my computer got infected a few hours ago by some kind of rootkit/malware
and the problem is that I can't do my homework for the university that I'm attending lessons (and it's deadline is on Sunday)
and I don't have any other pc to work with.....
So, for the love of God PLEASE HELP ME.....
I've got XP SP3 fully updated.
I've experiencing random/continous hanging on almost all programs ,
rightclicking on any file takes about 10 sec to show
or sometimes there's even an empty menu...
and when starting programs (even. a command prompt or notepad), it takes 3-5 sec to start...
I tried to run dds.scr but it goes on showing :::::: but never ending...
I also tried Combofix (downloading and saving it as comfix.exe)
and it finds these three files
(dir from a command prompt)
14/04/2010 04:25 200.704 bytes 78296E40.nbp
14/04/2010 04:25 337.408 bytes 78296E41.nbp
14/04/2010 04:25 160.768 bytes 78296E42.nbp
tries to delete them,
but stays forever in 'Don't start any program until combofix log is created' stage
so the log is never created.
If I rightclick on each of these files I get these descriptions on the Version tab:
1st file 78296E40.nbp (196 kb): Editor de código HTML para Windows 32bits
2nd file 78296E41.nbp (330 kb): Editor de código HTML para Windows 32bits
3rd file 78296E432.nbp (157 KB): rlFunctions Plug-In for NeoBook for Windows
I can't delete these files even with Unlocker.
I can howver delete them when in safe mode
BUT when I reboot again normally these 3 files get recreated with some similar naming/numbering and always having the .nbp extension////
It's obvious that I've got malware
I alslo tried to run gmer but it hangs showing just a white empty window without even title...
What I can only show is a log from Hijackthis 2.03 beta
and an Autoruns log.
(I've also ran Unhackme, Malwarebytes Anti-Malware, Superantispyware & scanning with Kaspersky internet security 2010 but they find notthing.... )
Please help me - I'm desperate.....
PS. I've tried running OTC to cleanup Combofix, rebooting and running it again up to 5 times already,
but it always only finds these 3 files above, and can't really delete them...
Edited by darkred, 14 April 2010 - 02:06 AM.