Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Window 7 - Unable to Boot - Malware Suspected


  • This topic is locked This topic is locked

#16
TangentMedia

TangentMedia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts

It should be a quick process, in fact, seconds.


Ah. Okay. I will reboot in preparation for the next instructions.
  • 0

Advertisements


#17
TangentMedia

TangentMedia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
Even though it never finished and i rebooted, here is the Fixlog.txt that was generated (below) and the NewMBR.txt file (attached) that was on the usb drive, though this may be the same one that i last downloaded.

Fix result of Farbars's Recovery Tool (FRST written by farbar Version 2.3.0)
Ran by SYSTEM at 2011-12-29 11:08:07 R:5
Running from H:\

==============================================


========= H:\MbrFix64 /drive 0 restorembr H:\NewMBR.txt =========
  • 0

#18
TangentMedia

TangentMedia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
Even though it never finished and i rebooted, here is the Fixlog.txt that was generated (below) and the NewMBR.txt file (attached) that was on the usb drive, though this may be the same one that i last downloaded.

Fix result of Farbars's Recovery Tool (FRST written by farbar Version 2.3.0)
Ran by SYSTEM at 2011-12-29 11:08:07 R:5
Running from H:\

==============================================


========= H:\MbrFix64 /drive 0 restorembr H:\NewMBR.txt =========

Attached Files


  • 0

#19
TangentMedia

TangentMedia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
And in case it is helpful, attached is a screenshot of what is on my usb drive. Not sure if it matters having other stuff on the drive or not.

Attached Thumbnails

  • usb-contents.jpg

  • 0

#20
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts
No. It should take seconds. You can stop the process

I will be right back.
  • 0

#21
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts
When you run Notepad in the Repair Console, which drive letter is assigned to the USB drive?
  • 0

#22
TangentMedia

TangentMedia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
h: That screenshot was from a working computer (the one which i am using to communicate with you)
  • 0

#23
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts
Lets see if this file gives me a better look of the drives' contents.

Download the enclosed file.

Save and extract its contents to the desktop of your working computer. Once extracted, open the folder and copy the DriveExists.bat to the root folder in the USB drive. Insert the USN drive in the ailing computer. At the command prompt type the following and press Enter:

H:\DriveExists.bat

If successful, a Log.txt should be produced in the USB drive. If available, please post its contents.
  • 0

#24
TangentMedia

TangentMedia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
Drives recognized

D:\, E:\, F:\, G:\, H:\, X:\,

Volume in drive D is Video Project Data
Volume Serial Number is 7CB3-4F1A

Directory of D:\

05/21/2011 11:57 PM <DIR> $RECYCLE.BIN
07/27/2011 02:34 PM <DIR> 9401dbf1b980f26dc265ac7f6a
09/25/2011 02:27 PM <DIR> ACE
10/19/2011 08:25 AM <DIR> Amberwoods Presentation
08/14/2011 07:43 AM <DIR> blue-magazine-cover-photoshop-template
07/25/2011 12:59 PM <DIR> bmv
07/25/2011 12:59 PM <DIR> bomar
09/12/2011 08:13 PM <DIR> CampusGraphics.com
07/25/2011 12:59 PM <DIR> Centennial
05/31/2011 04:13 PM <DIR> debates
08/25/2011 07:38 PM <DIR> Desktop Wallpaper Calendar September, Hay_Bales
07/25/2011 12:59 PM <DIR> Egenolf DVD Packaging
08/15/2011 07:32 PM <DIR> Egenolf Timelapse
08/30/2011 12:01 PM <DIR> EncoreContents
05/29/2011 08:32 PM <DIR> envato freebies
10/09/2011 05:24 PM <DIR> experiments
09/07/2011 06:42 PM <DIR> Grand Canyon Stuff
07/26/2011 01:16 PM <DIR> hd2sd
07/25/2011 12:59 PM <DIR> hillsborough
06/07/2011 10:46 AM <DIR> invoices
07/04/2011 03:32 PM <DIR> iThemes Builder
10/22/2011 10:56 AM <DIR> JobsiteVideos
08/17/2011 01:41 PM <DIR> JobsiteVideos.com
06/07/2011 06:01 PM <DIR> NeoSounds
12/10/2011 12:11 PM <DIR> NEW HOA Website Template Stuff
07/03/2011 08:28 PM <DIR> Nikon
12/18/2011 04:37 PM <DIR> omni video
08/04/2011 01:38 PM <DIR> OMNI Website Project 110608
08/25/2011 06:54 PM <DIR> park
10/05/2011 11:38 AM <DIR> Picaboo
09/24/2011 11:29 AM <DIR> Planning Guides
10/09/2011 06:28 PM <DIR> Pool fun
11/15/2011 10:14 PM <DIR> Rileys Forum Video
06/23/2011 09:14 PM <DIR> Sandpiper
10/01/2011 01:56 PM <DIR> Serigraphics
07/17/2011 08:08 AM <DIR> sharpness tests
07/10/2011 06:38 PM <DIR> System Volume Information
10/16/2011 12:34 PM <DIR> Video
07/21/2011 09:15 PM <DIR> Villages
10/24/2011 06:24 AM <DIR> ___AfterEffects
09/26/2011 09:54 AM <DIR> ____bryant
10/24/2011 10:24 PM <DIR> ____Underwater project
0 File(s) 0 bytes
42 Dir(s) 103,768,489,984 bytes free

