Computer Security & Viruses/Trojan attack did wonders...

Advertisement

Expert: - 11/4/2011


Question
Hello Brian,

Dell Pentium 4 CPU 2.5GHz 512 MB of RAM. Windows XP professional version 2002 service pack 3. Internet Explorer 8.

I consistently run Avast Antivirus, CCleaner, Glary utilities and Malwarebytes antimalware. Recently while surfing the web, a trojan popped up, usually it's not a problem as the Avast blocks most threats. It blocked a bunch, but something stuck and messed up things, an error message came up regarding SYSTEM32, then a box for system restore, which looked bogus and would not go away. It scanned before I could stop it.

The resulting symptoms I had are as follows... I got a black desktop (can see the bottom bar), the START menu was blank, no files, everything was gone. I researched a bit and recovered a few items such as IE, all the viral scan software, and everything mostly on the all files tab is there, but the extensions all say empty. I was able to get into other areas of the computer like the control panel etc. There is a Panda SafeCD that I tried to reboot with to clean, but after choosing the language it stops every time saying "No Partitions found".

At present, I have half functions available. The desktop had been changed to hidden, which I fixed. And the START menu has a few items on it now, i.e. IE, virus software etc. I am still missing everything that was on the desktop and most importantly the mail, Microsoft Outlook. I would have scraped this thing and reinstalled everything if not for the wife wanting a thousand pictures we have on there. Fortunately, the pictures are still there, most of them anyway. Can you give me some ideas on what to do to fully recoup this or what I should be running to check for more infections etc?

Thank you,
Mike

Answer
Hi Mike

Obviously, the first thing to do is get your pictures and documents off the computer and on to a thumb drive or CD.  Next, boot into Safe Mode with Networking by tapping the F8 key at startup.  Download and run ComboFix from here:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

After running the program, post me the log of the scan and give me an update on how things are running.

Brian

Computer Security & Viruses

All Answers

Answers by Expert:

Ask Experts

Volunteer

Brian Benosky

Expertise

I will help you in eradicating malware and all forms of virus/trojans/adware. I can answer all PC-related hardware issues. I can also troubleshoot Windows OS errors (all versions) and other software problems. HijackThis logs are a MUST for virus related help. If you do not know how to do this, I have posted easy-to-follow instructions on the Ask a Question page. Every computer infection is different, so I will give you personal instructions on how to remove the malware, not a 'pat' answer. You can be assured of a prompt, polite, and knowledgeable response in all regards.

Experience

I have over 25 years experience in using, building, and repairing computers. I have helped over two thousand people here on AllExperts, with consistent Top Feedback Scores. Please look at my answers here: http://en.allexperts.com/q/Computer-Security-Viruses-1737/indexExp_84308.htm I am also a Top Contributor of General Computing answers in Yahoo! Questions.

Education/Credentials
College Educated Self-taught Computer Skills

©2012 About.com, a part of The New York Times Company. All rights reserved.