hydrive1902
asked on
question about sophos scan results
Hi I had a customer and they had a rootkit virus or boot sector virus, I backed the data up and formatted and reinstalled. Still had virus. I rebooted and did fixmbr and i reinstalled windows and that fixed it.
So i went to access some data earlier (on spare drive) and ever since my computer is acting slow. The key thing about the customers computer i noted was superantispyware would not finish updating. it would say 100% then start over. now my compuiter is doing the same thing. I realized its probaly because i accessed the drive with my laptop (the same drive i stored the customers data on). Below are a few files it found already is it safe to delete them once it finishes the scan?
So i went to access some data earlier (on spare drive) and ever since my computer is acting slow. The key thing about the customers computer i noted was superantispyware would not finish updating. it would say 100% then start over. now my compuiter is doing the same thing. I realized its probaly because i accessed the drive with my laptop (the same drive i stored the customers data on). Below are a few files it found already is it safe to delete them once it finishes the scan?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You may want to post the log before cleaning, if you want.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Ran sophos and it didnt find many more files then what my original screen shot showed (for the screen shot the scan was in progress but had not finished).
I deleted all files and rebooted and tested superantispyware and went to run the update and it did the same thing (hit 100% then just restarted back at 0% again). So I also ran the mcaffee rootkill detective and that program found about 10 more suspicious items so I removed them all and rebooted and tested superantispyware and that time after the updates went throught and hit 100% it said "finished"!
So that was the one that worked for me. Then I ran malwarebytes and superantispyware and spybot and it runs great again. I am still going to reformat next month (its due anyways) but with all the custom settings and programs I have on here there was no way I could have done the reinstall when I got the infection.
I deleted all files and rebooted and tested superantispyware and went to run the update and it did the same thing (hit 100% then just restarted back at 0% again). So I also ran the mcaffee rootkill detective and that program found about 10 more suspicious items so I removed them all and rebooted and tested superantispyware and that time after the updates went throught and hit 100% it said "finished"!
So that was the one that worked for me. Then I ran malwarebytes and superantispyware and spybot and it runs great again. I am still going to reformat next month (its due anyways) but with all the custom settings and programs I have on here there was no way I could have done the reinstall when I got the infection.
ASKER
Thanks for the quick help!
ASKER
The scan is still running!