Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Used TDSS Killer, Deleted Safeboot


  • This topic is locked This topic is locked
8 replies to this topic

#1 LoodaChris3

LoodaChris3

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:03:42 PM

Posted 13 September 2013 - 07:07 PM

Need help getting Win7 to boot. Ran TDSS and deleted a single file called SafeBoot. In the wise words of Forrest Gump, "I am not a smart man." Please help...


Edited by hamluis, 14 September 2013 - 10:44 AM.
Changed topic title to reflect situation - Hamluis.


BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 55,754 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:05:42 PM

Posted 14 September 2013 - 08:44 AM

Based on what I read/interpret at http://www.tweaking.com/forums/index.php?topic=527.0 , I would try the Windows Repair All In One Tool to overcome the safeboot issue.  But if the system won't boot, that won't be of much assistance.

 

I suggest that you await some guidance from those here who are more knowledgeable, I've requested assistance...please be patient..

 

Louis


Edited by hamluis, 14 September 2013 - 08:50 AM.


#3 bloopie

bloopie

    Bleepin' Sith Turner


  • Malware Response Team
  • 7,927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York
  • Local time:06:42 PM

Posted 14 September 2013 - 11:51 AM

Hello LoodaChris3, and welcome to Bleeping Computer!

I'm moving this topic to the Malware Removal Logs forum so that we can try and get some logs posted.

==========

Just to be clear, your computer cannot boot into any mode as a direct result of running TDSSKiller?

Also, please let me know if you have your original Windows 7 Installation CD available?

==========

Now, for the next instructions you will need the use of a flashdrive (or removable USB device):

1. On a clean machine, please download Farbar Recovery Scan Tool and save it to a flash drive.

Note: You need to run the version compatible with your system.

2. Plug the flashdrive into the infected PC.To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.
Note: In case you can not enter System Recovery Options by using F8 method, you can use Windows installation disc, or make a repair disc. Any Windows installation disc or a repair disc made on another computer can be used.
To make a repair disk on Windows 7 consult: http://www.sevenforums.com/tutorials/2083-system-repair-disc-create.html


To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.
3. On the System Recovery Options menu you will get the following options:

Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt


Select Command Prompt

4. Once in the Command Prompt:
  • In the command window type in notepad and press Enter.
  • The notepad opens. Under File menu select Open.
  • Select "Computer" and find your flash drive letter and close the notepad.
  • In the command window type e:\frst (for x64 bit version type e:\frst64) and press Enter
    Note: Replace letter e with the drive letter of your flash drive.
  • The tool will start to run.
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.
bloopie

#4 LoodaChris3

LoodaChris3
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:03:42 PM

Posted 14 September 2013 - 12:15 PM

Correct, it won't boot as a direct result of deleting that one file TDSS singled out. No installation disk present. Also I'm not 100% sure if I'm running 32 or 64. Thanks for the guidance.

#5 bloopie

bloopie

    Bleepin' Sith Turner


  • Malware Response Team
  • 7,927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York
  • Local time:06:42 PM

Posted 14 September 2013 - 12:21 PM

Hello again,
 

Thanks for the guidance.

 
It's my pleasure! :)
 

I'm not 100% sure if I'm running 32 or 64.


If you're not sure of what bit-type you are running, just try both versions of FRST. Only one will work, and that will be the correct version. :wink:
 
bloopie


Edited by bloopie, 14 September 2013 - 12:22 PM.
fixed typo


#6 bloopie

bloopie

    Bleepin' Sith Turner


  • Malware Response Team
  • 7,927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York
  • Local time:06:42 PM

Posted 17 September 2013 - 05:50 PM

Hello again,

Are you still with me? :)

This is a 3-Day Bump! If you still wish to receive help please follow the instructions in my last post.

If you do not respond in another 48 hours, I will be forced to close this topic!

bloopie

#7 LoodaChris3

LoodaChris3
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:03:42 PM

Posted 19 September 2013 - 06:45 PM

Hey there,
I apologize for the delay. I followed the instructions you gave, but halfway through it died. I couldn't restart the system. Completely dead. I feel like new problem may be hardware related. I'm getting it looked at now. Thanks for all the assistance. Truly appreciate it.

#8 bloopie

bloopie

    Bleepin' Sith Turner


  • Malware Response Team
  • 7,927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York
  • Local time:06:42 PM

Posted 19 September 2013 - 07:58 PM

Hello again,

The assistance is my pleasure! Let me know how things turn out for you!

If you'd like continued assistance, or you'd like me to close this topic because it's fixed, please just let me know!

Best of luck!

bloopie

#9 bloopie

bloopie

    Bleepin' Sith Turner


  • Malware Response Team
  • 7,927 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New York
  • Local time:06:42 PM

Posted 21 September 2013 - 11:17 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users