W32.Rontokbro@mm

Status
Not open for further replies.
S

Sophacles

Same problem as jon2367

I'm having the exact same problems as Jon. The machines have updated virus definitions and I have tried the safe mode solution. Norton alternates between w32.rontokbro@mm and w32.rontokbro.b@mm and deletes the payload quickly, however it continues to drop its load unless I disconnect the machine from the network. I am a net admin (as it appears Jon is) and I am looking for a way to trace the source. Any ideas? I have all the guest accounts turned off so I'm not sure what account is being used to create the files. Any takers on a solution?
 
Hello and welcome to Techspot.

Boot into safe mode. See how HERE. http://www.bleepingcomputer.com/forums/tutorial61.html

Turn off system restore.(XP/ME only) See how HERE. http://www.bleepingcomputer.com/forums/tutorial56.html

Now run your antivirus programme again and delete whatever it finds.

Reboot into normal mode and turn system restore back on.

Then, go HERE and follow the instructions exactly.

Post a fresh HJT log into this thread, only after doing the above.

Regards Howard :wave: :wave:
 
Status
Not open for further replies.

Similar threads

midian182
Apex Legends tournament postponed after players hacked mid-match
Replies
0
Views
91
midian182
midian182
C
Facebook stubbornly refuses to load pictures
Replies
0
Views
1K
catc01
C
Cal Jeffrey
EA says 60 percent of the Madden save files it corrupted during "maintenance" cannot be...
Replies
7
Views
752
Xallisto
Xallisto

Latest posts

Back