• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 404
  • Last Modified:

Issues After Malware Removal

Toshiba Satellite L505D
AMD Athlon Dual II Core M300 2.00Ghz
Windows 7 Home Premium SP1
3 GB RAM

I uninstalled suspect programs like PC Fix Speed, 24 x 7 Help and Search Protect by Conduit.  Unable to update Malwarebytes database on laptop so removed hard drive and ran full scan from another computer with updated Malwarebytes database.  Malwarebytes cleaned 0Access rootkit.  

I am now unable to log into laptop normally. After entering password, laptop produces blank screen with arrow.  At this point, if I can get task manager to open, within a minute, CPU reports 100% usage.  Laptop no longer responds.
 
I can access laptop in Safe Mode.  In Safe Mode, I am unable to see any errors in event viewer that would be related to any issues logging into Windows normally.

There is no recovery disk, but I have an image of the HD before starting the cleaning process.
0
charismatic100
Asked:
charismatic100
1 Solution
 
Dan CraciunIT ConsultantCommented:
Repair install might be your best choice now. If you do not have a system recovery disk you can order one from Toshiba, I think.
Or borrow an Windows 7 HP SP1 install disk from someone.

HTH,
Dan
0
 
Dan CraciunIT ConsultantCommented:
0
 
McKnifeCommented:
I discourage you to continue using this installation.
If you are able to manually clean it, you should. If not, don't trust it just because some automatic malwarebytes program does not find anything anymore.

It could be that the error you experience is caused by other malware or components of the old that are still active.

Best would be to backup the files and recover/reinstall.
0
Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

 
charismatic100Author Commented:
Downloading iso now.  It will take 3-4 hours.
0
 
Nick RhodeIT DirectorCommented:
I would run some of the simple tools in my article to help clear up the issues.  Problem is probably due to your host file being edited and hijackers left in the registry.  

http://www.experts-exchange.com/Security/Vulnerabilities/A_12285-Virus-Removal-Methods.html
0
 
aadihCommented:
Save your important data and files and reinstall.
0
 
Dan CraciunIT ConsultantCommented:
If all you see is a blank screen with the cursor, it means that the explorer process (explorer.exe) could not start.

Either was replaced on registry by malware with another file and you deleted that file or was replaced on disk and the A/V damaged it on cleaning.
0
 
nobusCommented:
try a repair : http://www.sevenforums.com/tutorials/681-startup-repair.html
if that does not work -  try a system restore to an earlier date

if these do not produce the wanted result -  backup and reinstall from fresh
it is the only guaranteed method
0
 
charismatic100Author Commented:
Repair module of Win 7 HP SP1 did not detect Windows partition.  Recovered data files and did fresh install of Win7 using ISO from website suggested by DanCraciun.  All is well.
0
 
charismatic100Author Commented:
Thank you.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

NEW Internet Security Report Now Available!

WatchGuard’s Threat Lab is a group of dedicated threat researchers committed to helping you stay ahead of the bad guys by providing in-depth analysis of the top security threats to your network.  Check out this quarters report on the threats that shook the industry in Q4 2017.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now