Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: vbcrypt trojan, can't boot windows 7 or linux

30 Dec 2014   #1
exeviss

Windows 7 Professional 64 bit
 
 
vbcrypt trojan, can't boot windows 7 or linux

here is the old thread I created.
windows and ubuntu won't boot after bsod, possible virus
Now that I found this trojan I thought It would help to make a new thread. Maybe an admin can move the old thread to this section and change the title of this thread.


My System SpecsSystem Spec
.
30 Dec 2014   #2
cottonball

Windows 7 Home Premium
 
 

exeviss,

What program alerted you to having a vbcrypt Trojan?

Are you able to start the computer, and tap the F8 key until you get to the Advanced Boot Options menu?
My System SpecsSystem Spec
30 Dec 2014   #3
matts6887

Windows 7 ultimate 64-bit
 
 

Were you able to scan for this virus without being able to boot into windows or ubuntu?
My System SpecsSystem Spec
.

30 Dec 2014   #4
cottonball

Windows 7 Home Premium
 
 

in the othre thread:

Quote:
Just windows in safe mode which gives me hope.
My System SpecsSystem Spec
30 Dec 2014   #5
exeviss

Windows 7 Professional 64 bit
 
 

I scanned for it from safe mode. Malwarebytes didn't find it but AVG did. Probably because I need to update the malwarebytes virus database. I can get to advanced boot options with F8 but running from the last known good configuration only returns the initial bsod instead of a black screen.
My System SpecsSystem Spec
30 Dec 2014   #6
cottonball

Windows 7 Home Premium
 
 

See if you can do the following:

[You may want to print these instructions so you can have access to them.
Also, you may want to read them once before you apply them.]
]
Please plug in a USB pen drive into a clean working computer.

Go to the Farbar Recovery Scan Tool Download
Farbar Recovery Scan Tool Download

Select the download that applies to your system: 64-bit
Save the program to the >> USB pen drive.
Remove USB pen drive when done.

Now, go to the >> problem << computer.
Plug in the USB pen drive which has FRST.

Start the computer, and tap the F8 key until you get to the Advanced Boot Options
Use the arrow keys to select the Repair your computer menu item

From there...
Select your language settings, and click: Next
Select your User account and click: OK (If you did not set a password, leave blank.)

On the System Recovery Options you get the following options:

Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Scan your computer's memory for errors
Command Prompt

Select: Command Prompt

In the Command Prompt window, at the blinking cursor type notepad and press: Enter
In Notepad, under the File menu select: Open
Double-click the Computer icon on the left.
Find the pen drive letter, remember what letter it is, click on it, and press: Open
Close out of Notepad.

Click the Command Prompt window
Type x:\frst64.exe, and press: Enter
Note: Replace the drive letter x with the drive letter of your pen drive!

FRST starts, and prepares to run. Follow the prompts.
Click Yes to the Disclaimer.

Press the Scan button.

The scan runs, and, the program saves the FRST.txt, on the pen drive.

When done, click the Command Prompt window, type exit, and press: Enter

Back at the System Recovery Options, press: Shutdown
Remove the USB pen drive.

Please plug the USB pen drive in the working computer, and please provide the FRST.txt in your reply.
My System SpecsSystem Spec
31 Dec 2014   #7
exeviss

Windows 7 Professional 64 bit
 
 

I'm about to get started with Farbar. I just wanted to mention before I forgot that my Ubuntu 14.04 is on an entirely different drive than windows and it got infected when windows did anyway. At least I assume it did since it won't boot. Is Ubuntu going to be a major problem to fix?

edit: FRST.txt added


Attached Files
File Type: txt FRST.txt (22.5 KB, 2 views)
My System SpecsSystem Spec
31 Dec 2014   #8
cottonball

Windows 7 Home Premium
 
 

exeviss,

At a glance, the FRST report does not lead me to believe that there is any deep rooted malware in the system.

==================== Drives ================================
Drive c: () (Fixed) (Total:1863.01 GB) (Free:1013.48 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (KINGSTON) (Removable) (Total:1.86 GB) (Free:0.79 GB) FAT
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

Quote:
...my Ubuntu 14.04 is on an entirely different drive than windows
Was the drive containing Ubuntu not connected at the time you ran FRST?



Please connect the Ubuntu drive, and, using the Snipping Tool, post an image of Disk Management.
Do so from Safe Mode if necessary.
Disk Management - Post a Screen Capture Image

Maximize the Disk Management window so it fills your entire screen.

How to Use the Snipping Tool in Vista
(Also applies to Windows 7)
My System SpecsSystem Spec
01 Jan 2015   #9
exeviss

Windows 7 Professional 64 bit
 
 

I don't see the D drive there so it must not be included in the scan. It's in drive management though.
My System SpecsSystem Spec
01 Jan 2015   #10
cottonball

Windows 7 Home Premium
 
 

exeviss,

See if you can post an image of Disk Management as requested above.

Also, please download ListParts
Save to the Desktop
Double-click the downloaded file to run the program.
Click: Scan

When done, please post the Result.txt in your reply.


Thanks!
My System SpecsSystem Spec
Reply

 vbcrypt trojan, can't boot windows 7 or linux




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Uninstalled Linux OS dual boot with Windows 7 now boot issue.
Tried Ubuntu & didn't like it so wanted to remove it completely. After deleting & recovering that portion of (G: ) which is where Ubuntu was installed, I couldn't boot in Windows 7. I was able to use my install disk to load into repair. The OS it found was- OS -Windows 7 Partition Size -...
General Discussion
Linux Dual Boot System Using the Windows 7 Boot MGR
Hello! I've got Windows 7 installed and would like to set up a dual boot system with an Ubuntu 9.04. However, I would like to use the Windows 7 boot loader instead of GRUB. How can I do that? Thanks in advance.
Installation & Setup
Cant Boot windows, Linux boot loader has taken over
I had windows 7 originally Installed on my Laptop. I then Installed Ubuntu 9.10 Desktop version, and it installed the grub boot loader (All on 1 single HD, each OS is on its own partition.) This boot loader was used to dual boot between windows and Linux. However now the grub boot loader...
Installation & Setup


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 17:30.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App