Help
This topic is locked
Nope, it still goes to the startup repair screen and says it cant repair itself. Looking at the Diagnosis and Repair Details it is saying that every test has an error code of 0x0 and the Number of root causes was 1
Forum Guidelines
Read the following topic before creating a new topic in this forum. It contains instructions on the what we would like you to post, which will enable us to help you more quickly.Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help
Unfortunately, with the amount of logs we receive per day, the average response time is 5 days. I want to assure you, though, that your topic will be looked at and responded to. So please be patient. DO NOT RUN ComboFix unless requested to. Only members of the Malware Response Team or Moderators are allowed to help people with logs. Anyone else should refrain from posting to another user's log. When posting a log please put the type of infection you have in the topic title. IE: Winfixer, Virtumonde, WinTools, WebSearch, Home Search Assistant, etc. Do not bump your topic. We try to resolve logs on a first come/first served basis. By bumping your log you will be pushed back in line due to the new date of your bump.
Win 7 Home Security, PING.exe, and Alureon.TK.3
Back to top
#32
- Member
-
- Group: Members
- Posts: 23
- Joined: 17-December 11
Posted 25 December 2011 - 09:43 PM
I realize that it is christmas time so I'm not expecting a response any time real soon but it says if you dont respond in 48 hours to bump the thread. I need to have my computer working by the 2nd of January because I will be going away then back to school immediately after
#33
- Bleepin Gringo
-
- Group: Malware Response Team
- Posts: 85,524
- Joined: 03-July 08
- Gender:Male
- Location:Puerto rico
Posted 25 December 2011 - 09:56 PM
In Vista or Windows 7: Boot to System Recovery Options and run FRST.
In Windows XP: Please boot to BartPe and run FRST.
Type the following in the edit box after "Search:".
ntoskrnl.exe
Note: The file names should be separated by semicolon (;)
It then should look like:
Search: ntoskrnl.exe
Click Search button and post the log (Search.txt) it makes to your reply.
In Windows XP: Please boot to BartPe and run FRST.
Type the following in the edit box after "Search:".
ntoskrnl.exe
Note: The file names should be separated by semicolon (;)
It then should look like:
Search: ntoskrnl.exe
Click Search button and post the log (Search.txt) it makes to your reply.
I will be online from 5-31 to 6-4 in a very limited amount
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know
If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic
Please Only Copy And Paste Reports Into Topic - Do Not Attach
My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->
<-- Don't worry every little bit helps.
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know
If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic
Please Only Copy And Paste Reports Into Topic - Do Not Attach
My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->
<-- Don't worry every little bit helps.
#34
- Member
-
- Group: Members
- Posts: 23
- Joined: 17-December 11
Posted 25 December 2011 - 10:19 PM
Farbars Recovery Scan Tool 2.0.3
Ran by SYSTEM at 2011-12-25 22:13:33
Running from E:\
================== Search: ntoskrnl.exe ===================
C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7600.16385_none_6c06b7c41576a7d9\ntoskrnl.exe
[2009-07-13 15:15] - [2009-07-13 17:20] - 3899472 ____A (Microsoft Corporation) B9D673F7707219DFD264891A26C21ECB
C:\Windows\winsxs\amd64_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7600.16385_none_c8255347cdd4190f\ntoskrnl.exe
[2009-07-13 15:41] - [2009-07-13 17:48] - 5511248 ____A (Microsoft Corporation) 9E722B768E33D26AD8FA7D642E707443
C:\Windows\SysWOW64\ntoskrnl.exe
[2009-07-13 15:15] - [2009-07-13 17:20] - 3899472 ____A (Microsoft Corporation) B9D673F7707219DFD264891A26C21ECB
C:\Windows\System32\ntoskrnl.exe
[2009-07-13 15:41] - [2009-07-13 17:48] - 5511248 ____A (Microsoft Corporation) 9E722B768E33D26AD8FA7D642E707443
C:\Windows\ERDNT\cache86\ntoskrnl.exe
[2010-12-25 19:41] - [2009-07-13 17:20] - 3899472 ____A (Microsoft Corporation) B9D673F7707219DFD264891A26C21ECB
C:\Windows\ERDNT\cache64\ntoskrnl.exe
[2010-12-25 19:41] - [2009-07-13 17:48] - 5511248 ____A (Microsoft Corporation) 9E722B768E33D26AD8FA7D642E707443
====== End Of Search ======
Ran by SYSTEM at 2011-12-25 22:13:33
Running from E:\
================== Search: ntoskrnl.exe ===================
C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7600.16385_none_6c06b7c41576a7d9\ntoskrnl.exe
[2009-07-13 15:15] - [2009-07-13 17:20] - 3899472 ____A (Microsoft Corporation) B9D673F7707219DFD264891A26C21ECB
C:\Windows\winsxs\amd64_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7600.16385_none_c8255347cdd4190f\ntoskrnl.exe
[2009-07-13 15:41] - [2009-07-13 17:48] - 5511248 ____A (Microsoft Corporation) 9E722B768E33D26AD8FA7D642E707443
C:\Windows\SysWOW64\ntoskrnl.exe
[2009-07-13 15:15] - [2009-07-13 17:20] - 3899472 ____A (Microsoft Corporation) B9D673F7707219DFD264891A26C21ECB
C:\Windows\System32\ntoskrnl.exe
[2009-07-13 15:41] - [2009-07-13 17:48] - 5511248 ____A (Microsoft Corporation) 9E722B768E33D26AD8FA7D642E707443
C:\Windows\ERDNT\cache86\ntoskrnl.exe
[2010-12-25 19:41] - [2009-07-13 17:20] - 3899472 ____A (Microsoft Corporation) B9D673F7707219DFD264891A26C21ECB
C:\Windows\ERDNT\cache64\ntoskrnl.exe
[2010-12-25 19:41] - [2009-07-13 17:48] - 5511248 ____A (Microsoft Corporation) 9E722B768E33D26AD8FA7D642E707443
====== End Of Search ======
#35
- Bleepin Gringo
-
- Group: Malware Response Team
- Posts: 85,524
- Joined: 03-July 08
- Gender:Male
- Location:Puerto rico
Posted 25 December 2011 - 10:23 PM
Hello
when booting into the safe mode nenu have you tried last known config that worked?
