I'm having some computer troubles and I need guidance from one or more of you kind people. I have a related thread going in the A/V Am I Infected? forum (http://www.bleepingcomputer.com/forums/topic228133-15.html
). It gives some other background information that might be helpful to read in understanding my problem.
So, to give a quick overview - currently I'm trying to rid my desktop (and then later I'll be working on my laptop) of any malware it has - which according to MBAM is quite a few nastys and they seem difficult to remove thus far. I've had my desktop for about 8 years now; never formatted, never backed up (yes stupid, I know). Obviously I want to rescue these files in the (likely) event that I need to format my computer.
I'm not sure if I've accidently set off a payload, am botted, or a hacker is directly and actively messing with my system (I *was* "borrowing" a wireless internet connection for about a week...), but my desktop system stability has gotten substantially worse - to the point that I am now unable to boot my computer. So I need help in making it somewhat usable so that I can at least save some of my 8 years worth of files.
This problem began after I had run an MBAM quickscan in normal mode after disabling my wireless connection and clicked on ok to reboot the computer - because certain files could not be deleted until reboot. It shut down normally but then windows would not load (I couldn't even make it to the logon screen). There was a message (which I didn't write down word for word unfortunately) saying something about how the computer could not restart to its previous point as the image file was corrupt. It then it gives a message beneath that text saying something like "You can return to your last known good configuration by pressing enter." I click enter, it tries to load windows, but then the following occurs...and reoccurs...
Here's what happens: After a while of being turned off (I suspect several hours), when I first try to boot my machine I am greeted with this pleasantry:
1) "Windows could not start because the following files is missing or corrupt: <Windows root>\System32\hal.dll. Please reinstall a copy of the
2) when I press enter to continue I recieve this message: "Windows could not start because the following file is missing or corrupt: \WINDOWS\SYSTEM32\CONFIG\SYSTEM. You can attempt to repair this file by starting Windows Setup using the original setup CDROM. Select 'r' at the first screen to start repair."
If I again press enter the screen goes black and then the same message 2) shows up again. The only way to shut the computer down is by pressing and holding the power button. Attempting to boot the computer immediately again I only get message 2) on the screen.
I *can* boot the machine to show the F8 start up options (i.e. I tried to boot into safe mode to see if that would work). Again, a similar thing happens - the text loads up to the entry "multi (0) disk (0) rdisk (0) partition (2)\WINDOWS\system32\config\system" and then I receive an error message after a brief wait time that says the same filepath I just listed, however, instead of ending at \SYSTEM it ends as \SYSTEM.alt"
Any help would be gratefully appreciated. In the event that I have to format my computer I'll need some guidance with that process as well...I have a Dell Dimension (8300???) desktop PC running windows xp SP 3.5, and I have the original disks that came with it. Let me know anything else that would be helpful in solving this problem.
P.S. - I've just noticed there's a pinned post that describes the hal.dll issue I have. I would try and follow the instructions there, but I'm not quite sure what I'm doing and since there's other things happening as well, I don't want to risk screwing up my computer even more.