Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Ran Windows Defender Offline, can't boot up computer. Help please!

22 Jan 2014   #21
cottonball

Windows 7 Home Premium
 
 

Excellent!! Glad you are able to boot.

We are not done yet...Alureon is not a good thing to have.

Have to go out for a doctor's appointment in a short while (bad cold caused by the frigid weather in Illinois, maybe you've had it also in Missouri).

Will get back to you this evening.


My System SpecsSystem Spec
.
22 Jan 2014   #22
cottonball

Windows 7 Home Premium
 
 

In the meantime, go to the TDSSKiller Download
Select the .exe version
Double-click on TDSSKiller.exe to run the program.
When the TDSSKiller console opens, click on: Change Parameters
Under Additional Options, place a check in the box next to: Detect TDLFS File System
Click: OK

Press: Start Scan

If a suspicious object is detected by this program, the default action is Skip. Leave this action as is, and click on: Continue

If malicious objects are found, they show in the Scan results.
Ensure Cure (the default action) is selected, then click: Continue > Reboot now, to finish the cleaning process.
(Note: If Cure is not available, select Skip. Do not select: Delete

When done, the tool creates a log on the disk with the Windows Operating System, normally C:\
Logs have a name like:
C:\TDSSKiller.X.X.X_15.10.2013_15.31.43_log.txt

Also provide the TDSSKiller report in your reply.
My System SpecsSystem Spec
22 Jan 2014   #23
bsever

Windows 7 64 bit
 
 

Cotton - The weather here in St. Louis has been miserable, so I know what you mean.

The scan found one suspicious item. I have attached the scan log as requested.


Attached Files
File Type: txt TDSSKiller.3.0.0.19_22.01.2014_15.47.47_log.txt (193.0 KB, 4 views)
My System SpecsSystem Spec
.

22 Jan 2014   #24
cottonball

Windows 7 Home Premium
 
 

We are almost neighbors!! I live in O'Fallon, Illinois.

On TDSSKiller...

Please run it once again, and this time, when presented with the TDSS File System entry in Threats Detected, select: Delete

Please attach the new TDSSKiller log in your reply.


To make sure there is nothing else 'lurking', let's do the following:

Please go to the Malwarebytes Anti-Malware Download
Save to the Desktop
Double-click the downloaded MBAM file to run it.

When the installation begins, follow the prompts in the setup process.
Do not make any changes to default settings and when the program has finished installing, make sure only the following options are checked:
>Update Malwarebytes’ Anti-Malware
>Launch Malwarebytes’ Anti-Malware
Uncheck:
>Enable free trial of Malwarebytes Anti-Malware PRO
Click on the Finish button.

If an update is found, the program automatically updates itself.
At the program console, on the Scanner tab, and select: Perform Quick Scan

Next, click on the Scan button.

When the Malwarebytes scan is completed, click on: Show Results
When presented with a screen showing the malware detected, make sure everything is Checked, and click on: Remove Selected

When removal is completed, a report opens in Notepad.

Please copy/paste the entire contents of the MBAM report in your reply.

Note: If MBAM encounters a file that is difficult to remove, you are asked to reboot the computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) prevents MBAM from removing all the malware.


.
My System SpecsSystem Spec
22 Jan 2014   #25
ICIT2LOL

Desk1 7 Home Prem / Desk2 10 Pro / Main lap Asus ROG 10 Pro 2 laptop Toshiba 7 Pro Asus P2520 7 & 10
 
 

cottonball I am just wondering if the ADWCleaner is worth a run here too as it might pick up something in the reg - what do you think??

http://www.bleepingcomputer.com/download/adwcleaner/

ADW download from bleepingcomputer delete any rubbish found
My System SpecsSystem Spec
22 Jan 2014   #26
matts6887

Windows 7 ultimate 64-bit
 
 

now granted im not a solid 100% expert per say; I do however know a little about tackling viruses and yes some of them can be a royal pain in the a$$. At this point i am gonna have to agree about reinstalling the o.s. if the rescue disk doesnt work.

I had a virus on my prior computer just after i first got it and i had no way to do a rescue as the whole system was messed up beyond all recognition and the only thing left that i could do was a complete clean install.
My System SpecsSystem Spec
22 Jan 2014   #27
cottonball

Windows 7 Home Premium
 
 

@ICit2lol,

Yep. Running ADWCleaner is part of the plan.

Trying to get rid of the big stuff first...
My System SpecsSystem Spec
23 Jan 2014   #28
bsever

Windows 7 64 bit
 
 

Neighbor! It sure is cold out there today...wishing I had heat in my truck this morning and waiting for a warmer weekend.

I attach the latest TDSSKiller log and the MBAM report is cut & pasted below:

Malwarebytes Anti-Malware 1.75.0.1300
Malwarebytes : Free Anti-Malware

Database version: v2014.01.23.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
POSTAL :: POSTAL-PC [administrator]

1/23/2014 10:56:44 AM
mbam-log-2014-01-23 (10-56-44).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 221653
Time elapsed: 7 minute(s), 27 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\WINDOWS\System32\config\systemprofile\0.3407809187208656.exe (Exploit.Drop.UR.2) -> Quarantined and deleted successfully.

(end)


Attached Files
File Type: txt TDSSKiller.3.0.0.19_23.01.2014_10.51.13_log.txt (195.0 KB, 0 views)
My System SpecsSystem Spec
23 Jan 2014   #29
bsever

Windows 7 64 bit
 
 

Also, MBAM popped up an urgent message to restart the computer to finish cleaning and so I did. Just FYI in case it's relevant.
My System SpecsSystem Spec
23 Jan 2014   #30
Slartybart

x64 (6.3.9600) Win8.1 Pro & soon dual boot x64 (6.1.7601) Win7_SP1 HomePrem
 
 

Relevant!

CB's last sentence in post# 24 reads:
Note: If MBAM encounters a file that is difficult to remove, you are asked to reboot the computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) prevents MBAM from removing all the malware.

You took the correct action.
My System SpecsSystem Spec
Reply

 Ran Windows Defender Offline, can't boot up computer. Help please!




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Computer wont start after removing alureon virus with defender offline
I used windows defender offline to remove the Trojan alureon virus and now my computer will not start up. as it is attempting to start, blue screen will flash and the loop will start over.
System Security
Computer won't boot after using Defender offline
Well, it seems this is a common problem. I'm mildly tech savvy, but this has me beat. Kid's college computer got Alureon, ran Defender Offline from a USB which appeared to work to remove the virus, but now it's in the start cycle of black and white Acer screen, a quick flash from a blue screen,...
System Security
Boot Failure after Windows Defender Offline
Got the Alureon.a trojan/rootkit. Downloaded the Windows Defender Offline and ran it successfully, but now I can not get past the "Verifying DMI pool data....". I've read countless posts about doing F8 or F10 to go into Advanced Boot Options, but neither of those respond. So I can not change...
Hardware & Devices
Windows Defender Offline crashed computer
Microsoft Security Essentials said I needed to run Windows Defender Offline to remove a trojan. I made the disk and ran it and it said it removed the trojan and to restart the computer. Only problem is it only goes to the Windows Error Recovery Screen. It will not repair or start normally. I...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 08:05.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App