Computer Hope

Software => Computer viruses and spyware => Virus and spyware removal => Topic started by: Axle on May 03, 2010, 06:23:26 PM

Title: Serious Malware Infection - BSOD, Cannot Load Windows
Post by: Axle on May 03, 2010, 06:23:26 PM

I am experiencing a similar situation as this thread (http://www.computerhope.com/forum/index.php/topic,94097.0.html) that I found.  I was downloading a file from megaupload on my Windows XP laptop, and I got a popup which I closed.  A while later, I started getting fake malware alerts, and then I could not open task manager or execute any programs.  When I rebooted, all I get is a quick BSOD for normal boot, safe mode, and last known good config.  It doesn't stay long enough for me to get the error message. 

I followed the instructions in this post (http://www.computerhope.com/forum/index.php/topic,94097.msg636574.html#msg636574) by SuperDave and made bootable CDs of Avira, Dr. Web, and BitDefender.  I am currently running Avira, and it found 64-some warnings (some were protected Spybot files, but there were still a lot), most of them trojans.  However, since this is a LiveCD and not windows, I don't know how to save the logs to post here to get help.  It said most of the files were not removable by Avira, but I'm going to run the scan again with "remove infected files" selected this time, to see if it gets any of them.  I will also run Dr. Web and BitDefender.  I want to try a System Restore, but I have not found my XP disc yet, since I lent it to a friend and he lost it. >_<  Do you have any suggestions on how I can go about fixing this?

Title: Re: Serious Malware Infection - BSOD, Cannot Load Windows
Post by: Axle on May 04, 2010, 08:44:17 AM

Ok, so Avira Rescue CD successfully removed everything it found, but I still get the BSOD error, so the trojans screwed something up.  Dr. Web didn't find anything new, and Bit Defender found one that it was able to delete.  It also said it couldn't scan perfc009.dat and perfh009.dat in my Windows/system32 folder, so does anyone know what these files and if they could be related to the problem?  I also have perfd009.dat, perfi009.dat, and PerfStringBackup.INI.  The 'i' and 'd' files have not been modified in 2010, but 'c', 'h', and the backup INI were all "Change", "Modify", and "Access" on April 16, 2010, which was still several days before my problems started, since I didn't get infected until last Wednesday.  Any idea if I should worry about these files?

Title: Re: Serious Malware Infection - BSOD, Cannot Load Windows
Post by: Axle on May 05, 2010, 10:20:36 AM

Ok, I seem to have fixed everything, I ran a Repair Install from my XP disc to fix the boot errors, and then MalwareBytes finally to clean up the remaining registry issues.  I have also figured out how to get past the task manager disabled problem.

Title: Re: Serious Malware Infection - BSOD, Cannot Load Windows
Post by: Dr Jay on May 05, 2010, 09:44:21 PM

Since this appears to be resolved, this topic is now closed.

=>CLOSED