Jump to content

Please help me with my computer


ifarted

Recommended Posts

OK, do the following:

Upload a File to Virustotal

Go to Virustotal

  • Click the Browse... button
  • Navigate to the file C:\Windows\PE_Rom.dll or just copy/paste it in.
  • Click the Scan it tab
  • If you get a message saying File has already been analyzed: click Reanalyze file now
  • Copy and paste the results back here please.

next,

Please download RogueKiller from here http://tigzy.geekstogo.com/Tools/RogueKiller.exe or here http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe and save Direct to your Desktop.

  • Quit all running programs
  • For Vista/Seven, right click -> run as administrator, for XP simply run RogueKiller.exe
  • 1. Wait until Prescan has finished...
  • The following EULA will appear, please select accept
    RKLicence.png
  • 2. Ensure MBR scan, Check faked and AntiRootkit are checked
  • 3. Select Scan
    RK1A.png
  • When the scan completes select Report, copy and paste that to your reply.

RK2A.png

Link to post
Share on other sites

SHA256: cda3396c92a6dcfa22befa214e8312df84f04577d577bf0c3da0b1427ef70ffa File name: PE_Rom.dll Detection ratio: 0 / 45 Analysis date: 2012-12-11 00:14:11 UTC ( 0 minutes ago )

https://chart.google...100,100&chd=t:0

0

0

More details

Antivirus Result Update ViRobot - 20121210 VIPRE - 20121211 VBA32 - 20121210 TrendMicro-HouseCall - 20121211 TrendMicro - 20121211 TotalDefense - 20121210 TheHacker - 20121210 Symantec - 20121210 SUPERAntiSpyware - 20121211 Sophos - 20121210 Rising - 20121210 Panda - 20121210 nProtect - 20121210 Norman - 20121210 NANO-Antivirus - 20121210 MicroWorld-eScan - 20121210 Microsoft - 20121211 McAfee-GW-Edition - 20121211 McAfee - 20121211 Malwarebytes - 20121211 Kingsoft - 20121210 Kaspersky - 20121210 K7AntiVirus - 20121210 Jiangmin - 20121210 Ikarus - 20121210 GData - 20121210 Fortinet - 20121210 F-Secure - 20121210 F-Prot - 20121210 ESET-NOD32 - 20121210 eSafe - 20121210 Emsisoft - 20121211 DrWeb - 20121211 Comodo - 20121211 Commtouch - 20121210 ClamAV - 20121210 CAT-QuickHeal - 20121210 ByteHero - 20121207 BitDefender - 20121210 AVG - 20121211 Avast - 20121211 Antiy-AVL - 20121204 AntiVir - 20121210 AhnLab-V3 - 20121210 Agnitum - 20121210

RKreport1_S_12102012_02d1916.txt

Link to post
Share on other sites

OK, run the following:

Delete any versions of Combofix that you may have on your Desktop, download a fresh copy from the following link :-

Combofix

  • Ensure that Combofix is saved directly to the Desktop <--- Very important
  • Disable all security programs as they will have a negative effect on Combofix, instructions available Here if required. Be aware the list may not have all programs listed, if you need more help please ask.
  • Close any open browsers and any other programs you might have running
  • Double click the combofix.gif icon to run the tool (Vista or Windows 7 users right click and select "Run as Administrator)
  • Instructions for running Combofix available Here if required.
  • If you are using windows XP It might display a pop up saying that "Recovery console is not installed, do you want to install?" Please select yes & let it download the files it needs to do this. Once the recovery console is installed Combofix will then offer to scan for malware. Select continue or yes.
  • When finished, it will produce a report for you. Please post the "C:\ComboFix.txt" for further review

****Note: Do not mouseclick combofix's window while it's running. That may cause it to stall or freeze ****

Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.

Note: Combofix prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you -- please tell us when you reply. Read Here why disabling autoruns is recommended.

*EXTRA NOTES*

  • If Combofix detects any Rootkit/Bootkit activity on your system it will give a warning and prompt for a reboot, you must allow it to do so.
  • If Combofix reboot's due to a rootkit, the screen may stay black for several minutes on reboot, this is normal
  • If after running Combofix you receive any type of warning message about registry key's being listed for deletion when trying to open certain items, reboot the system and this will fix the issue (Those items will not be deleted)

Post the log in next reply please...

Kevin

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.