W2K Pro - Removed Viruses Lost Explorer

Discussion in 'Malware Help (A Specialist Will Reply)' started by LarryR, Oct 18, 2009.

  1. LarryR

    LarryR Private E-2

    This forum was recommended to me and I was instructed to make sure I went through the processes listed in the "Stickys." I've done many of them but unfortunately where I am in the clean-up process I'm unable to complete all.

    Computer:
    P4
    Windows Professional 2000
    Virus removal software uses AVG 9

    Brother in-law brings computer over for repair, his Norton had expired so I downloaded AVG to CD and loaded, ran and it found over 1,600 viruses, malware and spyware. Got virus vault full error rebooted, expanded space for Virus vault, ran again and all viruses moved to virus vault. AVG requested re-boot, rebooted and now after logging in I get a black screen with no start menu. Attempted to access programs through task manager, however when I Ctrl+Alt+Delete and select Task Manager nothing happens.

    Tried starting in Safe Mode and have same problem.

    Got a copy of W2K Pro from my company's MSDS collection, created boot disks (actually had to buy floppies 3.5 disks, lol) booted off of disk, tried to repair and it could not find Emergency Recovery info.

    I'm stuck, I don't feel right giving his computer back to him in this state, at least when he brought it to me he could access his files.

    Anyone out there have any ideas? I greatly appreciate any assistance provided and promise to pay it forward.
     
    LarryR, Oct 18, 2009
    #1
  2. LarryR

    LarryR Private E-2

    Mods: Please delete this post. After spending more time here doing research I see I should have posted in "Software." Thanks
     
    LarryR, Oct 19, 2009
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    If you are having malware problems then you belong in this forum not Software.

    Were any of the infections you had showing a Virut infection? If so, you will have to reinstall.
     
    chaslang, Oct 19, 2009
    #3
  4. LarryR

    LarryR Private E-2

    To be honest with you I'm not sure if I still have a malware problem. I think running AVG probably eliminated the malware, however, I"m not knowledgeable enough to make that determination. Just going by the chain of events; desktop and start menu were there prior to running AVG, after running it's gone.

    Regarding whether or not any of the infections were "Virut" I seem to remember that word so I'm thinking yes but am I 100% sure . . . can't say for sure.
     
    LarryR, Oct 19, 2009
    #4
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Check AVG's Vault and see what is in there. Attach a log if you can get one.
     
    chaslang, Oct 20, 2009
    #5
  6. LarryR

    LarryR Private E-2

    Thanks for your assistance.

    Unfortunately due to explorer.exe not loading I'm unable to access any programs (including AVG) as the desktop is gone, start menu is gone, cannot access task manager, dos prompt etc. All I have is a blank screen with the mouse pointer.
     
    LarryR, Oct 20, 2009
    #6
  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Then I would suggest that the likelyhood that it was Virut is even greater and what we typically reply to users infected with Virut is the below.


    Your logs show that your Windows Operating system files have become infected by a Virut infection and there is no known reliable fix for this. In addition there are many many other infected files. We could spend a lot of time trying to remove this infection, but odds are that it will not work because the nature of the infection has so many executable system files infected that as soon as we fix one file, other files that are infected will almost immediately or upon the next reboot, just reinfect the files. In addition, your PC would still basically be unreliable/untrustworthy even if we manage to fix the infected files that we can see since there could be many more that we are not seeing.

    The safest thing for you to do is backup your personal data immediately since your PC could possibly become unbootable at any point in time. Do not back up any executable files. This includes programs that you have downloaded since any of them could be infected. Anything you may have already backed up that is an executable type file (things you downloaded to install programs....etc) are most likely infected and will cause you to be reinfected if you reuse these files.

    Once you backup, you need to format partitions and reinstall Windows and all other software especially your protection software. Then install all updates for all software. DO NOT reinstall from any executable file backups you made while this PC was infected or you will just be reinstalling the infection.
     
    chaslang, Oct 22, 2009
    #7

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds