I was extremely drunk last night and can't recall why I was trying to disable and remove a software called "bonjour" but I THINK it had something to do with my LAN not working (couldn't repair or renew the connection) Anyways, I tried to disable using services.msc and I believe I got a pop saying I couldn't for blank reasons (my memory is a little cloudy). I decided now would be a good time to bring out WINUtilities. Along the way, I guess I was distracted by another software which I found interesting, I can't remember what it was or why it was interesting. I stupidly downloaded it and now my pc is infected. Oh I forgot to mention, sometime before I ran winutilities, I ran ccleaner and did not back-up the errors log. malwarebytes has been trying to open for the last 2 hours, Actually, I don't think I can run ANY programs right now. The windows menu bar will not come up and I can't even open task manager. Yes, I tried pressing F8 (last known good settings) but the problem is the same, even in safe mode....can't open any programs or even use the internet. When I first start my pc, everything loads normal (except for the fact it takes a lot longer now) but I can log onto my administrator account. Not sure what to do at this point. I'm hoping there is something I can do to fix it as I don't have the money to repair it. If I restart I might be able to open task manager.
Desperately need help: Virus?...safe mode affected
- Thread starter smellypoo
- Start date
You will need to download the following files from an uninfected computer and transfer them to the infected computer using a usb flash drive.
Please download and run Rkill.scr, Rkill.exe, or Rkill.com but DO NOT reboot the system and then try installing or running Malwarebytes. If Rkill (which is a black box) appears and then disappears right away or you get a message saying rkill is infected, keep trying to run rkill until it over powers the infection and temporarily kills it. Once a log appears on the screen, you can try running malwarebytes or downloading other programs.
If malwarbytes still won't run then do the following.
Download and Run ComboFix
If you already have Combofix, please delete this copy and download it again as it's being updated regularly.
Combofix should never take more that 20 minutes including the reboot if malware is detected.
Then after running that, see if malwarebytes will work. You may have to reinstall malwarebytes to get it to work.
In your next reply please post:
Please download and run Rkill.scr, Rkill.exe, or Rkill.com but DO NOT reboot the system and then try installing or running Malwarebytes. If Rkill (which is a black box) appears and then disappears right away or you get a message saying rkill is infected, keep trying to run rkill until it over powers the infection and temporarily kills it. Once a log appears on the screen, you can try running malwarebytes or downloading other programs.
If malwarbytes still won't run then do the following.
Download and Run ComboFix
If you already have Combofix, please delete this copy and download it again as it's being updated regularly.
- Download this file here :
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
When saving the file rename it to combo-fix instead of combofix. Doing this should allow it to run.
- Then double click combofix.exe & follow the prompts.
- When finished, it shall produce a log for you. Post that log in your next reply
Combofix should never take more that 20 minutes including the reboot if malware is detected.
Then after running that, see if malwarebytes will work. You may have to reinstall malwarebytes to get it to work.
In your next reply please post:
- The ComboFix log
- The Malwarebytes log
- A fresh HiJackThis log
- An update on how your computer is running
*sigh* I can't seem to do anything. I managed to transfer all all 3 three rkill versions and the combo-fix though I have yet to install that one. I'be been going at this for 8 hours, maybe I'm doing something wrong. I did open rkill and it seemed to get better for a little while and I was even able to open combo-fix but then my pc restarted itself on its own, the second time froze, third time restarted again...the same with mbam.
Are you booting to safe mode and running combofix? I really don't recommend this but sometimes its the only way to fix it. Do a system restore prior to when it was infected and see if its successful. Immediately afterwards run combofix, malwarebytes, and hijackthis and post logs. I worked on one yesterday that I had to do a system restore on cause I just couldn't do anything.
Condition has gotten worse. I can get to my administrator account just fine. I was able to open rkill before but now I can't open anything. I can click on any desktop icon once and then it replaces my mouse pointer with the loading one. Waited 3 hours for rkill to open yesterday and nothing.
I went into safe mode and waited for the system restore pop-up. After I clicked no, I got this message that said something along the lines of system restore can not protect your computer and that I should restart. I don't have any of my windows xp cds. How do I do a system restore?
I went into safe mode and waited for the system restore pop-up. After I clicked no, I got this message that said something along the lines of system restore can not protect your computer and that I should restart. I don't have any of my windows xp cds. How do I do a system restore?
garrypeace
New Member
Vista: Start > All Programs > Accessories > System Tools > System Restore, and give it time to appear.
Or just search for system restore.
Then choose between the recommended restore point (last important update), or create a new one.
Or just search for system restore.
Then choose between the recommended restore point (last important update), or create a new one.
I created a system restore shortcut on the flashdrive using my laptop but its not openning..been 2 hours now. *sigh* I think this computer is a goner. Can't run anything anymore not even rkill gahh and I just transfered hijackthis mbam and combo fix into my flashdrive. omg if there is a god somewhere out there pretty please help me figure out a way to fix this and I promise not to drink for a year. I will also give the squirrel I ran over a proper funeral.
I'm going to keep trying to open system restore. Sh%t! I learned my lesson. thanks for your help guys ^_^
I'm going to keep trying to open system restore. Sh%t! I learned my lesson. thanks for your help guys ^_^
ok hold on a sec.
is it possible that this is not a virus? I understand you can't know for sure but maybe there is something I disabled or checked off from the start up programs or services.msc that would cause my computer to run extremely slow. I did mention I was having trouble connecting to the internet after I downloaded some stuff. I now know that I downloaded windowsutilities and another program called wufiinstall. I was able to open system restore but I don't think I've ever used this before. So do I create a new restore point? will that delete my drivers, pictures, and other files? what will taht change? will it remove the virus (if it has one)? I don't know if I'll be able to restore though but I think I'm gonna keep trying since I don't have my windows xp cds any more. Not sure if this is any help or not, but I was only able to open files after I disconnected my ethernet cable from my pc...could just be coincidence? I don't know enough about computers to figure that out myself.
is it possible that this is not a virus? I understand you can't know for sure but maybe there is something I disabled or checked off from the start up programs or services.msc that would cause my computer to run extremely slow. I did mention I was having trouble connecting to the internet after I downloaded some stuff. I now know that I downloaded windowsutilities and another program called wufiinstall. I was able to open system restore but I don't think I've ever used this before. So do I create a new restore point? will that delete my drivers, pictures, and other files? what will taht change? will it remove the virus (if it has one)? I don't know if I'll be able to restore though but I think I'm gonna keep trying since I don't have my windows xp cds any more. Not sure if this is any help or not, but I was only able to open files after I disconnected my ethernet cable from my pc...could just be coincidence? I don't know enough about computers to figure that out myself.
Last edited:
Creating a restore point is only that it sets a restore point to that point in time. You would have actually have to restore to an earlier time in order for changes to take effect. If you are able to open stuff while the network cable is disconnected then you have some issues. Is the network card integrated into the motheboard or is it a separate pci card? If its separate, try reseating it and updating its driver.