spoolsv.exe Error?

Discussion in 'Malware Help (A Specialist Will Reply)' started by mjp2894, Apr 12, 2009.

  1. mjp2894

    mjp2894 Private E-2

    Yesterday I was browsing the internet with multiple tabs open when I was sudden bombarded with popups, I pressed ctrl+alt+del and had about 76 processes open as opposed to my normal 36ish.

    I spent pretty much all day removing them on my own until I hit a brick wall, then googled and found the READ ME and Run Me guide.

    So I went through the steps today and I believe it got rid of most everything, but I still run into one problem. When I turn on my computer I get this error about spoolsv.exe: http://img16.imageshack.us/img16/8282/spoolsv.png

    I also ran into blue screen of death after restarting my computer after running SUPERAntiSpyware, but it went away the second time I started my computer and hasn't happened since.

    Attached below are the logs.
     

    Attached Files:

    mjp2894, Apr 12, 2009
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    IMPORTANT NOTE: Some if not many, of your Windows system files are infected. And many other non-Windows files could also be infected. Even if we attempt to fix these problems (which may not be easy to do unless you have an original Windows XP SP3 bootable CD), your system may be unreliable and untrustworthy.You may need to reinstall this system.


    I'm sorry to have to bring this bad news, but infections like Vitro, Virut,...etc. can infect every executable file on a PC. They will attack all executable and not just the ones related to the Windows OS. Infections like this are not repairable (at least not at this time) and thus continued scanning will eventually result in a PC becoming totally unusable since the scanners will be deleting required system files along with files for all other programs you have installed.


    The safest and most reliable thing to do for infections like this is to just perform a total clean reinstall. I suggest that hard disk partitions be deleted and then recreated. Then formatted followed by the reinstall of Windows and other programs. We don't recommend backing up anything since the files could be carrying the infection (especially anything that is an executable type file) and you will just reinfect a new installation if you restore these backups. However if you really need personally data from this hard disk, the only method I would use would be the below:

    • physically remove the hard disk from this PC and slave it into another well protected computer. I recommend having Avast on the other PC since it seems to catch this infection.
    • DO NOT RUN ANY PROGRAMS on this infected slave drive while plugged into the other computer.
    • Copy only your data files from the infected drive. DO NOT COPY any executable type files.
    • The put this infected hard disk back into the original PC and start the reinstall process beginning with the deletion of all partitions.

    Also note this infections can spread to shared drives and also writable removable type drives. So if you have a network with shared drives, other computers may be infected. Also if you have plugged a USB flash drive into this PC, the flash drive could now be carrying the infection if any executable type files were on the flash drive. Also any PCs this flash drive has been plugged into could now be infected.
     
    TimW, Apr 15, 2009
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds