Re: cleanup after malware/trojan/virus
- From: "Patrick Keenan" <test@xxxxxxxx>
- Date: Tue, 19 May 2009 15:29:59 -0400
"lex3001" <lex3001@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:DCC6AB40-F939-4393-9142-04BDD6F54549@xxxxxxxxxxxxxxxx
I've found and removed a trojan from my wife's laptop using Microsoft's
malicious software removal tool, AVG, Trend, and Malwarebytes...
There are still some lingering problems that I need help fixing. Note that
in the process I did a repair install of Windows XP SP 3, hoping it would
resolve some of this (but instead I think it created a new problem).
I also had to do some cleanup in the registry -- windows updates was
disabled as the malware had renamed %SystemRoot% to %fystemRoot% in
several
service entries. I have fixed all of those after jumping through several
hoops (finding a way to run regedit, resetting permissions on those
subkeys,
etc.)
1. I still cannot run REGEDIT or REGEDT32 from the command prompt, from
Start->Run, by double-clicking it, etc. When I try, nothing happens. I use
Don Knox's emergency utility creator and I can run REGEDIT from another
folder when it is renamed, but how do I clean up this nasty problem? Is it
a
registry entry? A piece of software still installed and running somehow?
Etc.
2. After doing the repair install of Windows (this is a Dell Inspiron
700m),
I cannot adjust the Display Settings for the screen resolution. In Device
Manager, the Intel integrated graphics chipset is listed twice both with
the
yellow error warning and Code 37. I have uninstalled them and run the
installer software multiple times from both Dell and Intel to no avail.
argh.
Any ideas here?
The underlying drivers may need to be reloaded.
Anything else I should be looking for here? I am really desparately trying
to avoid a reinstall of Windows.
While you may be 'desperately trying to avoid a reinstall', sometimes that
is the *fastest* way to a working, reliable system. You can spend days
and days trying to fix subtle problems, or get a working system again in a
few hours (I often mix the reinstall with a movie rental).
My approach is often to get another hard disk (where I am, this is in the
$70 - $90 range) and a USB 2 drive adapter or case, install the new drive
and do a clean install to it; get that up and running. Once the system is
working properly, you can connect the old drive via the adapter or case,
scan it, and then copy the required user data. In essence, you use the
original drive as the backup. If you have all the key install disks set
up, and have exported any mail settings, this can go very quickly.
This is one of the few ways to be absolutely sure that problems such as
you're seeing are not related to some sort of malware or rootkit that your
tools missed.
HTH
-pk
.
- References:
- cleanup after malware/trojan/virus
- From: lex3001
- cleanup after malware/trojan/virus
- Prev by Date: Re: cleanup after malware/trojan/virus
- Next by Date: Missing 6 font files
- Previous by thread: Re: cleanup after malware/trojan/virus
- Next by thread: Re: cleanup after malware/trojan/virus
- Index(es):
Relevant Pages
|
