[aachenjones]

Is it possible that ComboFix won't work on my machine for some reason? When I double click it opens a window that says "Please Wait" for something like 3 seconds then that spawns another blue window with a blinking cursor that seems to do nothing. I've let it sit for a couple hours now with no apparent activity.

Thoughts?

[evilfantasy]

When you get to the blinking cursor from the keyboard select 1 and press enter. It should run then.

[aachenjones]

I've tried that multiple times now. ComboFix just doesn't seem to want to run. Task Manager says that it's running and I'm getting a constant 50% CPU usage mainly from a process called rapimgr.exe (related to Microsoft ActiveSync). . . but typing 1 and hitting enter does nothing to the blinking cursor within the blue window. Very strange. Sorry this isn't going so smooth.

Any other ideas?

I have another question. . . yesterday when I copied work files from my laptop to an external hard drive AVG popped up saying it detected trojan horse SHeur.AHFT at D:\WDSync_v6_2_038.exe. AVG healed it and moved it to the virus vault. D:\ obviously is the external drive and the file name was an .exe sitting on the drive at the time. Is it possible that the drive or some other files on it are infected? I haven't dared plug it into my desktop machine for fear of passing something along. Is this an unfounded fear?

I'm tempted to ask my sys admin to rebuild my machine unless you've got some additional tricks up your sleeve.

I noticed a similar situation discussed in the post below. Are any of these suggestions worth trying?

http://www.thecomputerforums.co.uk/f...html#post46665

Thanks!

[evilfantasy]

Can you boot into Safe Mode?

If so.

Download SDFix.exe and save it to your Desktop.

Double click SDFix.exe and it will extract the files to %systemdrive%
(Drive that contains the Windows Directory, typically C:\SDFix)

Please then reboot your computer in Safe Mode by doing the following:
* Restart your computer
* After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
* Instead of Windows loading as normal, the Advanced Options Menu should appear;
* Select the first option, to run Windows in Safe Mode, then press Enter.
* Choose your usual account.
* Open the extracted SDFix folder and double click RunThis.bat to start the script.
* Type Y to begin the cleanup process.
* It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot.
* Press any Key and it will restart the PC.
* When the PC restarts the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons.
*] Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt
(Report.txt will also be copied to Clipboard).
* Finally add the contents of the Report.txt in your next post.

[aachenjones]

I'm beginning to think I don't have the admin privileges necessary to fix this. I can't log in to my machine in Safe Mode. In normal mode my UID and password only get me on to my work domain and don't allow me to log on to "this computer" directly if that makes sense. In Safe Mode there is no "log on to:" field, which for me to log on has to be set to my work domain. I thought I had full admin rights, but it's looking like I don't. Maybe this explains why ComboFix wouldn't run?

Am I missing something obvious or are you ready to have me bug off? Thanks for your patience.

[evilfantasy]

Don't give up yet, let me PM Howard and see if he has an idea.

[evilfantasy]

I think you will need to get the administrator in on this one. The SUPERAntiSpyware scan only showed cookies and that isn't enough to be causing the problems you are having.

If you can get the internet connection back then we will have much better chances on a fix.

[aachenjones]

I'm getting my IT ninja involved. Will post again once we're ready to continue. Thanks!

[evilfantasy]

No problem, hope it goes well.

[aachenjones]

Evilfantasy, My IT guy just rebuilt the OS. Was easiest solution for him and I had saved all the data I needed. Thanks for all your efforts.