Jump to content

Recommended Posts

About a month ago I got hit with the win7 AV malware that was going around. I did everything I needed to do to clean it up and everything has been running smooth since.

Last night I went to install daemon tools for an ISO file I had that needed mounting. I had it before but because I did a system restore after the win7 fiasco, I had to reinstall it. Everything was working fine and I double clicked the file downloaded from cnet and got up to get a drink. After about 10 seconds I heard my hard drive spooling up and the computer rebooting. I thought it was a bit odd for the computer to be doing this so I obviously sat back down. Windows appeared to load fine as if nothing was the matter.

I couldn't have been more wrong.

Ad-aware, Avast and a few other programs didn't load at launch. I thought it was just a fluke and tried loading them manually, nothing happens when you click the exe. I tried going through services in the task manager to manually start them, and after about 15 seconds I get an error that reads:

"The operation could not be completed. The service did not respond to the start or control request in a timely fashion."

So I tried running Malware bytes, TDSS killer, Procexp, OTH, OTL, Rogue killer, Hijack this and even combo fix, all to no avail.

I tried downloading other clean up software but no program will install. I also found out, that no programs will uninstall.

I tried running firefox and chrome, but neither work. I couldn't even run traditional IE, I had to use the 64 bit compatable version.

I tried running online scanners, but I cannot install the activex controls to allow them to run.

I tried running MBAM in chameleon, I tried running it in command prompt, I tried pretty much everything I can think of to figure out what it is thats going on. At this point, I'm not even sure that its malware related.

So basically, I have use of basic windows functions. I can open file folders and move documents here and there.

I really need your help here as I'm starting to think my only option is to reformat and this computer has all the pictures of my daughters first year of life on it.

As stated, I cannot post any type of log because I can't load anything to allow me to do so.

Link to post
Share on other sites

You did a System Restore after the Win7 AV infection? Hopefully not after you got the system cleaned?

How does the system act in Safe Mode?

Do you have an Ubuntu disk you can boot off of? You can use the disk utility in Ubuntu to take a look at the health of the hard drive. It doesn't change anything about your drive, it just looks at the SMART values and intreprets them. Don't use it to repair your drive, just use it to look. If your drive is failing, bit and pieces of Windows can disappear, which will raise all kinds of Hell.

Link to post
Share on other sites

You did a System Restore after the Win7 AV infection? Hopefully not after you got the system cleaned?

How does the system act in Safe Mode?

Do you have an Ubuntu disk you can boot off of? You can use the disk utility in Ubuntu to take a look at the health of the hard drive. It doesn't change anything about your drive, it just looks at the SMART values and intreprets them. Don't use it to repair your drive, just use it to look. If your drive is failing, bit and pieces of Windows can disappear, which will raise all kinds of Hell.

What I did was, I did a system restore, then cleaned up any possible infections.

The system acts the same in safe mode but I ran a check disk and came back with no errors. It is quite possible the drive is failing despite being brand new because this computer moves quite a bit.

Link to post
Share on other sites

Can you get in to Event Viewer to see if there are any Critical or Warning events (Start, right click Computer, select "Manage")?

In the event viewer now. I have , 20 under error and 3 under warning. 1 is under critical but thats from improper shutdown, which I know isn't great but I was getting frustrated and needed to walk away.

Link to post
Share on other sites

You might want to peruse those to see if you can get a lead. I know the interface is kind of clunky, but you might be able to glean some info that would point to a certain file or service.

BTW- I'm just here for moral support. I can't tell you to do anything that will change your system; I have to leave that up to the mods here.

So, we still don't know about the SMART status of your hard drive. Do you have another system you can plug the drive in to (I'm not saying to do it, just asking)?

Here's how to find chkdsk reports in Win7

http://www.sevenforums.com/tutorials/96938-check-disk-chkdsk-read-event-viewer-log.html

You might want to review this, should it come to a Repair Install:

http://www.sevenforums.com/tutorials/3413-repair-install.html

Link to post
Share on other sites

  • 2 months later...
  • Staff

Hi and welcome to Malwarebytes.

It looks like there has been a lot of corruption as a result of the infection plus whatever removal process was attempted.

If you have the means, I highly recommend backing up any important data, formatting your hard drive, and reinstalling Windows. If the hard drive is indeed failing, it will continue to show signs of failure following the format.

Link to post
Share on other sites

  • 1 month later...

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.