pc wont boot up - possible virus

aliEnRIK

Nibs ~ open hijack in NORMAL mode
Click top option (system scan and SAVE LOG FILE)

Once its saved the log file make sure you know its on your desktop

Reboot and go into SAFE MODE WITH NETWORKING

POST THE LOG TO US (Looks similar to the one I posted)

Await our instructions (Which you will need to print off)

nibs

loaner wrote: »

shutdown -a

aborts the 60 second shutdown timer, (which is commonly started by infections trying to stop you clearing them up, or problems with lsass process).

You'll have to uninstall AVG btw, before you attempt the kav install (when you have resolved the other issues)

when i get the timer up what do you mean shutdown - a
its rebooting that quick and every minute so i havent got that much time in between.

have managed to print off a report of hijack scan but it hasn't saved anywhere so i cant show you whats on it. its driving me mad:mad:

aliEnRIK

Nibs ~ im 99% sure its saved to your desktop (or wherever your running HIJACK from, but ive never know it save anywhere else). If not run it again and when the log pops up right click and SELECT ALL then COPY then open notepad yourself and PASTE (Make sure you know where its saved to)

If you genuinely cant find it then scan with SUPERANTISPYWARE (So long as you did update it in safe mode)

thomas01155

Soon as you get the timer go to start>run>type shutdown -a and press ok.

aliEnRIK

FIX these with hijack (TICK them and click to FIX them)
You can do them one at a time or alltogether ~
O2 - BHO: ALOT Toolbar - !!5AA2BA46-9913-4dc7-9620-69AB0FA17AE7} - C:\Program Files\alot\bin\alot.dll
O2 - BHO: (no name) - !!7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: ALOT Toolbar - !!5AA2BA46-9913-4dc7-9620-69AB0FA17AE7} - C:\Program Files\alot\bin\alot.dll
O4 - HKLM\..\Run: [System Restore] IEXPOLES.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - Global Startup: MediaChecker.lnk = C:\Program Files\HOTALBUMMyBOX\MediaChecker.exe
O4 - Global Startup: VTAgentReboot.exe

aliEnRIK

Run SUPERANTISPYWARE (If you havnt already)

Go back into SAFE MODE WITH NETWORKING

Then remove NORTON using the removal tool
Norton removal tool
http://service1.symantec.com/Support/tsgeninfo.nsf/docid/2005033108162039

reboot and install Kaspersky. Update it (In safe mode if you have to) then run a complete scan

nibs

aliEnRIK wrote: »

FIX these with hijack (TICK them and click to FIX them)
You can do them one at a time or alltogether ~
O2 - BHO: ALOT Toolbar - !!5AA2BA46-9913-4dc7-9620-69AB0FA17AE7} - C:\Program Files\alot\bin\alot.dll
O2 - BHO: (no name) - !!7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: ALOT Toolbar - !!5AA2BA46-9913-4dc7-9620-69AB0FA17AE7} - C:\Program Files\alot\bin\alot.dll
O4 - HKLM\..\Run: [System Restore] IEXPOLES.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - Global Startup: MediaChecker.lnk = C:\Program Files\HOTALBUMMyBOX\MediaChecker.exe
O4 - Global Startup: VTAgentReboot.exe

can i do this in safe mode or normal

Browntoa

normal mode

thomas01155

Did you by any chance get a message on MSN with a link saying something about a photo?

nibs

thomas01155 wrote: »

Did you by any chance get a message on MSN with a link saying something about a photo?

yes my ds did but he didnt click on it just clicked the x on the pop up.
What was that then?