Sanity

He may be referring to the XP repair function ? Put the XP install disc in the drive and reboot the PC. Follow the instructions on the screen should get you to it I think.

checkitout

Thanks - I would call this a re-install "repair" .

Believe it or not it is not my day.

Have been trying to do this but it looks like the original XP install disc has a scratch enough to be unreliable. I am trying to source an exact copy... really need WIN XP SP2 as a minimum.

Not my day...

best4less

Do a search for " BartPE rapidshare " should be able to find a complete iso image ready to go

__________________
Shut Up I Hack You

joezep

OMG these virus are getting smarter everyday. A mate of a mate asked me if i could get rid of all the nasties off his laptop. First look at notebook, Norton's expired omg!!, had no control of INTERNET it always went to their antivirius homepage. First thing i did was uninstall Norton's and went out and bought Kaspersky thats when the trouble began.

Tried to activate Kaspersky no go, installed spybot search and destroy could not update and malwarebytes still could not update.

These are the steps that fixed it

Disable system restore

Go into safe mode with network

Only then i could activate Kaspersky and update programs

Ran full scan with all three programs still in safe mode

Rebooted and spybot did one more scan then able system restore all sweet.

The key is to disable system restore first and then run everything in safemode

Hope that helps.

grizu34

i have just relized that along with myself and others the problem/virus what the thing is effects WIN XP

all the hijackthis reports logged in are XP?

must upgrade to vista or 7

checkitout

Searched the internet last nigh and downloaded 2 versions of which both are corrupted and are of no use. what a waste of time.

Does anyone have a reputable URL or location I can get a working BartPE ISO image from ??

checkitout

OK I have just been able to get a HawkePE 37 ISO image successfully downloaded and am about to try that.

Pointers anyone??

checkitout

I am making some progress.

To tell you the truth the Hawke/Bart PE Disk did not help much apart from proving that the hardware was OK.

A combination of scanning for Virus and Spyware with a Windows repair install has brought the machine back to life with original programs intact. I still have the problem of not being able to connect to the internet.

I will do more Virus and Spyware scans tomorrow and then do another windows repair install and see what happens.

Also I have noticed I can improve the performance of the machine by changing settings within msconfig to different settings (basic gives better shart down and startup times)

best4less

That's true but you do have to use other programs like registry restore LOL
and that way you can restore your computer to before the Trojan was installed and that way you can start your computer and run Malawarebytes

Trust me, done 100's of them mate

__________________
Shut Up I Hack You

checkitout

Thanks Best... luv your work and help mate.

Unfortunately Registry Restore will not work as once I did the XP install repair restore points back in time are no longer available...

Also I did not realise that I could have done registry restore once I placed the HDD into another working computer

Live and learn I suppose...

I am still finding Viruses and Spyware since I have done the XP install repair (not sure what happened here) .. some I am cleaning the HDD again now and starting again.... it takes forever with the scans I need to be patient

WhiteOx

My wife keeps getting a similar fake virus scanner ..... it comes from dodgy places like underground.mn and katzforums

Malwarebytes usually gets rid of it.
Boot into safe mode and use Malwarebytes portable from a usb stick, make sure you update it first.
There's a link to it in the premium section.

Philquad

yes malwarebytes
i would check msconfig 1st, make sure nothing is in the startup
in ie, go tools, internet options,connections,lan settings
make sure its on automatic detect and not proxy.

WhiteOx

Sounds like you have dealt with this bugger before too.

checkitout

Thanks

One main problem I have is that I get locked out of having network and internet access... hence I am never able to get a latest update of the internet

Any chance of having a Malware update via a downloaded file from another computer?

Philquad

you need to stop this thing running 1st
do the above msconfig trick,reboot
run mwbytes if you have it, even if its not updated
check ie settings as i said above

checkitout

I have pulled the HDD out and run Malware bytes via another computer. I have also used CA Antivirus and Anti Spyware. The hard drive is surely clean now.

Also re-installed XP as a repair install.

I am getting the following error "Spoolker Subsystem App has encountered a problem and needs to close...etc" which seems to co-incide with the network connection failures.

Phil.. I will try with your instructions but I have lost faith... if the HDD is clean now and I am not getting access to the internet the Malware Bytes is not going to help... it is a catch 22 ??

BTW now apart from the lack of access to the internet the machine appears to work fine...

I know a fix will be a full HDD format and new install but this loses the key programs we do not have a backup for...

checkitout

Before someone states this suggestion again I must also say I now do not have access to restore, Registry Restore Wizard or otherwise.

Once I did the XP Install/Repair there are no restore points available (looks like a fresh install.. but actually is not)

I am running Malware now on the machine to see if anytthing found... my gut feeling is that it will be clean

OSIRUS

Looks like you are getting there,

Hope your nearly done

Good Luck

__________________
Become a Premium Member and support the Austech Forum

Philquad

unplug the printer

checkitout

No Printer has been connected... I have managed to get Malware bytes going on the same machine with MS config set with nothing in startup now

It takes ages for a full scan. I will let you know how this goes