How-To Geek

I had a virus scan inform me of an infection which I believe was dealt with. As far as I can recall it was worm 'Nagel'. But it left me with strange changes. I tried to 'system restore', but whatever date I chose it reported restore was not possible. Now I cannot access the 'System Restore' option. Help and support page won't open. AOL live help tells me my IP address is one not allowed access. If log on to Microsoft website, any helpful items they may have for download cannot be accessed. I am worried - REALLY WORRIED - HELP PLEASE!!

Well, I downloaded Stinger, and run a scan which found all files to be clean.

Move on to the next download page which is accessible, but whils the end user agreement is displayed, I get no ' I AGREE ' option so cannot proceed.

This bug seems to have it all covered

And this one:
http://www.microsoft.com/secur.....fault.mspx

No, these links should open.

You can Google to find the MS Malicious Tool Removal page, and the PandaSoft free scan as well. If that doesn't work, please report back.

OK, can you try to boot in Safe Mode and disable and delete Restore Points. Do you have Spybot Search & Destroy? If so, run it in Safe Mode.

Can you please open your Task Manager and look for any running process that seems suspicious? What did you download that has caused these issues?

You need to look for suspicious processes, not applications in TaskMan.

And again, disable Restore Points if you can. The virus can linger in a backup.

No worries about time, we are here to help.

The question is wether it is actually worth going through all this, or just backing up your most important files on an isolated drive (usb drive or stick) and format and re-installing windows. After the reinstall you could install your virus scanner and scan and clean the backupped data before doing anything with it. Reinstalling windows and your software could be done in a few hours tops, as long as you don't reinfect yourself from your backup files.

I may be a bit to quick to suggest formatting, but it is a sure way to get everything clean.

Thanks again Scott - got that. I ran spybot in safe mode and found only that windows firewall was turned off ?? Nothing else malicious showed at at all. A point of interest though - the system will not let me log on to the web in safe mode either.

I got 'wbouvy' on the re-install - but the trouble is this computer was bought about 5 months ago and windows XP was pre installed. I have no windows discs.

Right - I'll go try trendsecure next - back soon.

Well, trendsecure has finished scan and says there are about a hundred minor problems throughout, mostly register items. To remove I have to take the full version for around $50. Is this a good deal?

That was my point - worth it if it works, but the list seems to be a long one but all minor.

I did check and though the list is long, there was no activity displayed except on the obvious ones that we would be aware of.

OK - Next - I have msconfig displayed and the list is long and very detailed. It won't copy and paste, so I have to type it out for you. May take a while. LOL - My wife is a keyboard specialist, very very fast - and NOT HERE !!!!