Ran Windows Defender Offline, can't boot up computer. Help please!

Page 3 of 5 FirstFirst 12345 LastLast

  1. Posts : 2,470
    Windows 7 Home Premium
       #21

    Excellent!! Glad you are able to boot.

    We are not done yet...Alureon is not a good thing to have.

    Have to go out for a doctor's appointment in a short while (bad cold caused by the frigid weather in Illinois, maybe you've had it also in Missouri).

    Will get back to you this evening.
      My Computer


  2. Posts : 2,470
    Windows 7 Home Premium
       #22

    In the meantime, go to the TDSSKiller Download
    Select the .exe version
    Double-click on TDSSKiller.exe to run the program.
    When the TDSSKiller console opens, click on: Change Parameters
    Under Additional Options, place a check in the box next to: Detect TDLFS File System
    Click: OK

    Press: Start Scan

    If a suspicious object is detected by this program, the default action is Skip. Leave this action as is, and click on: Continue

    If malicious objects are found, they show in the Scan results.
    Ensure Cure (the default action) is selected, then click: Continue > Reboot now, to finish the cleaning process.
    (Note: If Cure is not available, select Skip. Do not select: Delete

    When done, the tool creates a log on the disk with the Windows Operating System, normally C:\
    Logs have a name like:
    C:\TDSSKiller.X.X.X_15.10.2013_15.31.43_log.txt

    Also provide the TDSSKiller report in your reply.
      My Computer


  3. Posts : 17
    Windows 7 64 bit
    Thread Starter
       #23

    Cotton - The weather here in St. Louis has been miserable, so I know what you mean.

    The scan found one suspicious item. I have attached the scan log as requested.
    Ran Windows Defender Offline, can't boot up computer.  Help please! Attached Files
      My Computer


  4. Posts : 2,470
    Windows 7 Home Premium
       #24

    We are almost neighbors!! I live in O'Fallon, Illinois. :)

    On TDSSKiller...

    Please run it once again, and this time, when presented with the TDSS File System entry in Threats Detected, select: Delete

    Please attach the new TDSSKiller log in your reply.


    To make sure there is nothing else 'lurking', let's do the following:

    Please go to the Malwarebytes Anti-Malware Download
    Save to the Desktop
    Double-click the downloaded MBAM file to run it.

    When the installation begins, follow the prompts in the setup process.
    Do not make any changes to default settings and when the program has finished installing, make sure only the following options are checked:
    >Update Malwarebytes’ Anti-Malware
    >Launch Malwarebytes’ Anti-Malware
    Uncheck:
    >Enable free trial of Malwarebytes Anti-Malware PRO
    Click on the Finish button.

    If an update is found, the program automatically updates itself.
    At the program console, on the Scanner tab, and select: Perform Quick Scan

    Next, click on the Scan button.

    When the Malwarebytes scan is completed, click on: Show Results
    When presented with a screen showing the malware detected, make sure everything is Checked, and click on: Remove Selected

    When removal is completed, a report opens in Notepad.

    Please copy/paste the entire contents of the MBAM report in your reply.

    Note: If MBAM encounters a file that is difficult to remove, you are asked to reboot the computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) prevents MBAM from removing all the malware.


    .
      My Computer


  5. Posts : 21,004
    Desk1 7 Home Prem / Desk2 10 Pro / Main lap Asus ROG 10 Pro 2 laptop Toshiba 7 Pro Asus P2520 7 & 10
       #25

    cottonball I am just wondering if the ADWCleaner is worth a run here too as it might pick up something in the reg - what do you think??

    http://www.bleepingcomputer.com/download/adwcleaner/

    ADW download from bleepingcomputer delete any rubbish found
      My Computer


  6. Posts : 1,449
    Windows 7 ultimate 64-bit
       #26

    now granted im not a solid 100% expert per say; I do however know a little about tackling viruses and yes some of them can be a royal pain in the a$$. At this point i am gonna have to agree about reinstalling the o.s. if the rescue disk doesnt work.

    I had a virus on my prior computer just after i first got it and i had no way to do a rescue as the whole system was messed up beyond all recognition and the only thing left that i could do was a complete clean install.
      My Computer


  7. Posts : 2,470
    Windows 7 Home Premium
       #27

    @ICit2lol,

    Yep. Running ADWCleaner is part of the plan. :)

    Trying to get rid of the big stuff first...
      My Computer


  8. Posts : 17
    Windows 7 64 bit
    Thread Starter
       #28

    Neighbor! It sure is cold out there today...wishing I had heat in my truck this morning and waiting for a warmer weekend.

    I attach the latest TDSSKiller log and the MBAM report is cut & pasted below:

    Malwarebytes Anti-Malware 1.75.0.1300
    Malwarebytes : Free Anti-Malware

    Database version: v2014.01.23.05

    Windows 7 Service Pack 1 x64 NTFS
    Internet Explorer 11.0.9600.16476
    POSTAL :: POSTAL-PC [administrator]

    1/23/2014 10:56:44 AM
    mbam-log-2014-01-23 (10-56-44).txt

    Scan type: Quick scan
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 221653
    Time elapsed: 7 minute(s), 27 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 0
    (No malicious items detected)

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 1
    C:\WINDOWS\System32\config\systemprofile\0.3407809187208656.exe (Exploit.Drop.UR.2) -> Quarantined and deleted successfully.

    (end)
    Ran Windows Defender Offline, can't boot up computer.  Help please! Attached Files
      My Computer


  9. Posts : 17
    Windows 7 64 bit
    Thread Starter
       #29

    Also, MBAM popped up an urgent message to restart the computer to finish cleaning and so I did. Just FYI in case it's relevant.
      My Computer


  10. Posts : 6,458
    x64 (6.3.9600) Win8.1 Pro & soon dual boot x64 (6.1.7601) Win7_SP1 HomePrem
       #30

    Relevant!

    CB's last sentence in post# 24 reads:
    Note: If MBAM encounters a file that is difficult to remove, you are asked to reboot the computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) prevents MBAM from removing all the malware.

    You took the correct action.
      My Computer


 
Page 3 of 5 FirstFirst 12345 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 16:54.
Find Us