My name is DaRell and i was referred here by Miroslav Jenšík of your technical support staff. I had opened a support ticket with him (Ticket ID : TLJ-844-77767) and had started to disable my system restore feature in order to schedule an avast! boot time scan, but have recently discovered that when I click on the I have no way disabling the system restore feature through my control panel or computer properties while in safe moded. To make matters worse, booting Windows normally isn’t an option, as doing so consistently results in the STOP error screen appearing. Please advise me on what I should do.
Asyn, I’m not sure if adwCleaner properly generated its log, as I accidentally allowed the restart to boot Windows normally. Is there a directory where the log can be located and should I proceed in producing the other logs?
Essexboy, I have the .dmp files that the stop error created, but there were no logs or .txt files in my directory. Is that normal?
OK that clears your graphics card as the miscreant
Do you experience any blue screens at all in safe mode ?
Next we will check for driver conflicts
Step 1: Start MSConfig
Click Start, type msconfig in the Start Search box, and then press ENTER.
If you are prompted for an administrator password or for a confirmation, type the password, or provide confirmation.
Step 2: Configure Selective Startup options
1.In the System Configuration Utility dialog box, click Selective Startup on the General tab.
Essexboy, I don’t run into the stop error while in safe at all. I ran msconfig and followed all instructions, but it didn’t ask for an auto reboot, so I restarted my laptop manually. I tried rebooting normally, but still received a blue screen. I rebooted in safe mode and ran MBAM, only to find [font=verdana]a Very very bad [/font] heuristic infection. I’ve attached MBAM logs of both before and after quarantine. MBAM prompted me to to restart computer immediately to remove the threat, which I did. Tried to reboot in normal mode, but no dice… “BSOD”. IS it time for a system wipe?
Well if you don’t believe that is a problem, I’ll definitely take your word for it. I’d still like to figure out what happened and why it happened if possible, and use the reformat option as a last resort.
I also should mention that I have found .txt files that seemingly detail an installation of a cloaked program, I can upload some if you’d like me to, or we can just proceed to the next step. I’ll be at work until 7 PM Central time, should be able to view new replies.
Please excuse my absence, I’ve had family in town. I was able to locate my adwCleaner log and will attach a.s.a.p. I’ve found some of the suspicious logs and have also captured some screen shots of my browsing through the windows explorer. I can upload these to file sharing site again, but may I email you the links. I do not wish for some of these files to be readily accessible to the entire forum.
I’ve also noticed everything in my ‘programs’ folder and its sub folders are just shortcuts and are accompanied by an .INI file.
Furthermore, there is a new user account titled “Default User” which I have no access to whatsoever. Lastly, I’ve been using a flash drive to transfer files to a friends laptop to upload and attach them here, but am I compromising their security? Friend laptop is a Mac…