BSOD on start up, Error 0x0000007B

Page 6 of 7 FirstFirst ... 4567 LastLast

  1. Posts : 10,796
    Microsoft Windows 7 Home Premium 64-bits 7601 Multiprocessor Free Service Pack 1
       #51

    doiob said:
    Ok im doing the #12 now. Earlier today i was running the avg scan it took an incredible long time but that was to be expected however it ended at 54% on a java file with the message Scan ended with unknown return code!
    Very strange. View things about the state now.

    • AVG is still installed but some files/folders have been renamed. You have to reinstall it later and remove the renamed stuff.
    • TDDS rootkit has been killed but not totally! Or at least there is corrupt stuff now
    • TDDS can download/install all sorts of malware/viruses on it's own. Most likely many virusses are on your system. Impossible to proof system is clean.
    • An offline virusscan (so boot from DVD) is the best thing to (try to) clean them. In win7 the virus is active and can fool the antivirus!
    The stop 7B is an error in th AHCI and/or IDE driver stuff.

    atapi.sys, msahci.sys, iastor.sys, iastorv.sys most likely some (or all) of them have been infected.

    It's a very nasty rootkit!! Allmost impossible to clean totally.

    Do you have many applications on system? Many special settings? What I mean... is a reinstall a total dissaster for you?
      My Computer


  2. Posts : 33
    Windos 7 x64
    Thread Starter
       #52

    Ok i ran it again this is what i got.
    hklm\win7sys\system\select /v default couldnt find the reg key
    msahci = 0x0
    pciide = 0x3
    atapi = 0x0
    iastor = 0x0
    iastorv =0x3

    Those were the results. i will try and get hklm\win7sys\system\select /v default to work.
      My Computer


  3. Posts : 33
    Windos 7 x64
    Thread Starter
       #53

    I would prefer to avoid a re install but im no fool i have known for some time that it has been on the cards. I would like to regain control of the computer one last time but i expect this to be the last hara for this install of windows. Yes you were right about the viruses according to avg before it stopped it found countless. if there is no solution by monday night here i will most like back as much as possible with Ubuntu and then re install. Yes this was my first tango with a rootkit, i had never in-counted one before so my early countermeasures were completely ineffectual. I had believed i had gotten the last laugh but perhaps it was premature. At the very least this last week has taught me much about computers in general.
      My Computer


  4. Posts : 10,796
    Microsoft Windows 7 Home Premium 64-bits 7601 Multiprocessor Free Service Pack 1
       #54

    doiob said:
    Ok i ran it again this is what i got.
    hklm\win7sys\system\select /v default couldnt find the reg key
    msahci = 0x0
    pciide = 0x3
    atapi = 0x0
    iastor = 0x0
    iastorv =0x3

    Those were the results. i will try and get hklm\win7sys\system\select /v default to work.
    My fault... command is different! I editted post 12.
      My Computer


  5. Posts : 10,796
    Microsoft Windows 7 Home Premium 64-bits 7601 Multiprocessor Free Service Pack 1
       #55

    msahci = 0x0=>starts on boot...fine
    pciide = 0x3=>no ide on boot...quite normal
    atapi = 0x0=>starts on boot...fine
    iastor = 0x0=>starts on boot...fine. It's the INTEL SATA storage driver
    iastorv =0x3=>no iastorv on boot....quite normal. You use iastor instead
      My Computer


  6. Posts : 33
    Windos 7 x64
    Thread Starter
       #56

    Results for the first line default = 0x1
      My Computer


  7. Posts : 10,796
    Microsoft Windows 7 Home Premium 64-bits 7601 Multiprocessor Free Service Pack 1
       #57

    doiob said:
    I would prefer to avoid a re install but im no fool i have known for some time that it has been on the cards. I would like to regain control of the computer one last time but i expect this to be the last hara for this install of windows. Yes you were right about the viruses according to avg before it stopped it found countless. if there is no solution by monday night here i will most like back as much as possible with Ubuntu and then re install. Yes this was my first tango with a rootkit, i had never in-counted one before so my early countermeasures were completely ineffectual. I had believed i had gotten the last laugh but perhaps it was premature. At the very least this last week has taught me much about computers in general.
    Why the heck don't you make backups!!
    You have a win7 installation DVD? Valid license? You know how to reinstall? You know how to backup this instance of win7 (for example with ubuntu) and restore files later? Only restore documents like mp3,doc,xls,jpg etc! Not system files!
      My Computer


  8. Posts : 33
    Windos 7 x64
    Thread Starter
       #58

    I back up all my work files at the end of every trimester so i only need to retake some files. I have the sintallation DVD + valid license. No i do not know how to back up instances of windows 7 and would love to learn how if you have the time. My laptop has a feature that automatically restores it to the factory state purging everything that is what i will use.
      My Computer


  9. Posts : 10,796
    Microsoft Windows 7 Home Premium 64-bits 7601 Multiprocessor Free Service Pack 1
       #59

    First totally clean your disk using diskpart clean (clean all is not necessary). Clean overwrites only the first 1MB on physical disk.... and that's were MBR and partition table are located. Fast and enough in this case.
    If course to be done in "recovery environment">command prompt. Now you are sure rootkit is totally vanished
    Disk - Clean and Clean All with Diskpart Command

    Clean Install Windows 7
      My Computer


  10. Posts : 33
    Windos 7 x64
    Thread Starter
       #60

    I do have one question regarding partitions. Say for example something like this were to happen again and the OS was corrupted in some way. If i had the OS on its own partition ( a: ) and my programs and files on an other ( b: ) could i re install windows over a: with out wiping b:?

    If it got to this stage again i would simply re-install this is simply an example
    Last edited by doiob; 03 Nov 2012 at 06:03. Reason: Bloody smileys
      My Computer


 
Page 6 of 7 FirstFirst ... 4567 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 12:02.
Find Us