C
CoolMoD
I have a student in my A+ intro class that has the following problem on his
HP running XP Home:
- First he was invaded with spyware which he thought he cleared. Now he's
slowly loosing everything on his computer (Start | All Programs is blank,
icons are disappearing, sections of the Registry are disappearing, etc.) His
\Windows directory has as about 40 subdirectories that start out with
$upuninstall... and contain entries saying the shell32.dll is being moved.
Internet research says this has to do with a Service Pack update. Problem
is, he's never loaded an SP upgrade.
- So, we attempted to FDISK the hard drive. Here's the big problem: No
access to floppy or CD-ROM drive (will read the directory on CD-ROM but not
allow access to any .exe). CMOS has both as booting to before HD but
computer refuses to recognize anything in those drives nor boot to them.
My guess is some type of CMOS / Boot Sector virus but Norton AV (before that
too stopped working) didn't find anything.
Any ideas? I've toyed with the idea of hooking it up as a slave to a junk
computer we have in class any trying to FDISK with a startup disk.
Any advice would be greatly appreciated.
Don
HP running XP Home:
- First he was invaded with spyware which he thought he cleared. Now he's
slowly loosing everything on his computer (Start | All Programs is blank,
icons are disappearing, sections of the Registry are disappearing, etc.) His
\Windows directory has as about 40 subdirectories that start out with
$upuninstall... and contain entries saying the shell32.dll is being moved.
Internet research says this has to do with a Service Pack update. Problem
is, he's never loaded an SP upgrade.
- So, we attempted to FDISK the hard drive. Here's the big problem: No
access to floppy or CD-ROM drive (will read the directory on CD-ROM but not
allow access to any .exe). CMOS has both as booting to before HD but
computer refuses to recognize anything in those drives nor boot to them.
My guess is some type of CMOS / Boot Sector virus but Norton AV (before that
too stopped working) didn't find anything.
Any ideas? I've toyed with the idea of hooking it up as a slave to a junk
computer we have in class any trying to FDISK with a startup disk.
Any advice would be greatly appreciated.
Don