In the course of doing, of all things, a recipe search yesterday, I got malware.

Running Adaware, Malwarebytes, and Avast showed problems in the above regions. I scheduled a boot scan with Avast, and went to bed last night with Avast doing a full scan. When I got up this morning my son had shut my netbook down, thinking I had left it running by accident.

Now it won’t boot at all. It cycles between a blue screen that flashes a message up too quickly for me to read, and the windows XP boot screen, over and over and over again. It won’t boot in any mode.

Avast noted but did not fix problems with winlogon and 2 other files that I don’t have written down because the computer will not come back up.

Malware bytes identified problems with all 3 of the above files and wanted a system reboot to finish updating. I’m not sure what Adaware found since the system got shut down before I could see the log file.

Any help would be appreciated.

Hi can you access safe mode? Reboot the computer and keep pressing F8 a menu should appear, select last known good and see if that lets you boot.

If it doesn’t then we can try to access it outside windows - do you have access to a cd burner or spare USB drive ?

No, it will not boot in ANY mode. I do not currently have access to a flash drive - how much capacity would I need on a flash drive for whatever you have in mind? I’m unsure of why I would need a CD burner. I have an external DVD/ROM device but if the system won’t boot I’m not sure I can access it (not sure it gets far enough to load the drivers for it).

The CD burner was for a live cd - but as you have a USB drive I will use another programme. With this one I will try to find a restore point on your system and then restore

We will use an mobile operating system called xPUD, and a script called rst.sh to restore your computer.

On the clean computer.

Creating a bootable USB using xPUD

[*]Please download the following files and save it to the desktop

[]Unetbootin.exe
[]xPUD latest version is xpud-0.9.2.iso
Insert the USB device to make bootable to the computer. (Make sure that no other USB’s are inserted)
[*]Double-click on unetbootin.exe to run
Select Disk Image, ISO and in the space provided, enter the path location of xpud-0.9.2.iso (ex. [I]C:\Documents and Settings[B]yourusername\Desktop\xpud-0.9.2.iso)
[*]Select USB Drive type and the drive letter assigned to your USB stick.
[*]Click “OK” and wait until the program finishes. You now have a bootable xPUD.
[*]Download the following tool and save it inside the bootable USB

[*]rst.sh

Please note: if you prefer to create a bootable CD using xPUD, you may download the ISO image found here and burn it to a CD.

On the infected computer.

[*]Reboot your system using the xPUD bootable USB you just created.
Note : If you do not know how to set your computer to boot from USB follow the steps here
[*]Your system should now display a xPUD desktop.
[*]Select on the File icon; on the right pane click on the “mnt” folder and highlight “sdb1” - this is your USB device.
[indent]sda1,2…usually corresponds to your HDD
sdb1 is likely your USB[/indent]
[*]Click on the “Tool” menu and select Open Terminal

http://noahdfear.net/hives.sh_files/image008.jpg

[*]In the open terminal window, type in the following:

bash rst.sh

[*]Press “Enter” and let it run uninterrupted.
(The program lists available Restore Points and will save a report enum.log located in the USB drive.)
[*]The program is finished when it say’s “Done”.
[*]Type “Exit” to close the terminal window.
[*]Please attached the enum.log file in your reply. (You may remove your USB drive when transferring log to a clean computer).

Please note: If you have an ethernet connection you can access the internet by way of xPUD (Firefox). You can perform all these steps on your sick computer. When you download the download will reside in the Download folder. It can be found under the File tab also. You can similarly access our thread by way of this OS too so you can send the logs that way.