Jump to content

Build Theme!
  •  
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 91681 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

Google redirects & spybot,hijack this problems


  • Please log in to reply
133 replies to this topic

#76 arfon.jones

arfon.jones

    Authentic Member

  • Authentic Member
  • PipPip
  • 71 posts

Posted 14 November 2009 - 06:02 PM

Ah ok everything back on track and runing chkdsk/rc at the moment

    Advertisements

Register to Remove


#77 arfon.jones

arfon.jones

    Authentic Member

  • Authentic Member
  • PipPip
  • 71 posts

Posted 14 November 2009 - 07:48 PM

hi Ran the chkdsk/rc then deleated regmon log and zip rebooted to hard drive then left to stand for about 10 min at grey screen . booted back to mini xp and have uploaded a second regmon log . oh and the operating system was pre installed with recovery disk arfon

#78 noahdfear

noahdfear

    Silver Member

  • Visiting Fellow
  • PipPipPip
  • 465 posts
  • MVP

Posted 14 November 2009 - 09:15 PM

Did the checkdisk appear to run properly? Surprisingly, the second log didn't go quite as far into the boot process as the first. Would you mind repeating that one more time, this time leaving it at the grey screen for a bit longer - 20 minutes or so? Is the network interface an add-on card or is it onboard (built into the motherboard)?
Dave

#79 arfon.jones

arfon.jones

    Authentic Member

  • Authentic Member
  • PipPip
  • 71 posts

Posted 15 November 2009 - 06:30 PM

hello checkdisk ran through to the end I have posted another regmon log to you everything is on board apart from the old dial up modem of which i have removed Thanks arfon

#80 noahdfear

noahdfear

    Silver Member

  • Visiting Fellow
  • PipPipPip
  • 465 posts
  • MVP

Posted 15 November 2009 - 06:43 PM

Log received. Please look in the BIOS for an option to disable the network interface. If you find one, disable it and try booting.
Dave

#81 arfon.jones

arfon.jones

    Authentic Member

  • Authentic Member
  • PipPip
  • 71 posts

Posted 15 November 2009 - 06:59 PM

I am in the bios not sure if these are the options which are under 'integrated peripherals' onboard lan -enabled onboard lan p.m.e-enabled onboard 1394-enabled if you could advise which to disable if any thanks

#82 Raktor

Raktor

    Teacher Emeritus

  • Authentic Member
  • PipPipPipPipPip
  • 3,114 posts

Posted 15 November 2009 - 07:46 PM

Set
onboard lan - disabled
onboard lan p.m.e- disabled

Leave 1394 the way it is. :)
Then make sure you save changes when exiting the BIOS.
Posted Image
Graduate from the WTT Malware Classroom
If you feel I have helped you, please consider a donation. Posted Image
Topics will be closed after three days if there is no response.
Please do not PM me for malware removal assistance.

#83 arfon.jones

arfon.jones

    Authentic Member

  • Authentic Member
  • PipPip
  • 71 posts

Posted 16 November 2009 - 02:26 PM

Hello tried setting the items in the bios as you suggested and re-boot to hard drive both normal windows and safe mode but sadly there is no change

#84 noahdfear

noahdfear

    Silver Member

  • Visiting Fellow
  • PipPipPip
  • 465 posts
  • MVP

Posted 16 November 2009 - 06:13 PM

If you haven't already done so, re-enable those devices in the BIOS.

Boot back into MiniXP, start the browser then download this file and save it to the desktop.
Right click the file and select 7-zip>Extract here.
Start Registry Editor PE, no user hive necessary, then minimize it to the taskbar.
Double click the serv.bat file you extracted to the desktop.
When it completes, please upload serv.txt from the desktop to my submission channel.
You can close Registry Editor PE for now.
Dave

#85 arfon.jones

arfon.jones

    Authentic Member

  • Authentic Member
  • PipPip
  • 71 posts

Posted 17 November 2009 - 11:35 AM

Hello I have uploaded the reqested file. many thanks arfon

    Advertisements

Register to Remove


#86 noahdfear

noahdfear

    Silver Member

  • Visiting Fellow
  • PipPipPip
  • 465 posts
  • MVP

Posted 17 November 2009 - 05:27 PM

Hi arfon, My apologies, but I failed to make a change in the tool that differentiates your system from mine, so the log you uploaded is no good. I've updated and uploaded a new copy. Would you please repeat the process.
Dave

#87 noahdfear

noahdfear

    Silver Member

  • Visiting Fellow
  • PipPipPip
  • 465 posts
  • MVP

Posted 17 November 2009 - 05:38 PM

Once you've completed uploading that log, download this file and save it to the desktop, then extract and run the boot.bat file. It should run quickly and close.
Restart and see if the computer loads normally. So you know, if it does boot normally, your graphics display will be less than satisfactory.
Dave