when booting into the safe mode nenu have you tried last known config that worked?
I will be online from 5-31 to 6-4 in a very limited amount
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know
If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic
Please Only Copy And Paste Reports Into Topic - Do Not Attach
My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here --><-- Don't worry every little bit helps.
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know
If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic
Please Only Copy And Paste Reports Into Topic - Do Not Attach
My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->
<-- Don't worry every little bit helps.
#36
- Member
-
- Group: Members
- Posts: 23
- Joined: 17-December 11
Posted 25 December 2011 - 10:59 PM
yea I've tried that but it just goes back to the Startup Repair tool and says that it cannot repair the computer.
#37
- Member
-
- Group: Members
- Posts: 23
- Joined: 17-December 11
Posted 25 December 2011 - 11:16 PM
this is the exact report from my computer after startup repair. I would like to be able to save all of my files if a reinstall is necessary. I was thinking about using some sort of Linux USB program to boot and possibly transfer my important files over to an external HDD then reinstall and move them back over from the external drive. is this at all possible?
Problem event name: StartupRepairOffline
Problem Signature 01: 6.1.7600.16385
Problem Signature 02: 6.1.7600.16385
Problem Signature 03: unknown
Problem Signature 04: 21200964
Problem Signature 05:AutoFailover
Problem Signature 06: 29
Problem Signature 07: CorruptFile
OS Version: 6.1.7600.2.0.0.256.1
Locale ID: 1033
Problem event name: StartupRepairOffline
Problem Signature 01: 6.1.7600.16385
Problem Signature 02: 6.1.7600.16385
Problem Signature 03: unknown
Problem Signature 04: 21200964
Problem Signature 05:AutoFailover
Problem Signature 06: 29
Problem Signature 07: CorruptFile
OS Version: 6.1.7600.2.0.0.256.1
Locale ID: 1033
This post has been edited by Sean97: 25 December 2011 - 11:21 PM
#38
- Bleepin Gringo
-
- Group: Malware Response Team
- Posts: 85,524
- Joined: 03-July 08
- Gender:Male
- Location:Puerto rico
Posted 25 December 2011 - 11:30 PM
How to create a bootable Puppy USB Drive
Unetbootin will now copy the Puppy files to the USB and make it a bootable device.
Next
You need to change the boot order of the computer to boot from a USB drive ....
Now boot into Puppylinux
when you get to the desktop Click on each of the drive items found in the bottom left corner to mount them (when mounted they will have a red cross next to them)
now you should be able to backup your files
gringo
- Download and save a copy of the latest Puppy ISO file
- Download and save a copy of Unetbootin for Windows.
- Insert an empty formatted USB drive into a USB port on the computer that's being used to create the bootable USB.
- Launch Unetbootin ....
- Ensure that Disk Image is selected.
- Using the browse button ... browse to and select the Puppy ISO file.
- Ensure that Type: is set to USB Drive and that the Drive: letter corresponds to the USB drive.
- Click OK
Unetbootin will now copy the Puppy files to the USB and make it a bootable device.
Next
You need to change the boot order of the computer to boot from a USB drive ....
- Read HERE for instructions how to do this.
Now boot into Puppylinux
when you get to the desktop Click on each of the drive items found in the bottom left corner to mount them (when mounted they will have a red cross next to them)
now you should be able to backup your files
gringo
I will be online from 5-31 to 6-4 in a very limited amount
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know
If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic
Please Only Copy And Paste Reports Into Topic - Do Not Attach
My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here --><-- Don't worry every little bit helps.
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know
If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic
Please Only Copy And Paste Reports Into Topic - Do Not Attach
My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->
<-- Don't worry every little bit helps.