Volume in drive E is WIN7
Volume Serial Number is AA9C-C8AF

Directory of E:\

11/25/2010 08:37 AM <DIR> $Recycle.Bin
08/15/2011 01:29 PM <DIR> 32788R22FWJFW
06/01/2011 02:38 PM <DIR> Autodesk
01/23/2010 09:32 PM <DIR> BigFishGamesCache
04/27/2011 11:14 AM <DIR> Boot
04/10/2010 08:07 PM <DIR> chop
12/20/2011 09:14 AM <DIR> Config.Msi
04/22/2011 09:30 PM <DIR> divx
07/13/2009 09:08 PM <JUNCTION> Documents and Settings [C:\Users]
12/27/2011 02:32 PM <DIR> FRST
02/09/2011 01:59 PM <DIR> grt-psds
10/18/2011 06:30 PM <DIR> IExp0.tmp
10/18/2011 06:30 PM <DIR> IExp1.tmp
10/20/2011 01:45 AM <DIR> IExp2.tmp
10/20/2011 01:45 AM <DIR> IExp3.tmp
10/09/2009 08:58 PM <DIR> Intel
04/03/2011 02:35 PM <DIR> iPod Stuff
05/08/2011 10:59 AM <DIR> MoTemp
10/09/2009 09:13 PM <DIR> MSOCache
05/28/2010 08:28 AM <DIR> Multimedia Files
03/28/2011 09:47 AM <DIR> NVIDIA
07/13/2009 07:20 PM <DIR> PerfLogs
12/17/2011 01:33 PM <DIR> Program Files
12/22/2011 08:18 PM <DIR> Program Files (x86)
12/26/2011 08:28 PM <DIR> ProgramData
10/09/2009 09:05 PM <DIR> RaidTool
01/16/2010 11:01 AM <DIR> Recovery
06/26/2010 02:54 PM <DIR> SmartSound Software
12/26/2011 08:21 PM <DIR> System Volume Information
08/13/2011 10:13 AM <DIR> temp
10/19/2011 11:07 AM <DIR> Users
12/10/2011 09:01 PM <DIR> Windows
0 File(s) 0 bytes
32 Dir(s) 119,943,344,128 bytes free

Volume in drive F is DATA
Volume Serial Number is 0C9E-3006

Directory of F:\

10/12/2011 10:34 AM <DIR> $RECYCLE.BIN
05/21/2011 06:20 PM <DIR> 3d experiments
08/14/2011 02:58 PM <DIR> Adobe CS5 Production Premium
05/01/2011 08:22 AM <DIR> art park
04/25/2011 05:48 PM <DIR> audio
10/14/2011 09:59 AM <DIR> backgrounds
08/13/2011 07:35 PM <DIR> bible
05/08/2011 04:48 PM <DIR> bryant
05/10/2011 12:14 PM <DIR> Captured By Indians
04/24/2011 07:11 PM <DIR> car
03/28/2011 12:18 PM <DIR> chisel
03/04/2011 03:13 PM <DIR> Cineform Content
11/30/2011 10:23 AM <DIR> Clients
08/13/2011 07:20 PM <DIR> coorporate video examples
04/06/2011 12:29 PM <DIR> Copy of Orb Project.aep Logs
05/04/2011 08:53 PM <DIR> Crider Job
03/05/2011 04:53 PM <DIR> download
05/17/2011 03:22 PM <DIR> eagle creek
01/18/2011 12:25 AM <DIR> edius
04/12/2011 08:04 AM <DIR> gopro
05/17/2011 03:47 PM <DIR> grt
08/13/2011 07:26 PM <DIR> grt bomar
05/29/2011 08:08 AM <DIR> guys-landscaping
08/14/2011 07:58 AM <DIR> HMC 150 Tests
06/14/2011 02:10 PM <DIR> HOA Website Backups
12/11/2011 09:19 AM <DIR> Jobsite Videos
03/06/2011 10:31 AM <DIR> Lynda.com
11/19/2011 12:57 PM <DIR> National Geographic Photo Contest
08/13/2011 07:32 PM <DIR> NH FlipVIDEO
04/10/2011 10:29 AM <DIR> omni lions head
12/18/2011 03:51 PM <DIR> omni stuff
10/12/2011 11:54 AM <DIR> PDFs
10/12/2011 11:51 AM <DIR> Photography
06/20/2011 08:26 PM <DIR> picasa files
03/24/2011 02:11 PM <DIR> PP
10/12/2011 11:56 AM <DIR> reg backups
05/12/2011 12:45 PM <DIR> Ryan-vs-Dorkman
10/12/2011 10:35 AM <DIR> Software Stuff
05/21/2011 04:56 PM <DIR> sounds
08/13/2011 07:23 PM <DIR> strength training
08/18/2011 08:29 AM <DIR> System Volume Information
06/17/2010 12:41 AM <DIR> test
05/17/2011 04:07 PM <DIR> Tim Whitfield
08/05/2011 10:23 PM <DIR> Time Lapse
10/12/2011 11:56 AM <DIR> Video
09/18/2011 07:25 AM <DIR> VideoBlocks
11/24/2011 01:28 PM <DIR> VideoCoPilot
12/14/2011 01:37 PM <DIR> VideoHive
12/10/2011 09:10 AM <DIR> _craigslist
11/05/2011 07:37 PM <DIR> __audio
12/23/2011 12:31 AM <DIR> __Beaver
12/26/2011 09:21 AM <DIR> __new hoa template stuff
12/22/2011 08:13 PM <DIR> __Scorched 3D
12/10/2011 12:11 PM <DIR> ___Forms
12/05/2011 02:28 PM <DIR> _____index
0 File(s) 0 bytes
55 Dir(s) 682,158,026,752 bytes free

