Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

need help removing win32/olmarik.axs [Closed]


  • This topic is locked This topic is locked

#61
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
No reason why not
  • 0

Advertisements


#62
MrJc

MrJc

    Member

  • Topic Starter
  • Member
  • PipPip
  • 37 posts
sorry its taking me sdo long I suddenly got very busy i will have the infor for your tomorrow i hope it works tho also ill have a flash drive by than to so i could make a usb bootable windows 7
  • 0

#63
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
No problem
  • 0

#64
MrJc

MrJc

    Member

  • Topic Starter
  • Member
  • PipPip
  • 37 posts
I was finaly able to try it with my cf card and it keeps going error unable to format so i guess ill need to run out and actualy buy a small usb ill try to do that tommorrow
  • 0

#65
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK
  • 0

#66
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
aswMBR has just been updated to search for the element I am after

Download aswMBR.exe ( 1.8mb ) to your desktop.
Double click the aswMBR.exe to run it Click the "Scan" button to start scan

Posted Image

On completion of the scan click save log, save it to your desktop and post in your next reply

Posted Image
  • 0

#67
MrJc

MrJc

    Member

  • Topic Starter
  • Member
  • PipPip
  • 37 posts
here you go

aswMBR version 0.9.9.1116 Copyright© 2011 AVAST Software
Run date: 2011-12-21 17:50:25
-----------------------------
17:50:25.858 OS Version: Windows x64 6.1.7601 Service Pack 1
17:50:25.858 Number of processors: 3 586 0x402
17:50:25.858 ComputerName: JC-PC UserName: jc
17:50:29.049 Initialize success
17:50:34.547 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
17:50:34.548 Disk 0 Vendor: ST31500341AS CC1H Size: 1430799MB BusType: 3
17:50:34.549 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T1L0-4
17:50:34.551 Disk 1 Vendor: ST3500630AS 3.AAK Size: 476940MB BusType: 3
17:50:34.553 Disk 2 (boot) \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP3T0L0-3
17:50:34.554 Disk 2 Vendor: ST3200822AS 3.02 Size: 190782MB BusType: 3
17:50:34.569 Disk 2 MBR read successfully
17:50:34.572 Disk 2 MBR scan
17:50:34.574 Disk 2 [email protected] code has been found
17:50:34.576 Disk 0 Partition 1 80 (A) 83 Linux 17265 MB offset 63
17:50:34.592 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 170776 MB offset 40965750
17:50:34.595 Disk 0 Partition - 00 05 Extended 2737 MB offset 35359065
17:50:34.616 Disk 0 Partition 3 00 83 Linux 2557 MB offset 35359128
17:50:34.620 Disk 0 Partition - 00 05 Extended 180 MB offset 40596255
17:50:34.635 Disk 2 MBR [TDL4] **ROOTKIT**
17:50:34.639 Service scanning
17:50:39.543 Service sptd C:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
17:50:40.413 Service Vsdatant C:\Windows\system32\DRIVERS\vsdatant.sys **LOCKED** 32
17:50:41.251 Modules scanning
17:50:41.255 Disk 2 trace - called modules:
17:50:41.271 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa8009ae92c0]<<
17:50:41.276 1 nt!IofCallDriver -> \Device\Harddisk2\DR2[0xfffffa800ab11060]
17:50:41.280 3 CLASSPNP.SYS[fffff8800180143f] -> nt!IofCallDriver -> [0xfffffa800a90b520]
17:50:41.284 5 ACPI.sys[fffff88000e0b7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-3[0xfffffa800a90d060]
17:50:41.288 \Driver\atapi[0xfffffa8009b68460] -> IRP_MJ_CREATE -> 0xfffffa8009ae92c0
17:50:41.292 Scan finished successfully
17:51:00.360 Disk 2 MBR has been saved successfully to "C:\Users\jc\Desktop\ant\MBR.dat"
17:51:00.364 The log file has been saved successfully to "C:\Users\jc\Desktop\ant\aswMBR.txt"


Thanks for still helping me I've been waiting on the flash drive since my money when to christmas gifts. But im hoping to get a flashdrive soon
  • 0

#68
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK two options ...
First run aswMBR and press either fix or Fixmbr dependant upon whic button is available..

Then if that fails then re-run TDSSKiller and select either delete or restore dependant on the options available
  • 0

#69
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP