BleepingComputer.com: Removed Win7 Spyware 2012, now have problems.

Hello


press f8 during startup and go into the safe mode menu


select last known config that worked


gringo

Gringo,

Tried that twice. Startup repair still launches and fails. Also, when I use the repair option, it tells me there is no restore point in system restore, which I know I had on. Maybe whatever I caught shut it off? I'm kicking myself in the ass for not making an image disk.

Chris

Try this please. You will need a USB drive.

Download http://unetbootin.sourceforge.net/unetbootin-xpud-windows-latest.exe & http://noahdfear.net/downloads/bootable/xPUD/xpud-0.9.2.iso to the desktop of your clean computer

• Insert your USB drive
  
• Press Start > My Computer > right click your USB drive > choose Format > Quick format
  
• Double click the unetbootin-xpud-windows-387.exe that you just downloaded
  
• Press Run then OK
  
• Select the DiskImage option then click the browse button located on the right side of the textbox field.
  
• Browse to and select the xpud-0.9.2.iso file you downloaded
  
• Verify the correct drive letter is selected for your USB device then click OK
  
• It will install a little bootable OS on your USB device
  
• Once the files have been written to the device you will be prompted to reboot ~ do not reboot and instead just Exit the UNetbootin interface
  
• After it has completed do not choose to reboot the clean computer simply close the installer
  
• Next download http://noahdfear.net/downloads/driver.sh to your USB
  
• Remove the USB and insert it in the sick computer
  
• Boot the Sick computer
  
• Press F12 and choose to boot from the USB
  
• Follow the prompts
  
• A Welcome to xPUD screen will appear
  
• Press File
  
• Expand mnt
  
• sda1,2...usually corresponds to your HDD
  
• sdb1 is likely your USB
  
• Click on the folder that represents your USB drive (sdb1 ?)
  
• Confirm that you see driver.sh that you downloaded there
  
• Press Tool at the top
  
• Choose Open Terminal
  
• Type bash driver.sh
  
• Press Enter
  
• After it has finished a report will be located on your USB drive named report.txt
  
• Remove the USB drive and insert back in your working computer and navigate to report.txt
  
  Please note - all text entries are case sensitive

Copy and paste the report.txt for my review

Gringo,

I get as far as choosing the boot language for xUPD, then seeing the black loading screen with progress indicator. When the indicator gets to the bottom of the screen, it crashes out with these messages;

(EE) No Devices Detected

Fatal Server Error : No screens found

Assuming drive cache : write through

Assuming drive cache : write through

Assuming drive cache : write through

Xinit No such file on DIR errno2 unable to connect to X server

No such process errno3 Server Error

XAuth (ARGV):1: Bad display name "(None):0" in "Remove" command

SH: No job control in this shell
SH-4.0#





Chris

try formating the usb and try to make it again


gringo

Gringo,


Did a full format and then did everything you told me to, only to have the same result.




Chris

Gringo,

Any thoughts?

Chris

Greetings

I need you to make a bootable usb and to make a screenshot for me - follow the instructions below to do this

How to create a bootable Puppy USB Drive

• Download and save a copy of the latest Puppy ISO file
  
• Download and save a copy of Unetbootin for Windows.
  
• Insert an empty formatted USB drive into a USB port on the computer that's being used to create the bootable USB.
  
• Launch Unetbootin ....
  
• Ensure that Disk Image is selected.
  
• Using the browse button ... browse to and select the Puppy ISO file.
  
• Ensure that Type: is set to USB Drive and that the Drive: letter corresponds to the USB drive.
  
• Click OK

Unetbootin will now copy the Puppy files to the USB and make it a bootable device.

Next

You need to change the boot order of the computer to boot from a USB drive ....

• Read HERE for instructions how to do this.

Now boot into Puppylinux

when you get to the desktop Click on each of the drive items found in the bottom left corner to mount them (when mounted they will have a red cross next to them)

Next - Launch GParted which is found at Menu > System > GParted partition manager,
Click to select All Drives then click Okay
I need you to take a screenshot of the window that opens up - to do this follow these instructions

To take a screenshot in Puppy ....

With the GParted window open ...

• Click menu > Graphic > mtPaint-snapshot screen capture
  
• A small window will open ....
  
  
  • Click Capture Now
    
  • Click OK
  
  
• The mtPaint program will open ....
  
  • Click File > Save
    
  • Double click on ../
    
  • Double click on mnt/
    
  • Double click on sdb1/
    
  • Set File Format to JPEG
    
  • Enter screenshot1 into the text box
    
  • Click OK

This will save a file screenshot1.jpeg into the USB drive, paste or attach this to your next post

Next

• Click menu > shutdown > power off computer
  
• If prompted to save the session click on No

Puppy will now close down.

remove the usb and save it - we will use it again - boot back into windows and send me the screen capture

gringo

Gringo,

I must be really borked. I reformatted my USB, used unetbootin to make a disc image of the slackopuppy 5.3.1, reset the BIOS on my boatanchor to boot from USB first, booted from the drive, got the puppy screen where it says "five seconds to boot" then BLAM! crash!


my caps and scroll lock lights are fast blinking, and this is what was on the screen;

kernel panic - not syncing : vfs : unable to mount root f.s. on unknown block (8,10)
pid : 1, comm: swapper not tainted 2.6.37.6 #1

call trace:

[<c12a2988>] ? panic +0x40/0x130
[<c13e4abc>] ? mount_block_root +0x107/0x1eb
[<c1080869>] ? sys_mknod +0x13/0x17
[<c13e53d1>] ? initrd_load +0xb0/0x2c2
[<c13e4c9c>] ? prepare_namespace +0xba/0x168
[<c13e4846>] ? kernel_init +0x17c/0x187
[<c13e46ca>] ? kernel_init +0x0/0x187
[<c1002cb6>] ? kernel_thread_helper +0x6/0x10




Chris

Hello


right now I don't know what we can do - Everything we try is met with another problem

I think the best thing we can do is reload the operating system and start over




gringo

Gringo,

That's what I thought. If memory serves correctly, I can do a "low level" install where I don't lose everything. I first will try copying that ntoskernel.exe from my Wife's Win7 laptop and see what that does. I know the puppy USB works, as I have tried it on an Asus EEEpc netbook that I forgot my Wife had. It is what I am writing this on now, using seamonkey.Oddly enough, the same thing happened to it a few years ago. A fake anti virus pop up appeared, was removed, and then the XP install was trashed. As the netbook did not come with a disc, I could not slipstream a re-install of XP. I found the netbook under my Win7 disc, and thought I would test the puppy USB on it.

Thanks for your help, and I will let you know what happens next.


Chris

Hello

I could not slipstream a re-install of XP. I found the netbook under my Win7 disc

It should have come with a reinstall cd or a recovery partition (netbooks don't have cd drive)

on the computers website you should find instructions on how to burn the CD to a usb and load the os from there (I have done this once)


gringo

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.