Search the Community
Showing results for tags 'boot virus?'.
I have a Lenovo Ideapad 3 with AMD Ryzen 5, it's only one year and 3 weeks old. In April, Lenovo released a security advisory stating that their devices had 3 bios/UEFI related vulnerabilities which allowed a virus to rewrite the SPI and deactivate the UEFI (among other things.) I assume that's what caused the issue but I don't know for certain. Lenovo claimed a bios update would fix the vulnerability but did nothing about those of us already infected. I have done everything imaginable to fix this but nothing works.It has survived every reset, every restore, every clean OS install. Each time I reinstall Windows, I completely format and delete every partition, I tried putting Windows 10 Home, 10 N, 10 Pro, 10 Pro N, something called Windows 10 Single Language, Windows 11 Home, Linux, Debian, Ubuntu, and multiple live Linux versions via Yumi. I also tried the Lenovo Recovery Media, nothing works! I have tried MANY different antivirus programs including Sophos, Malwarebytes, ADWcleaner, Microsoft Malicious Software Removal Tool, Windows Defender, Microsoft Security Essentials, Restoro, McAfee, etc. They all claim there's no virus. They do their scan with no problems found! They're wrong. After resetting the PC (done this about 60 times) I go straight to the Event Viewer, it's the only obvious sign of the infection. The very moment the OS starts up, the virus has already made MULTIPLE privileged users with a long list of "special privileges" added to those users. I removed the wifi card in case that might help, it made no difference. I have run the SFC scannow command dozens of times, sometimes it says it fixed corrupt files, sometimes it says it found nothing, sometimes it says "access denied." I have also tried Dism and bootrec commands they all say successful, except /fixboot which says "access is denied." I'm out of ideas! The 4 other laptops in my house and 2 desktops all have the same symptoms now. It must have gotten into the router. I know I probably gave the virus to one of the desktops via a USB that was used to get the OS downloads from a clean computer (the desktop) to my laptop but I never used that USB on any of the other machines. I am open to any possible help... other than replacing the motherboard... but I think that's the only way to fix this Thanks!!
Unfortunately, I tried several fixes before finding this site. Now, my computer still doesn't perform and I have gone through some of steps recommended. I can't recall exactly what I did, but I believe the sequence was something like: ran Housecall (microtrend online and required several tries to run) No threats found and still only partially operating computer. Then I attempted to restore to a date that was what believed prior to anything occurring. Somehow, I found eset and ran their online program which found some threats and I removed them. The computer was still not responding (when I would open programs, the computer wouldn't open anything) even selecting through the start menu, the programs would not run. At first, the file explorer program only worked and then none at all. Only way to shut down the computer was through holding the computer power button for several moments. Still searching, then, found bits and pieces of recommendations and tried the OTL log attached. Finally, I found this forum and started going through the steps. Attached are the logs from Malwarebytes (last time run) mbam-log-2013-03-17 (21-13-48).txt; Defogger didn't seem to perform exactly as identified and stalled several times before it actually ran through but never got the message to reboot. I had to anyway since the machine froze at that time. Then ran the DDS and that too required several attempts until it run dds.txt attach.txt; And then GMER opened then didn't run, then finally was able to complete its run ark.txt. Those were the last several steps... P What should I try next? defogger_disable.log eset log.txt OTL.Txt