hello, all.
i would appreciate some help getting rid of a particularly nasty bug. i’m trying to avoid a wipe. please let me know what you would like me to install and which reports you’d like to get the ball rolling.
thank you in advance
hello, all.
i would appreciate some help getting rid of a particularly nasty bug. i’m trying to avoid a wipe. please let me know what you would like me to install and which reports you’d like to get the ball rolling.
thank you in advance
Follow this guide>>http://forum.avast.com/index.php?topic=53253.msg451454#msg451454 , then post the resulting logs in this topic as attachments.
malwarebytes logs attached
the captcha is no longer showing up when i try to reply from the infected computer which means i cannot post a reply. when it’s resolved i will post the otl logs.
trying to post from another computer. please let me know if it works for you.
the little bugger that sent me in search of help is MBR:\.\PHYSICALDRIVE0
i’m hoping i can find a work around that won’t require a wipe.
the problem is on my sister’s computer.
she is using vista.
we do not have boot discs
last log
Here you go this should fix it
Re-Run aswMBR
Click Scan
On completion of the scanClick the Fix Button
http://i1224.photobucket.com/albums/ee362/Essexboy3/aswMBR%20shots/aswMBRFix.gif
Save the log as before and post in your next reply
this crashed the computer. it will not stay on now, even in safemode. windows starts the repair process but it shuts off the middle and the whole things starts over again.
OK lets retrace our steps and try again
From the safe mode menu select a restore point when you reboot run aswMBR please for a scan
i can’t. the computer won’t start, even in safemode.
it tried running the system disc check but failed.
session details
system disk = \device\harddisk0
windows directory = C:\windows
autochk run = 0
number of root causes = 1
every test completed succesfully error code 0x0
root cause found:
unspecified changes to system configuration might have caused the problem.
that is the last thing i got from the computer. when it tries to restart, it blue screens. if it makes i past blue screen, it will turn off a few seconds after booting, even in safe mode. most times it will not make it to the safe mode screen at all.
test
Are you back in now ?
Do you have the windows CD so the we can access the deeper repairs
If you are in could you run a fresh OTL scan for me please
she doesn’t have a cd, no.
i can get in for a moment at a time. i set things up bit by bit so i could scan, then save, then email the scan to myself on successive tries. i may be able to keep it open longer- it’s being finicky. i am responding from my personal computer atm.
i will attempt the otl scan as soon as i get home from work this evening.
thanks for responding.
As soon as i can get to my computer I will post a link for you to burn a recovery console disc
OK here we go
Download win Vistax86 iso from here http://www.forum.probz.net/index.php?/files/file/21-windows-vista-recovery-environment-iso/
Burn to a cd as bootable - You can use ImgBurn do this.
Now reboot from the Windows Vista Recovery Environment CD and execute the following commands:
When you reboot you will see this although yours will say windows 7. Click repair my computer
http://i1224.photobucket.com/albums/ee362/Essexboy3/RepairVista_7275.jpg
Select your operating system
http://i1224.photobucket.com/albums/ee362/Essexboy3/RepairVista_7277202.jpg
Select Command prompt
http://i1224.photobucket.com/albums/ee362/Essexboy3/RepairVista_7277.jpg
At the command prompt type the following
Bootrec.exe /FixMbr
[*]Once finished type Exit
If that does not work then :
For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.
For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.
Plug the flashdrive into the infected PC.
Enter System Recovery Options.
To enter System Recovery Options by using Windows installation disc:
[*]Insert the installation disc.
[*]Restart your computer.
[*]If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
[*]Click Repair your computer.
[*]Select English as the keyboard language settings, and then click Next.
[*]Select the operating system you want to repair, and then click Next.
[*]Select your user account and click Next.
On the System Recovery Options menu you will get the following options:
Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt
[*]Select Command Prompt
[*]In the command window type in notepad and press Enter.
[*]The notepad opens. Under File menu select Open.
[*]Select “Computer” and find your flash drive letter and close the notepad.
[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
Note: Replace letter e with the drive letter of your flash drive.
[*]The tool will start to run.
[*]When the tool opens click Yes to disclaimer.
[*]Press Scan button.
[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.
is that going to delete any files from her computer? should i try to save her photos/docs etc before i run the repair?
OTL LOGS
No none of the tools I use will delete files until they are told to do so - What is the current state of play, I see you are running from safe mode. Can you achieve normal mode
Did the Fixmbr allow you to get this far
can’t get in at all right now. it keeps prompting start up repair then shutting down while it’s loading files.