[azarl]

We need to reboot from the xPud USB disk you created in post #16, if you still have it. If you haven't, then follow the steps in post #16 up to and including step 10

»Next..«

• Insert the bootable USB stick in the sick computer
• Boot the Sick computer
• Press F12 and choose to boot from the USB
• Follow the prompts
• A Welcome to xPUD screen will appear
• Press File
• Expand mnt
• sda1,2...usually corresponds to your HDD
• Click on the folder that represents your HDD drive (sda1 ?), you may need to do a bit of searching around.
• Locate the folder called boot (be careful, there's a folder on the USB drive called boot also)
• Click on that folder to expand
• Locate the file called bcd
• Right click on it and select rename
• Rename it to bcd.old

Ensure you type it exactly as shown, in lower case. Please make a note if you get any error message

» Final Step«
Follow the procedure we did in post #39 to run Bootrec /RebuildBcd from the Recovery Environment

[Advertisements]

Hi Azarl I was able to follow the first part of that step worry free.

However, because of this new screen "Windows Boot Manager" I am unable to boot the computer in safe mode (or advanced options boot menu even) thus unable to run a command prompt. Is there a way I can run command prompt of the xPud USB or any other way around this

Edited by J_Mac, 12 February 2011 - 01:03 PM.

[J_Mac]

Hi Azarl I was able to follow the first part of that step worry free.

However, because of this new screen "Windows Boot Manager" I am unable to boot the computer in safe mode (or advanced options boot menu even) thus unable to run a command prompt. Is there a way I can run command prompt of the xPud USB or any other way around this

Edited by J_Mac, 12 February 2011 - 01:03 PM.

[azarl]

No probs, we'll just reverse that last step and do it a different way

With your xPud bootable USB

»Next..«

• Insert the bootable USB stick in the sick computer
• Boot the Sick computer
• Press F12 and choose to boot from the USB
• Follow the prompts
• A Welcome to xPUD screen will appear
• Press File
• Expand mnt
• sda1,2...usually corresponds to your HDD
• Click on the folder that represents your HDD drive (sda1 ?), you may need to do a bit of searching around.
• Locate the folder called boot (be careful, there's a folder on the USB drive called boot also)
• Click on that folder to expand
• Locate the file called bcd.old
• Right click on it and select rename
• Rename it to bcd

Ensure you type it exactly as shown, in lower case. Please make a note if you get any error message

Please confirm that you can boot to the recovery environment and we'll continue

[J_Mac]

I don't think reversing will work as I was having the same problem before the last step. My pc was unbootable after the last command prompt step

[J_Mac]

I have tried and it to no avail.

[azarl]

We'll manually rebuild the BCD file

»Step 1«

With your xPud bootable USB

• Insert the bootable USB stick in the sick computer
• Boot the Sick computer
• Press F12 and choose to boot from the USB
• Follow the prompts
• A Welcome to xPUD screen will appear
• Press File
• Expand mnt
• sda1,2...usually corresponds to your HDD
• Click on the folder that represents your HDD drive (sda1 ?), you may need to do a bit of searching around.
• Locate the folder called boot (be careful, there's a folder on the USB drive called boot also)
• Click on that folder to expand
• Locate the file called bcd
• Right click on it and select Copy
• Browse back to your USB device, it may be called sdd0, right click on it and select Paste

» Step 2 «

• Remove the USB drive and insert in a clean machine with Internet access
• Zip the bcd file to BCD.zip
• In a browser navigate to http://noahdfear.net/max/upload.php
• Click on the browse button and browse to the BCD.zip file
• Copy the url in the code box below
  
  

  http://www.geekstogo.com/forum/topic/289258-trojan-windows-7/page__pid__1968452__st__45#entry1968452

• Paste in the "link to the topic where you're being helped" box and press submit

I'll get back to you shortly

[J_Mac]

All steps followed successfully

[noahdfear]

Hi J_Mac,

I've done some work on the BCD store and would like for you to try it out. Save this newbcd file to your usb then boot xPUD.
Rename the mnt>sda1>Boot>bcd file to origbcd then copy newbcd to the mnt>sda1>boot folder.
Now rename mnt>sda1>Boot>newbcd to BCD
Restart normally and let us know the result.

[J_Mac]

Followed all steps and still ended up at the "Windows Boot Manager" screen.

[noahdfear]

Would you describe for me in detail what you see/what happens when you boot normally please? Meanwhile, I'll have another look at the bcd file.

[J_Mac]

I get a black hardware screen titled 'WINDOWS BOOT MANAGER' (WBM) when I boot normally and the only option I can use from here is running a Windows Memory Diagnostic test which comes up with nothing. I will type the WBM screen of a normal reboot.

"Windows failed to start. A recent hardware or software change might be the cause. To fix the problem:

1. Insert your Windows installation disc and restart your computer.
2. Choose your language settings, and then click "Next."
3. Click "Repair your computer."

If you do not have this disc, contact your system administrator or computer manufacturer for assistance.

Status: 0xc000007b

Info: An unexpected error has occured."

This screen came up after performing the steps in post #46.

[noahdfear]

In xPUD, please check the sda1\boot folder for the file named BCD.LOG then collect the one that is not zero bytes in size (should be approx 25kb). Please zip it up and upload the zip to my submissions site.

Please try the F10 startup again to see what the boot options screen displays.

[J_Mac]

Successfully uploaded the zip file, it is titled "BCDLOG". I'm not sure if it is the correct one however, as it was only 9kb, but it was the only one in the folder?

Anyways, let me know if its not!

Also, the F10 boot menu brings me another Windows Boot Manager screen which reads:

"Choose an operating system to start, or press TAB to select a tool:

(There is only one option):

Tools:

Windows Memory Diagnostic"

As I posted before, running the Windows Memory Diagnostic comes up with no errors and does not rectify the problem.

Edited by J_Mac, 25 February 2011 - 10:21 AM.

[noahdfear]

Hi J_Mac,

I got the BCD log and have examined it. Unfortunately, it does not contain the information needed to properly repair the BCD. The only option I can see at this point is to get a bootable recovery environment where the BCD can be rebuilt, since the required identifiers can only be generated on that particular installation. I have previously gathered up the information and steps required to accomplish this, with the exception of making it USB bootable, which I am working on testing now. What I need to know to proceed is: what operating system is on your working computer?

[J_Mac]

As in my secondary computer I am using as part of this process?

It would be:

Microsoft Windows XP
Home Edition
Version 2002
Service Pack 3

PS. this computer is exactly the same as my damaged computer (Acer eee laptop) so it has no CD drive as well. Thanks