Virus has disabled most things on computer

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by SEGA, May 15, 2012.

  1. SEGA

    SEGA Private E-2

    Hey there guys.
    I was looking for free online movies (seriously!). i watched a few FG episodes when I noticed ie was moving slow. Checked task manager and there was three or four ie explorer processes running. Closed them all, and immediatly came to this site and downloaded new combofix new mgtools etc. Ran CC Cleaner, malware anti, Ran combofix, but it still said it needed to update, so I ran it again and again. Each time it was acting weird, like it would autoclose without even getting to the 'Stages' section. Finally it ran fully, but after this, my desktop disappeared! It also came up with an error saying 'explorer.exe not found" or something. it displayed the same message after running both it and smitfraudfix in 'safe' mode as well.

    So I thought, ok no problem I'll use Task manager to open programs and run MG tools etc. However, something repreatedly kept disabling my PC's new usb wireless network adapter. effectively stoping me from acessing the internet. I kept trying different usb slots until they eventually all stoped working for my wireless adaptor. Mouse still works though.

    So, ok I though, no problem. I'll just use task manager to save files to a memory stick to transfer txt files onto a different computer. However the Pc is not recognising any memory stick no matter which slot I place them into!

    I was starting to get worried. No real biggie though, I'd just use a CD and save files onto that to transfer them to a diff computer to upload them to you guys. It's probably safer that way anyway.
    BUT NO DICE! Whenever I try to copy things to a blank CD (I know they're blank because I check em out in a diff computer first, and it let me format them and save MGtools files on them), the Copying box comes up, and stays there FOREVER. Even after an hour, it was still copying one small Combofix txt file. This happens if I try to 'send' them to the disk drive as well.

    So I'm honestly all out of ideas. I recognise I may have t just wipe the drive, but I really don't want to lose certain files on there, as I've been mapmaking for Zero Hour, and nearly finished, and don't want to have to spend another two weeks all over again!


    Can you guys help at all? :cry
     
  2. thisisu

    thisisu Malware Consultant

    Hello SEGA,

    Which operating system are you using?
     
  3. SEGA

    SEGA Private E-2

    Windows XP Media Centre 2005. Also when I switch on the PC it mentions various recovery options before windows starts. Some of them only seem to take command prompts though...
     
  4. thisisu

    thisisu Malware Consultant

  5. SEGA

    SEGA Private E-2

    Yep it lets me go into safe mode with command prompt. Desktop is still missing, but cmd.exe is running.

    BTW the other options to select from (other than Win XP MC) include Windows Recovery Console and an option which says '(do not select this)-Debugger enabled (?)'
     
  6. thisisu

    thisisu Malware Consultant

    Ok, from the command prompt, type in this command and press ENTER: explorer.exe
    Let me know what happens when you do this.
     
  7. SEGA

    SEGA Private E-2

    Hi
    When I do this, it comes up with C:/windows/explorer.exe is not a alid win32 application.
    Also the image for My Computer is missing, it just shows a generic unknown file image. The ones for documents and desktop are still there, just not My Computer.
     
  8. thisisu

    thisisu Malware Consultant

    Try this command from the command prompt window: chkdsk c: /r
    Allow dismount and allow reboot.
    Process could take a few hours.

    Next we'll need a Windows XP CD, do you have yours?
     
  9. SEGA

    SEGA Private E-2

    Couldn't run chk dsk from cmd.exe, it said
    Type of file is NTFS
    cannot lock current drive


    so I ran it from the Recovery Console from startup.
    Also, no I don't have a windows xp Cd sorry.
     
    Last edited: May 18, 2012
  10. thisisu

    thisisu Malware Consultant

    Are you able to open a Command Prompt window while in Normal Mode?
    If so, try this command: sfc /scannow
     
  11. SEGA

    SEGA Private E-2

    How do you open a command prompt in normal mode? I can only search through Task manager....
     
  12. thisisu

    thisisu Malware Consultant

    Click the [​IMG] button -> Run -> Type in cmd and press ENTER.
    Then type in : sfc /scannow into the command prompt window.
     
  13. SEGA

    SEGA Private E-2

    I would do as you asked thisisu.....but I can't access the desktop. The whole desktop is blank. No start menu, no time/volume setings ec. No desktop items at all.
    But when I run a program using task manager and click on desktop,it still shows programs there. I ran chkdsk like you asked, but it didn't fix this problem.
     
  14. thisisu

    thisisu Malware Consultant

    Ok so this is the Task Manager:
    [​IMG]
    This is what you can access right?

    If so, click File -> New Task (Run...)
    Create New Task window pops up
    In the Open: text-field, type in: cmd
    Press ENTER
    The Command Prompt opens up
    In the command prompt window (looks like this)
    [​IMG]
    Type in: sfc /scannow
    Press ENTER
     
  15. thisisu

    thisisu Malware Consultant

    Give me an example or two of which programs you able to run from the Task Manager.

    [​IMG] Ultimately and preferably after sfc /scannow, I'd like to you to run Malwarebytes Anti-Malware. See: Using Malwarebytes Anti-Malware

    Let me know what problems you run into along the way, if any.
     
  16. SEGA

    SEGA Private E-2

    Ran sfc /scannow, a prompt eventually comes up saying 'Files that are required for Windows to run properlymust be copied to the DLL cache. Please insert Windows XP professional service pack 3 CD now.'

    I don't have a windows disk...... :(


    By the way, it seems like I can run most programs from task manager. Malware bytes, Superantispywae, they all work. But like I said, the USB ports are disabled or prevented from recognising usb devices, so I can't connect to the internet using my usb adapter, nor can I transfer files using a memory stick.


    I did run malware bytes, ombofix, mg tools etc after this happened, and it didn't pick up any malware. I'll run it again, but like I said, because it won't let me transfer files or copy files to CD, I can't upload any of the logs.


    Also, when searching for files through Task Manager, on the side where it has quick links to My Documents, Desktop etc, the image for My Computer has been disabed/deleted. It just shows the generic Windows unknown file image. [​IMG]
     
  17. thisisu

    thisisu Malware Consultant

    You will need one for this type of problem. You are better off seeking additional advice in the Software forum as this is not malware related.
     
  18. SEGA

    SEGA Private E-2

    Ah......ok. I just thought it might be a virus blocking 'explorer.exe' or some way to program round it.
    Thanks for your help.
     
  19. thisisu

    thisisu Malware Consultant

    No problem :)
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds