Strange occurrences led me to a aswMBR scan - results.

Hi guys,

So yesterday I noticed my android phone simply couldn’t connect to the PC via usb…simply wasn’t recognised. I tried fixing it…installing/re-installing drivers…as a last ditch attempt I deleted the registry keys associated with it (anything to do with android HTC). I then thought I’d give windows update a go…maybe it could fix it…installed 7 updates, after I rebooted all USB devices were not functioning…reset the computer again. This time it loaded the “Secure Boot Violation” message…I wiped the HDD clean and did a fresh install. When windows started installing its fresh updates upon shutting the computer down for them to take effect, it would take hours for them to install…and after reboot during the configuration stage it “failed to configure - reverting changes” I was also given this error code once I got back into windows:

WindowsUpdate_80080005 WindowsUpdate_dt000

So I’m not sure if it’s my fault for deleting the registry keys, the windows update or in fact I did receive a rootkit virus.

So far I’ve scanned with AVG, malware Bytes and aswMBR. The first two said it was clean.
I have re-flashed the BIOS for good measure.
I have also ran an MBR fix with aswMBR
I have also run SFC in command prompt - no problems there
Local C disk has been checked during startup - “Disk is Clean”

OS is Windows 7 64-bit

These are the results from aswMBR, wasn’t sure how to interpret them:
[b]aswMBR version 1.0.1.2290 Copyright(c) 2014 AVAST Software
Run date: 2016-04-02 10:28:03

10:28:03.465 OS Version: Windows x64 6.1.7601 Service Pack 1
10:28:03.465 Number of processors: 8 586 0x5E03
10:28:03.465 ComputerName: Max-PC UserName: Max
10:28:03.793 Initialize success
10:28:03.793 VM: initialized successfully
10:28:03.793 VM: Intel CPU supported
10:28:05.282 VM: disk I/O iaStorA.sys
10:28:28.971 Verifying
10:28:38.986 Disk 0 Windows 601 MBR fixed successfully
10:29:02.730 Disk 0 (boot) \Device\Harddisk0\DR0 → \Device\00000071
10:29:02.730 Disk 0 Vendor: Corsai_ S9FM Size: 114473MB BusType: 11
10:29:02.745 Disk 0 MBR read successfully
10:29:02.745 Disk 0 MBR scan
10:29:02.745 Disk 0 Windows 7 default MBR code
10:29:02.761 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
10:29:02.761 Disk 0 default boot code
10:29:02.761 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 114371 MB offset 206848
10:29:02.761 Disk 0 scanning C:\Windows\system32\drivers
10:29:03.385 Service scanning
10:29:05.460 Modules scanning
10:29:05.460 Disk 0 trace - called modules:
10:29:05.475 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStorF.sys storport.sys hal.dll iaStorA.sys
10:29:05.491 1 nt!IofCallDriver → \Device\Harddisk0\DR0[0xfffffa8010fc9060]
10:29:05.491 3 CLASSPNP.SYS[fffff8800100143f] → nt!IofCallDriver → [0xfffffa800eb5dc50]
10:29:05.506 5 iaStorF.sys[fffff88001a8fa88] → nt!IofCallDriver → \Device\00000071[0xfffffa800e24b780]
10:29:05.506 Disk 0 statistics 100532/0/0 @ 108.36 MB/s
10:29:05.522 Scan finished successfully
10:40:42.418 Disk 0 MBR has been saved successfully to “C:\Users\Max\Desktop\MBR.dat”
10:40:42.418 The log file has been saved successfully to “C:\Users\Max\Desktop\aswMBR.txt”

[/b]
Just want to get to the bottom of this as I feel like scrapping the whole computer due to paranoia haha.
Thanks in advance guys

Deleting the registry keys have nothing to do with it if you really (as you call it) wiped the HD because there was no registry anymore.

How exactly did you do the fresh install ?

I only did the wipe, after I got the “secure boot violation” error.

I put the windows CD in, deleted all partitions, created new partitions and reformatted new partitions…then installed windows.

I went out and bought a new SSD HDD (needed a new one anyway) installed the same windows 7 CD…exactly the same problem. Cannot install a single windows update. Infact I can’t even access the windows update section in control panel. It just freezes…

Something very odd…

I have also ran an MBR fix with aswMBR
What was there to fix?
These are the results from aswMBR, wasn't sure how to interpret them:
Then you should not run any fix if you dont know what you are doing

I suggest attaching FRST diagnostic logs

At that point in time I considered my hard drive a write off - so it couldn’t have hurt to press the ‘fix’ button.

I apologize, I’m not sure what FRST logs are…

I apologize, I'm not sure what FRST logs are..
scroll down to second picture > [b]Farbar Recovery Scan Tool[/b] > https://forum.avast.com/index.php?topic=53253.0

They are long so attach here, not copy and paste

If you are unable to install windows properly then it may be a deeper hardware problem or a router problem

Like what for example? What do you mean by ‘router’ problem?

I’ve got a new error: Error 0x80070005 also known as Access Denied…followed just about every trouble shooting process with no luck…this is ridiculous :frowning:

OK there is an MS fix for that https://support.microsoft.com/en-gb/kb/968003

I’ve tried that one before, these were the results…

If it was malware…I don’t see how it could still be affecting the system since I went out and bought a brand new drive :\

I think I may have found a break through…I originally installed Windows 7 on the base version of the BIOS…after which it was updated…

Ive only realized now that the DVD drive is seen as a UEFI boot mode…which is what I use to install windows 7

The BIOS has now been updated

If it supports eufi then it may be worth re-installing 7 with eufi http://www.sevenforums.com/tutorials/186875-uefi-unified-extensible-firmware-interface-install-windows-7-a.html

Followed that tutorial twice…both times the same problem persists. No permissions, can’t download a single update, icons for programs are missing…

Don’t know what else to do :\

Could it be a faulty motherboard??

Don't know what else to do :\
FRST logs?

Yes, sorry. They have been attached.

A, I can think of trying now is to see if windows all in one can reset the permissions

Download Windows All In One Repair from Tweaking.com to your desktop
Install the programme

Reboot to safe mode with networking
Run Windows All In One
Select Step 2
Select open Pre-repairs scan then click scan
Let that complete
Save the results to a text file on your desktop

https://dl.dropboxusercontent.com/u/73555776/waioprescan.JPG

Next select Step 5 and back up the registry

https://dl.dropboxusercontent.com/u/73555776/waioregback.JPG

Open the Repairs tab

https://dl.dropboxusercontent.com/u/73555776/waioopenrep.JPG

Select the following repair numbers :

1 and 2

Set the system to reboot on completion
The press Start Repairs

https://dl.dropboxusercontent.com/u/73555776/waiorepair.JPG

I haven’t had a chance to implement that windows repair process as I was at work all day…however I left windows to “check for updates” all day - and it found 211 updates…updating as of this post.

Not sure what to make of this. Not comfortable using this computer in case the same happens again…I will run a memtest, over night before I apply that windows repair process.