gb usb stick which has no files, but I had plugged in so included in the scans. I believe along the way the CD drive letter was switched with drive E.
Now I have 3 discs, however my system drive is split in two (did it late last night): C and E . this shouldn't have effected anything though, I just resized C and made the new space a new partition.
the other hard drives are now called F and H
the removable is G and as of today has some downloaded files on it (for the reinstall I had planned)
Administrator
Honestly at this point I don't know what to tell you. We have no way of knowing which hard drive contained/contains the infection. I don't believe just wiping the drive we just cleaned out will assure you that it won't get infected again. Obviously this drive was clean and was reinfected by something from one of the other drives.
I am just truly dismayed that all this information wasn't included from the beginning because I now cannot in good conscience tell you that anything is clean.
Member
I'm certainly not insisting it's clean at this point, i thought it was, but obviously not.
I am really at a loss for words at this point, I really want to thank you for you help, I will start over again somewhere else.
Administrator
Please give where ever you post ALL information and all drives. Run scans on ALL drives for every program you run, otherwise you will never be certain all infection is remove. Do that or else reformat all drives and reload. But if you do that don't install anything that was saved from an unscanned drive, that could be the one.Originally Posted by philtro
Member
I am still baffled as to how these results didn't make it clear that I had more than a C: drive/partition. I assumed all along that you were seeing other drive letters than C:.
Once again, I thank you for your time and help.
Phillip
Administrator
Sorry you cannot understand. I made an error because I wasn't given full information on the system, I admitted I made an error. These logs are not easy to read as it is and sometimes things are missed. I guarantee things WILL not be missed if poster provides FULL INFORMATION.I am still baffled as to how these results didn't make it clear that I had more than a C: drive/partition. I assumed all along that you were seeing other drive letters than C:.
TehAdministratorman
philtro - when you are requesting help of this nature in regards to any type of malicious software it is imperative that you provide the forum with full detailed information on what your system contains, especially drives. Malicious files are notorious for embedding and duplicating themselves making it more difficult to remove.
If you feel the need to go elsewhere, by all means do so.
I do encourage you though, to try and make amends, and provide full detailed information of the system if you would like help to further clean the system. That is if jholland is still willing to help.
You must understand that incomplete information makes fixing an issue such as this, impossible.
"Best to keep your mouth shut and be thought a fool than to open your mouth and remove all doubt."
"Honesty is the First Chapter in the Book of Wisdom" - Thomas Jefferson
Desktop:
AMD Phenom II x6 1100T @ 3.3Ghz
MSi 890FXA-GD70
16GB G.Skill DDR3-1600
Asus HD6950 2GB GDDR5 PCI-Ex16
4x 1.5TB WD SATA w/64MB cache in RAID10
2x Asus 22x DVD/CD +/-RW DL SATA
Rosewill Xtreme Series 950W PSU
2x 23" 5ms Asus Widescreen LCD
Laptop:
15" Aluminum MacBook Pro
Intel Core 2 Duo 2.53Ghz
4GB DDR3 @ 1067MHz
320GB SATA 7200RPM HDD
**View My Forum**
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
Reply With Quote