Getting rid of rootkits without normal/safe mode

Page 2 of 3 FirstFirst 123 LastLast

  1. Posts : 2,470
    Windows 7 Home Premium
       #11

    You may not even have a RootKit...

    Do you have the last report created by TDSSKiller?

    Logs have a name/location like:
    C:\TDSSKiller.2.4.7_23.10.2013_15.31.43_log.txt
      My Computer


  2. Posts : 52
    Windows 7 Home Premium 64bit
    Thread Starter
       #12

    Okay so this is what Gparted found.
    Could you tell me if there's any thing wrong and how to get rid of it?
    Otherwise I ran kaspersky, Microsoft offline defender, and bitdefender. Bitdefender was the only one to find two Trojans, which I deleted even though I'm pretty sure they were false positives (from Skype and adw cleaner or something like that).
    I have yet to run FRST, and will do so asap.
    Attached Thumbnails Attached Thumbnails Getting rid of rootkits without normal/safe mode-img_20130901_131555.jpg  
      My Computer


  3. Posts : 52
    Windows 7 Home Premium 64bit
    Thread Starter
       #13

    I have no idea what it is so I'm looking in any direction...
    I recently ran kaspersky rescue disk so does that qualify?
    What do you think it could be? The update still?
      My Computer


  4. Posts : 2,470
    Windows 7 Home Premium
       #14

    Do not see any partition in GParted with Flags: boot, hidden

    Don't think there is a RootKit...

    If you post the TDSSKiller report, as previously requested, and the Farbar Recovery Scan Tool, that will provide some enlightenment as to whether the problem is malware.
      My Computer


  5. Posts : 52
    Windows 7 Home Premium 64bit
    Thread Starter
       #15

    I have attached the FRST text. How can I get the TDSSKiller log since I can't access safe mode?
    Getting rid of rootkits without normal/safe mode Attached Files
      My Computer


  6. Posts : 2,470
    Windows 7 Home Premium
       #16

    You do not need to access Safe Mode to get the TDSSKiller report.

    Logs have a name/location like:
    C:\TDSSKiller.2.4.7_23.10.2013_15.31.43_log.txt

    It is located in drive C: (or the drive where the Operating System is located)
      My Computer


  7. Posts : 52
    Windows 7 Home Premium 64bit
    Thread Starter
       #17

    I have more logs, but I'm not sure they're necessary. I'll upload them if you like.
      My Computer


  8. Posts : 2,470
    Windows 7 Home Premium
       #18

    Don't see a rootkit in those reports.

    On the Safe Mode issue...

    At this point, are you able, or, not able to boot to Safe Mode?

    What happens if you try to do so?
      My Computer


  9. Posts : 52
    Windows 7 Home Premium 64bit
    Thread Starter
       #19

    No I can't boot into safe mode. Previously, it would just get stuck on the welcome screen, with the wheel spinning and freezing at points. When I tried booting normally I got a message saying that the user service profile couldn't log on or something like that, so searching this problem on the internet I created an administrator account. Now when booting into safe mode it will load into the background but there is no toolbar or icons. I can log in with cmd, but it doesn't work. I can type things in and move around the screen, but actual commands freeze everything and once unfrozen don't do anything.
      My Computer


  10. Posts : 2,470
    Windows 7 Home Premium
       #20

    As of right now, what happens if you log in normally to your regular account?

    Do you still get:
    "User Profile Service failed the logon"


    See if you can open a Command Prompt:
    Start > All Programs > Accessories > Command Prompt

    Once Command Prompt is open, copy (highlite with mouse and select: Copy) the command that follows, and at the blinking cursor, click to the right of it, and select Paste:

    Code:
    wmic useraccount get name,sid
    Press: Enter
    Please provide the results by clicking on the icon on the upper left frame of the Command Prompt, and selecting Edit > Select All
    Once again, do the same and select: Edit > Copy
    Open Notepad, and provide the results in your reply.


    Also, at the Command Prompt type:

    Code:
    set userprof
    Please provide the results as above.
    Last edited by cottonball; 04 Sep 2013 at 18:07.
      My Computer


 
Page 2 of 3 FirstFirst 123 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 01:12.
Find Us