Everytime I start my computer, after about 10 seconds, it comes up with a blue screen detailing something about pages on page fronts and how i need to shut down my computer.
So i go into safe mode, download AVAST, and work my way through. Turns out, i'm infested with trojans, that are in the WIN32 files or something like that. So i tell AVAST to delete them . Even after that, I tried normal boot up, and i still get that stupid blue screen.
I have multiple computers, so im using a dif. one to ask this. Any suggestions would help.
2007-05-06 11:52:06 · 4 answers · asked by walrus2.0 2 in Computers & Internet ➔ Security
OK, there are several things you need to do:
1) turn off System Restore. You do this by going to Accessories..System Tools..System Restore. Turn this off--it's most often not needed and is a place where viruses hide.
2) go to www.grisoft.com and download their AVG anti-virus package. You'll have to do it on your computer, transfer the executable file to her via a memory stick, CD, etc., and then install it.
Normally, affter installation, you should make sure you have it updated with the most current definitions by opening the program and hitting "update". Unfortunately, in this case, you may not be able to do it. So there are two routes to take before actually using the program to clean the computer:
a) Install the program also on your other computer and then update it as described above. Then go to the folder
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Signatures
and copy all of those files onto your friend's computer into the corresponding folder. Make sure AVG isn't running when you do this. Restart AVG and if it starts up OK, then proceed to the next step.
b) If AVG gives some weird error message upon startup, then uninstall it and reinstall it; don't try to get it fully updated, whatever virus signatures the download came with will have to do for the moment.
3) I assume you're running Windows XP. Turn off your computer and re-start it in safe mode (which you do by repeatedly pressing either F5 or F8 just after you turn the power back on--you'll get a menu asking you how you want to start up). Once you've booted into safe mode, run the AVG software. This is a *very* aggressive software package and can remove just about anything.
4) Reboot the computer normally. If you're still having problems, continue with the following:
5) Go to
http://www.spywareinfo.com/~merijn/progr...
and download HiJackThis. Run the program, which will create a log file. Go to
http://forums.spywareinfo.com/
and post your HiJackThis log. You will obviously have to do this from your other computer if you still can't get on the internet; make sure that you include that bit of info in your post. You will get an extremely rapid, very precise answer as to whether or not you still have any infections and, if so, exactly what to do.
Good luck!
2007-05-06 11:57:36 · answer #1 · answered by Mark S, JPAA 7 · 1⤊ 0⤋
Use the best Trojan removal program available.
Download and update ewido. Do not run:
http://www.ewido.net/en/download/
TEMPORARILY SHOW HIDDEN FILES AND FOLDERS.
1. Click Start, and then click Control Panel.
2. Click Appearance and Themes, and then click Folder Options.
3. On the View tab, under Hidden files and folders, click "Show hidden files and folders", and clear(uncheck) the "Hide protected operating system files" check box.
IMPORTANT: Files are hidden by Windows for a very good reason. It is not wise to experiment with these files. Unfortunately, to successfully remove modern spyware we must turn this protection off temporarily. Please turn the protection back on when you have finished cleaning your system.
EMPTY INTERNET EXPLORER BROWSER CACHE:
1. On the Internet Explorer Tools menu, click Internet Options.
2. On the General tab, in the Temporary Internet Files section, click the Delete Files button. Select the Delete all offline content check box in the confirmation dialogue box that appears, click OK. Click OK again.
RESTART IN SAFE MODE:
To do this you need to hold down or repeatedly tap the F8 key while the computer is booting (when the computer is displaying a black screen with white text). When the boot menu appears, use your keyboard arrows to select "Safe Mode."
Safe Mode can look quite ugly. The color may look bad, and all of your desktop icons will be very large. This is normal.
START THE SCAN WITH YOUR PROGRAM(S).
When the scan and removal are completed REBOOT COMPUTER. This will restart you in normal mode.
RESET HIDDEN FILES AND FOLDERS.
The RESTORE POINTS may be infected with the Malware and cannot be used. Delete the old one(s) and make a new one.
CLEAR OLD RESTORE POINT(S). HERE'S HOW:
1. Click Start, and then click Control Panel.
2. Click Performance and Maintenance, click System, and then click on the System Restore tab.
3. Select the Turn Off System Restore check box, click Apply, then restart your computer.
4. Return to the System Restore Tab and turn System Restore back on.
TO SET A NEW RESTORE POINT:
1. Click the Start button.
2. Point to Programs, then navigate to Accessories, then System Tools, then click System Restore.
3. Choose Create a restore point, and then click Next.
4. In the Restore point description box, type a name for your restore point, and then click Next.
5. Click OK.
NOTE: If you are using Windows XP Service Pack 2 (SP2) and are unable to access the Internet after removing Malware, there is a command that may fix the problem. It works by resetting the winsock catalogue. Click on Start, then Run and type CMD in the box. Click OK. Type "netsh winsock reset" (no quotes)into the DOS window that appears.
2007-05-06 19:01:07 · answer #2 · answered by Anonymous · 1⤊ 0⤋
sounds like one of the viruses corrupted your start up files,which are the win32 files.
heres what we'll do
1 try booting with your ( i assume you have windows xp) disk
2 when you start your computer with the disk in press f8
3 this will give you a boot screen
4 select repair
5 follow the steps
if this doesn't work time to reinstall your complete xp program.
also get avg7.5 free edition anti-virus. i have had it for 3 years without an infection.
2007-05-06 19:05:48 · answer #3 · answered by Cyber-Medic 6 · 0⤊ 0⤋
Run an inhouse scan from the servers of Kaspersky, Russia rated # 1 in virus detection. Here is the link No conflict as the program will not install, just scan your sytem from their server. Could take upto two or three hours depending on how many program you have installed and processes you have running.
http://www.kaspersky.com/virusscanner
Minddoctor, France
2007-05-06 19:59:16 · answer #4 · answered by MINDDOCTOR 7 · 0⤊ 0⤋