Tech Support Guy banner
  • IMPORTANT: Only authorized members may reply to threads in this forum due to the complexity of the malware removal process. Authorized members include Malware Specialists and Trainees, Administrators, Moderators, and Trusted Advisors. Regular members are not permitted to reply, and any such posts will be deleted without notice or further explanation. Notice
Status
Not open for further replies.
1 - 5 of 5 Posts

·
Registered
Joined
·
127 Posts
Discussion Starter · #1 ·
Hello,

I have a Samsung NC20 netbook which is running Windows XP Home (SP2 I think).

A few days ago some strange things started to happen. When I did a search in Google and then clicked on a page for the search engine results page a different site tried to load which was flagged in the browser for being a security threat.

I was running the free version of AVG so I did a scan and it didn't pick up anything.

Then the next time I turned the computer on lots of alert messages were popping up telling me I had a virus and I should download some software which I did not do - this did not appear to be AVG displaying these messages.

After restarting the laptop I managed to use task manager to kill a process before it kicked in and the popups didn't start. I downloaded malware bytes spyware and ran it and it found a few things which I 'fixed' through the app but the problem persisted. Then AVG started popping up alerts but could not heal the files as there were 'key' files.

Then there was a message that there was a Windows update to download the fixes a virus which I did download and install. Then I shut down the PC to restart it.

The next time I tried to turn the computer on the Windows XP logo came up but it never gets passed it to Windows and Windows won't start. I have tried safe mode and last known working configuration to no avail.

The net book has no optical drive.

Any ideas what I should do? I have lots of files in My Docs I want to keep.

Thanks.
 

·
Registered
Joined
·
127 Posts
Discussion Starter · #2 ·
I have since tried to boot Windows XP off of a USB pen drive.

It gets to a command prompt that asks for the administrator password which appears to have been changed as the old one no longer works. Has the virus/trojan changed my password?

If I don't enter a password and just press 'enter' I can get to a command prompt. Is there anything I can do from here to either reset the pasword/repair windows?

I really would like the files in My Documents. Should I take the computer into a shop and get them to try and recover them?

Should I buy an external CD-rom for the computer and try booting from Windows on CD?

Help please!
 

·
Registered
Joined
·
127 Posts
Discussion Starter · #4 ·
Thanks guy. I'm going to try booting ubuntu off a USB flash drive as a last resort then take it to the shop.

Cheers.

update: right, I booted into Ubuntu and can see all the files I want.

Is there a way to clean the system or viruses/malware from in Ubuntu? I am going to run avast but not sure if that will do the job?I can copy the files I want over to a hard drive but worried the virus will come with them!
 

·
Retired Moderator Retired Malware Specialist
Joined
·
56,449 Posts
copy over what you want
Normally docs & pics are safe but be careful of any .exe files
scan any copied over files with a good antivirus
reinstall windows on the netbook or do a restore to factory settings

It sounds like AVG has deleted a vital system file and that might be hard to fix without a restore to factory settings

you can try this if it boots to a linux system
it might work to fix any viruses still on there but is unlikely to be able to restore any wrongly deleted or infected system files. It generally is better than AVG at disinfecting rather than deleting infected system files

http://support.kaspersky.com/faq/?qid=208282163
 
1 - 5 of 5 Posts
Status
Not open for further replies.
Top