first thing it did, it cut my wireless internet connection, and made windows not being able to control wireless network options, said WZC was disabled,
even though I tried to MANUALLY start WZC, it gave an error 1016
After I realized my NOD32 was disabled at the startup, I had the sense that this was a virus infection,
When I plugged my land cable to go to ESET's site to download the virus software I purchased a while ago, the download went ok until at the end of the installation new NOD32 couldn't 'start its services' and aborted its installation.
Now I knew I was dealing with a tough one.
I monitored all the processes running in the back, as far as I can see with task manager, I googled them, and found many different opinions, one file I found was mdelk.exe file which was situated in my system32 folder, and I couldn't get rid of it, at this stage while I was monitoring my net limiter program to see any internet usage, mdelk.exe started itself, and I saw a huge amount of outgoing data from my computer via this .exe, I couldn't neither filter it down with netlimiter, or couldn't kill it...
so much things happened, I am really worried that at this stage, any private info went outside my computer?!
almost every single removal tool that I downloaded didn't work, or has been stopped by the virus,
so I searched even more and came across a new windows removal tool off microsoft,
this ran, and found the infected files, but the scan always has been stopped, frozen, that I always had to shut down my computer, so I couldn't find any infected files nor it deleted them, (found 2 infected as far as I could go with the scan via this tool)
I tried Safe Mode, when it was loading it on command prompt, it all of a sudden said press esc not to load SPTD.sys
I did, but now BLUE SCREEN CAME UP and prevented me to EVER start via safe mode,
I was confused,
I put the system CD, and just restored my computer, without caring much about the data that I would lose,
Now its been just restored, only to find out my D: drive had very strange hidden files with long files names with numbers and letters randomly, and my old files (when I did the system restore before with the same factory CD, it deletes everything, and just puts the windows, never actually saw the files ever again until this time around?!!)
then I put Acer Disk formatter tool, to format that partition, and restored ONCE MORE,
only to see same files, or similar files still hanging around,
I read something about really BAD infections that stays with the computer even after usual Restores...
I just read a similar threat here,
So I decided to download SDFix.exe to run that scanner now, and see what happens,
BUT PLEASE PLEASE, GIVE ME DIRECTIONS TO WHAT TO DO NEXT!!