Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

DLL


  • Please log in to reply
33 replies to this topic

#1 dalr21

dalr21

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ireland
  • Local time:04:30 AM

Posted 04 March 2013 - 12:10 PM

Hi i would appreciate some help with this.  when signing in to my friends computer it gives an instant error isoholucanar.dll ive googled it and not one result.


Edited by Orange Blossom, 04 March 2013 - 12:16 PM.
Moved to AII from Windows 7. ~ OB


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:30 PM

Posted 04 March 2013 - 12:15 PM

Looks like infection to me

 

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters




  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now




  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue




  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.



  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.



  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results

 



#3 dalr21

dalr21
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ireland
  • Local time:04:30 AM

Posted 04 March 2013 - 12:39 PM

hi narenxp i started a thread with you here http://www.bleepingcomputer.com/forums/t/487265/infected-computer/ it was just out of curiosity before i do the recovery partition. sorry for the confusion. 



#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:30 PM

Posted 04 March 2013 - 01:30 PM

Same PC?

 

So do you want to remove the infections or do a  factory restore?


Edited by narenxp, 04 March 2013 - 01:30 PM.


#5 dalr21

dalr21
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ireland
  • Local time:04:30 AM

Posted 04 March 2013 - 02:08 PM

Just tried factory restore and it gave an error i think it was the handle is invalid is there any other options on how to get it cleaned.



#6 dalr21

dalr21
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ireland
  • Local time:04:30 AM

Posted 04 March 2013 - 02:12 PM

I just finished a start up repair in the bios this is the details.  boot config corrupt error code = 0+490 this was the only error.



#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:30 PM

Posted 04 March 2013 - 02:24 PM

Please run the scans and post the logs



#8 dalr21

dalr21
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ireland
  • Local time:04:30 AM

Posted 04 March 2013 - 02:44 PM

I'm on a differnt computer.  Every time i boot it it now goes straight start up recovery and does the same scan with the same results.  any idea how i can boot back into windows.  thanks for helping me narenxp



#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:30 PM

Posted 04 March 2013 - 02:46 PM

What other options you have in recovery console other than startup repair? What happens when press F8 at bootup?

 

Do you have system restore?



#10 dalr21

dalr21
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ireland
  • Local time:04:30 AM

Posted 04 March 2013 - 02:57 PM

F8 dosnt give me any options just says windows is loading files then boot's into startup repairs when it finish's  the message is if you have attached a device to this computer, such as a camera or portable music player, remove it and restart your computer.

 

Now im in system reovery options with

startup repair, system restore, system image recovery, mem diagnostics, cmd, reinstall windows using files on the hard disk.

 

I'll wait for your response before i proceed.



#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:30 PM

Posted 04 March 2013 - 03:08 PM

Click on system restore and select a previous restore point and see if that helps to boot into normal mode.



#12 dalr21

dalr21
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ireland
  • Local time:04:30 AM

Posted 04 March 2013 - 03:10 PM

I tried sys restore it say's no restore point have been created on this machine to create a restore point by system protection.  When i click it it say's your computer is running in a limited diagnostic state.if you use this you cannot ndo it is this safe to proceed with.



#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:30 PM

Posted 04 March 2013 - 03:38 PM

Boot into BIOS and change the default setting from AHCI to IDE and try to boot normally.



#14 dalr21

dalr21
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ireland
  • Local time:04:30 AM

Posted 04 March 2013 - 04:15 PM

I'm in the bios now i can disable the AHCI but i was looking at the boot order and its booting from

1st usb floppy.

2nd usb key

3rd cd /dvd rom

4th usb harddisk

5th harddisk: po: wdc wd2...

6th network device: pci ro...

 

should i change it to boot from the fifth option also will i still disable the ahci.

when i go into ide config i dosent give me anything to change just the info if you require it.

 

sorry about the edit.


Edited by dalr21, 04 March 2013 - 04:43 PM.


#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:30 PM

Posted 04 March 2013 - 05:40 PM

Yeah ,try changing the boot order first.If that doesnt work change disable AHCI and try






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users