Volume in drive G is Repair disc Windows 7 64-bit
Volume Serial Number is AB24-7B40

Directory of G:\

08/16/2011 07:04 AM <DIR> boot
08/16/2011 07:04 AM <DIR> sources
0 File(s) 304 bytes
2 Dir(s) 0 bytes free

Volume in drive H is KINGSTON
Volume Serial Number is E0FD-1813

Directory of H:\

12/29/2011 12:23 AM <DIR> other stuff
0 File(s) 0 bytes
1 Dir(s) 519,241,728 bytes free

Volume in drive X is Boot
Volume Serial Number is D60A-0DC2

Directory of X:\

07/13/2009 06:33 PM <DIR> Program Files
07/13/2009 06:33 PM <DIR> ProgramData
07/13/2009 07:42 PM <DIR> sources
07/13/2009 06:33 PM <DIR> Users
07/13/2009 07:14 PM <DIR> Windows
0 File(s) 0 bytes
5 Dir(s) 32,759,808 bytes free
  • 0

#25
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts
I am consulting with the experts. Will post back soon.
  • 0

Advertisements


#26
TangentMedia

TangentMedia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
Cool. Thank you!
  • 0

#27
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts
Lets try to load another tool:

Download GETxPUD.exe to the desktop of your working computer
  • Run GETxPUD.exe
  • A new folder will appear on the desktop.
  • Open the GETxPUD folder and click on the get&burn.bat
  • The program will download xpud_0.9.2.iso, and when complete will open BurnCDCC ready to burn the image.
  • Click on Start and the cd tray will eject.
  • Insert a blank cd and click OK - the drive will close, burn the cd and eject when complete.
Now
  • Download xPUDtestdisk.exe and save it to the USB device
  • Double click xPUDtestdisk.exe within the USB drive to extract its contents.
  • Remove the USB & CD and insert it in the ailing computer
  • Boot the ailing computer with the CD you just burned
  • A Welcome to xPUD screen will appear
  • Click the File
  • Expand mnt icon on the left
  • sda1,2...usually corresponds to your HDD
  • sdb1 is likely your USB
  • Click on the folder that represents your USB drive (sdb1 ?)
  • Press Tool at the top
  • Choose Open Terminal
  • Type testdisk/testdisk_static
  • Press Enter
  • The TestDisk command window will open
  • Choose Create and press Enter
  • TestDisk will now detect all local hard drives
  • Use the arrow (up and down) keys to highlight the disk called /dev/sda if it represents your primary hard drive and press Enter
  • If your not sure then note everything you see and post it for my review
  • Select [Intel] and press Enter
  • Select [Analyse] and press Enter, then press Enter again to run a [Quick Search]
  • When complete, press Enter to continue, then select [Deeper Scan] and press Enter.
  • When the deeper search completes, press Q repeatedly until TestDisk closes.
  • Close the Terminal Window
  • Remove the flash drive and put it back in the working computer, then post the contents of (or attach) the testdisk.log file on the flash drive.

  • 0

#28
TangentMedia

TangentMedia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
Okay. I have done everything up to the point where you say Expand mnt icon on the left. I expand it, but then everything under File becomes unresponsive. I can click on the Home tab the Menu tab, Settings tab, but when i return to the File tab it is blank. So i rebooted and tried again. Same result. :(
  • 0

#29
TangentMedia

TangentMedia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
Actually it was when i clicked on sda1 or sdb1 that it locked up the File tab. There are 5 sd icons listed:
sda1
sdb1
sdb2
sdb3
sdc1

I am rebooting and trying each to see if they ALL lock up the File tab until i receive further direction from you.
  • 0

#30
TangentMedia

TangentMedia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
Interesting. This time i rebooted, expanded the mnt icon and the list was different. It was:

sda1
sda2
sda3
sdb1

I worked my way up and they all expanded until i reached the first one, sda1. Then if froze again. but the other 3, working up from the bottom, were my F: drive (a seagate 1tb data drive), my D: drive (a data partition off of my system drive), and the C: drive (the system drive that is ailing). Not sure what sda1 is but when i clicked it, everything under the File tab became unresponsive.

Also, before that happened, I removed and replaced my USB drive trying to see if it would disappear and reappear in the tree. But there was no change in the tree.

Trying more experiments now.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP