Hello! MBR:SST

Hello,

First time poster here in over 8 years of using AVAST!.

I have been infected with MBR:SST. aswMBR won’t run. Combofix found two files and deleted them.

Any help is appreciated.

Thank you.

OTL log attached
ROGUE KILLER log

Run the aswMBR scan (in the AV Scan: drop down option, try selecting None) and MBAM scans from this topic http://forum.avast.com/index.php?topic=53253.0 and attach the logs here.

Since you have run combofix you can attach that log.

A malware removal specialist has been informed of your topic.

mbam report
combofix report

aswMBR won’t run ! sorry!

OK, hopefully a malware removal specialist will be available soon to look at your logs.

Hi did TDSSKiller fail to run as well ?

Please download the following tool to a USB drive

Listparts

[*]Reboot the computer and immediately repeatedly press F8
[*]At the menu select recovery console
[*]In the command window type in notepad and press Enter.
[*]A Notepad window will open. Under File menu select Open.
[*]Select “Computer” and find your flash drive letter and then close Notepad.
[*]In the command window type e:\listparts and press Enter
Note: Replace letter e with the drive letter of your flash drive.
[*]The tool will start to run.[*]Press Scan button.

https://dl.dropbox.com/u/73555776/listparts.GIF

[*]When it is done close the notification pop up. Click Scan and copy and paste the log (Result.txt) it makes on the flash drive.

TDSSKiller failed to run too. And it looks like my computer won’t take my USB stick. I’m attaching listparts result.txt as ran from Windows.

OK can you create a CD as we need to look at the MBR when windows is not running

OK next we will work outside of windows
Please print these instruction out so that you know what you are doing

[*]Download OTLPENet.exe to your desktop
[*]Ensure that you have a blank CD in the drive
[*]Double click OTLPENet.exe and this will then open imgburn to burn the file to CD
[*]Reboot your system using the boot CD you just created.
Note : If you do not know how to set your computer to boot from CD follow the steps here
[*]As the CD needs to detect your hardware and load the operating system, I would recommend a nice cup of tea whilst it loads :slight_smile:
[*]Your system should now display a Reatogo desktop.
Note : as you are running from CD it is not exactly speedy
[*]Locate Listparts and run
[*]The tool will start to run.
[*]Press Scan button.
[*]It will make a log (results.txt) on the drive. Please copy and paste it to your reply.

Managed to make the USB stick work after reinstalling drivers and deleting entries in the registry. The recovery console hangs.

Now I’m attempting to make the recovery console work.

What error do you get for recovery console ?

You may be best creating the OTLPE disc

It simply hangs at the screen with the striped progress bar. I will try in creating the OTLPE disk.