Win XP - BSOD after running TDSS Killer
I was trying to clean an XP desktop that was heavily infected. I ran Superantispyware on it and Malwarebytes which helped, but didn't clean out the main problem.
I ran TDSSKiller and selected the additions options it listed. After it rebooted and started the scan, it found a rootkit and four other files. I selected delete on all five files. The four non-rootkit files were marked as locked.
After it rebooted, I received the BSOD on boot. I tried going into safemode, but right after I selected it, the same BSOD appeared.
I'm assuming the four locked files were system files no longer exist and caused the BSOD.
I would normally just do a clean install, but this desktop has an accounting app on it and I don't think there was a backup taken.
What's the safest way to get it running again without messing up the accounting app and other data they may have on it?
I ran TDSSKiller and selected the additions options it listed. After it rebooted and started the scan, it found a rootkit and four other files. I selected delete on all five files. The four non-rootkit files were marked as locked.
After it rebooted, I received the BSOD on boot. I tried going into safemode, but right after I selected it, the same BSOD appeared.
I'm assuming the four locked files were system files no longer exist and caused the BSOD.
I would normally just do a clean install, but this desktop has an accounting app on it and I don't think there was a backup taken.
What's the safest way to get it running again without messing up the accounting app and other data they may have on it?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I ended up being able to select Last Known Good Configuration and git the Pc running again. I backed up the important data and I'm started a clean install.
Even though I didn't need to use the suggestions provided to me, I'm awarding points because the suggestions will help me if I hit this situation again.
Thanks
Even though I didn't need to use the suggestions provided to me, I'm awarding points because the suggestions will help me if I hit this situation again.
Thanks
ASKER
Is this what I should expect?
In the repair process, If I enter the user's name as it originally was, will his desktop come up with his icons and shortcuts?
Will the programs still be installed?
Will the start menu still show the programs?