#88 arfon.jones

arfon.jones

    Authentic Member

  • Authentic Member
  • PipPip
  • 71 posts

Posted 17 November 2009 - 06:31 PM

hello I have uploaded the second file to you. and also downloaded and ran the boot.bat file and re booted to hard drive , but sorry its still a grey screen with mouse pointer (although the mouse pointer seems larger or my eyes are playing tricks with me :wacko: )

#89 noahdfear

noahdfear

    Silver Member

  • Visiting Fellow
  • PipPipPip
  • 465 posts
  • MVP

Posted 17 November 2009 - 09:51 PM

LOL - no tricks. It is larger. :P The boot.bat you ran changed the startup configuration to force the system into standard 640x480 16-color VGA mode by using a video driver that is compatible with any video adapter. That was to make sure your video drivers were not at fault. No worries, we'll switch it back.

Right now I need just a bit more info to complete compiling another configuration change to test. In MiniXP, open a command window and paste in the contents of the code box below, then post the results.

echo [b]------ System.ini ------[/b]>"%userprofile%\desktop\peek.txt"
echo.>>"%userprofile%\desktop\peek.txt"
type C:\WINDOWS\system.ini>>"%userprofile%\desktop\peek.txt"
echo.>>"%userprofile%\desktop\peek.txt"
echo [b]------ Win.ini ------[/b]>>"%userprofile%\desktop\peek.txt"
echo.>>"%userprofile%\desktop\peek.txt"
type C:\WINDOWS\win.ini>>"%userprofile%\desktop\peek.txt"
echo.>>"%userprofile%\desktop\peek.txt"
start notepad "%userprofile%\desktop\peek.txt"
exit
cls

Dave

#90 arfon.jones

arfon.jones

    Authentic Member

  • Authentic Member
  • PipPip
  • 71 posts

Posted 18 November 2009 - 04:47 PM

Hello
here is the peep.txt
thanks. arfon

------ System.ini ------

; for 16-bit app support
[drivers]
wave=mmdrv.dll
timer=timer.drv
[mci]
[driver32]
[386enh]
woafont=app850.FON
EGA80WOA.FON=EGA80850.FON
EGA40WOA.FON=EGA40850.FON
CGA80WOA.FON=CGA80850.FON
CGA40WOA.FON=CGA40850.FON
[ScreenTime]
Password Value=0
[TTFontDimenCacheDBCS]
0 4=2 4
0 5=3 5
0 6=4 6
0 7=4 7
0 8=5 8
0 9=5 9
0 10=6 10
0 11=7 11
0 12=7 12
0 13=8 13
0 14=8 14
0 15=9 15
0 16=10 16
0 18=11 18
0 20=12 20
0 22=13 22

------ Win.ini ------

; for 16-bit app support
[fonts]
[extensions]
[mci extensions]
[files]
[Mail]
MAPI=1
CMC=1
CMCDLLNAME=mapi.dll
CMCDLLNAME32=mapi32.dll
MAPIX=1
MAPIXVER=1.0.0.1
OLEMessaging=1
[MCI Extensions.BAK]
aif=MPEGVideo
aifc=MPEGVideo
aiff=MPEGVideo
asf=MPEGVideo
asx=MPEGVideo
au=MPEGVideo
m1v=MPEGVideo
m3u=MPEGVideo
mp2=MPEGVideo
mp2v=MPEGVideo
mp3=MPEGVideo
mpa=MPEGVideo
mpe=MPEGVideo
mpeg=MPEGVideo
mpg=MPEGVideo
mpv2=MPEGVideo
snd=MPEGVideo
wax=MPEGVideo
wm=MPEGVideo
wma=MPEGVideo
wmv=MPEGVideo
wmx=MPEGVideo
wpl=MPEGVideo
wvx=MPEGVideo
m2v=MPEGVideo
mod=MPEGVideo
[IRIS_IPE]
menu=1
[drawdib]
vga.drv 1024x768x32(BGR 0)=15,23,1,31
[Readiris]
Scanner32=Twaino38,23
[annie]
FrameRate=333333
CaptureFile=C:\Documents and Settings\Arfon Jones\My Documents\carwyn\Photos\fi4
VideoDevice2=@device:cm:{860BB310-5D01-11D0-BD3B-00A0C911CE86}\SoC PC-Camer@ (VFW)
AudioDevice2=
UseFrameRate=1
CaptureAudio=0
CaptureCC=0
WantPreview=1
MasterStream=1
UseTimeLimit=0
TimeLimit=0
[DPE]
Toolbar=1
SN75=43011702

Related Topics



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users