Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Unsure of name of virus [Closed]


  • This topic is locked This topic is locked

#31
nicole24

nicole24

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
http://www.mediafire.com/?ed3myunanyu


above is a link to a cbs log i ran a system file checker. i looked on microsoft.com and similiar forums to mine were posted however none of the fixes worked bc i have no admins rights and couldnt do some things. i tried multipled times to install sp1 but wouldnt allow.
  • 0

Advertisements


#32
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
The service pack could not determine your variables

SPI: Failed to get windir environment variable
00000178 [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:20{10}]"secdrv.sys"; source file in store is also corrupted


What I am going to try next could break the operating system, so before I even think of starting I would like to know the following

1. Can you back up all the data that you need ?
2. Do you have a Vista CD?
3. If no CD what is the make and model of your computer ?
4. Do you want to proceed ?
  • 0

#33
nicole24

nicole24

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
yes i think i am able to back up all my data. no i do not have th cd the make is an acer model aspire 5610-2328...Althoguh i should tell you i spent hours reading forums on microsoft again and found a link to enable the hidden administrator on windows vista? i did it and just a few minutes logged on and it was successful currently i am in normal mode as the administrator. it is running find but im still noticng some of the same things. the above information in the gray box is still appearing when trying to do anything in control panel. basically everything is the same except im not being told im not the administrator however i can still not change settings since it cannot seem to find certain environments which means i will most likely get another virus if i have no protection.
  • 0

#34
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
That sounds like the hidden administrator account which is very powerfull, but if that cannot find the variables then it is a badly corrupted system

OK that model has a built in recovery partition, which I feel would be the best option for you.

Ensure that everything you want is backed up as the options you will be presented with will include a factory restore i.e. in the same state as the day you unpacked it

To see what to back up visit our tutorial on this page although it relates to XP the information to back up will be the same

Once you are ready and totally happy that you have everything backed up

Reboot your computer and when you see the Acer startup screen press Alt+F10
This will bring up the restore and recovery menu
I am not sure of the wording but it will be something along the lines of Destructive recovery or Reset Factory image

I will remain to assist at any stage
  • 0

#35
nicole24

nicole24

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
sorry for the delay in response. i am willing to go forth i wont need my vista cd or anything? before i choose this route though now that i am in this account is there anything else we can try first?
  • 0

#36
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK lets try this first before I remove the hard links

To change your path settings back to the default settings, do the following:
  • Press the Windows Key + R at the same time.
  • In the runbox that opens, write the following and hit enter: sysdm.cpl @0,3
  • Click on the Environmental Variables button.
  • In the new window that appears, you will notice two white list boxes. Above the second one you will see the heading System Variables. Look through that list and find the one with the Variable Name of PATH.
  • Right-click it once to highlight it and then click on the Edit button.
  • The edit system variable window will now open.
  • Verify that the variable name is PATH. If so continue on.
  • Now highlight everything in the variable value textbox and hit the DEL key.
  • Now copy and paste the next line into the textbox and press OK.
    %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
  • Click OK to close every other window as well.
  • Now go back to a command prompt and type ipconfig and see if it now works. If it doesn't, reboot your computer and try again.

  • 0

#37
nicole24

nicole24

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
no variable named path heres whats listed
variable
comspec......value...C:\Windows\system32\cmd.exe
Number_of_processors....value..2
OS..value..Windows_NT
Proessor_architecture..value..x86
processor_identifier..value..x86 famuly 6 model 14 stepping 12 genuine intel
processor_level..value..6
processor_revision..value..0e0c
  • 0

#38
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
This is what my one looks like

So select the new button
For the variable name type Path
For the variable value paste in the bolded text below

%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem


reboot and then see if you get the same problem
  • 0

#39
nicole24

nicole24

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
nothing is saying it cant find the enivronment option anymore..but some things still pop up with this....windows cannot find %windir%\\system32\\optionalfeatures.exe in control panel. obviously they dont all say optionalfeatures but whatever the program iss.
  • 0

#40
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Could you now try MBAM again pleaase
  • 0

Advertisements


#41
nicole24

nicole24

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4157

Windows 6.0.6000
Internet Explorer 7.0.6000.16916

6/5/2010 7:10:39 PM
mbam-log-2010-06-05 (19-10-39).txt

Scan type: Full scan (C:\|D:\|)
Objects scanned: 252492
Time elapsed: 2 hour(s), 37 minute(s), 22 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
  • 0

#42
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Ok two things to try for that error

FIRST

  • Press the Windows Key + R at the same time.
  • In the runbox that opens, write the following and hit enter: reg delete HKLM\COMPONENTS /v StoreDirty
  • Reboot

If the error continues

SECOND

Follow the steps as outlined on this page

As an additional thought try to install SP2
  • 0

#43
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP