win32:sifefef-A0 virus

Viruses and worms
21

OTL attached

22

OTL log looks good. How is your computer running now?

I would also like to see why the BSOD has occured.

Please download BlueScreenView (in zip file) to your Desktop
www.nirsoft.net/utils/bluescreenview.zip

Extract (right-click > Extract all) the contents of bluescreenview.zip.
Double-click on the Extracted Folder
Double-click on the BlueScreenView.exe file, to run the program. (No installation is required.)

When scanning is done (usually complete by the time the interface appears), go ...
Edit > Select All
File > Save Selected Items, and save the report to your Desktop as [b]BSOD.txt.[/b]

Close the BlueScreenView

Attach here BSOD.txt

23

attached

24

Tell me, how’s your computer running now?

25

seems to be running ok, avast isnt popping up with virus warning anymore. I cannot get firewall in avast to turn on though? Is it worth running a avast boot scan?

What about the rogueKiller suspicious objects it found?

26

attached another roguekiller log, found one object

27

RogueKiller hase just detect some changed values in registry. Nothing important…

Lets remove used tools.

It is necessary to uninstall ComboFix :

[*] Click Start (or
http://amf.mycity.rs/pg/images/VistaStartButton.png
) then Run.

On Windows7 or Vista you may use Start Search field if Run is not available.

[*] In the line of text type in (Copy) the following:

ComboFix /Uninstall

Note that there is a space between " ComboFix " and " /Uninstall " .

[*] then click OK (or press Enter ).

Wait for the uninstall process is complete.

Re-run OTL and click on CleanUp! button.

You will be asked to reboot the machine to finish the cleanup process, choose Yes.
After the reboot all the tools we used should be gone.
Note: Some more recently created tools may not yet be removed by OTL. Feel free to manually delete any tools it leaves behind.

Is it worth running a avast boot scan?
If you will. I see no present or active malware. Your system is clean. 8)

If avast detects something (and I believe it will not) it may be just some configuration files of malware. Dangerous as three mad dandelion … :slight_smile:

28

brilliant thank you so much for your advice.
running a avast boot scan now just in case :wink: