Jump to content


  • Posts

  • Joined

  • Last visited

Everything posted by zorran

  1. Yes, I 'm getting the same error.When I ran chkdsk C: /R command this is what I got: "The type of the file system is NTFS. Cannot lock current drive. Chkdsk cannot run because the volume is in use by another process.Would you like to schedule this volume to be checked the next time the system restarts? <Y/N>"
  2. Well, one more thing, after I flushed the System Restore and came back to check it today I found out that there were not System Restore points created by the computer. I tried to create them myself but this is the message I received: I tried it again, and even rebooted the computer but I have the same message. I would appreciate your suggestions.
  3. I performed all the clean up. My final question is : What about those desktop.ini and bak files. How do I clear them from my desktop? Thanks for everything.
  4. I thank you again for your time,expertise and effort.I truly appreciate it. The computer seems to run fine. Here is the new OTL log:
  5. Instructions received and response forwarded.
  6. All done. Unfortunately, The Zip file is 92 k which is more than allowed max. single file size of 40.09 k and therefore too big to upload. I 'm waiting for the further instructions.
  7. Unfortunately, I still cannot run the ComboFix. It stalls right after the blue screen appears and registry backups.
  8. All done, and here is the log: And just one thing. after the computer rebooted I can see a couple of "desktop.ini" icons and one "bak" icon on my desktop. Is this related to what was done?
  9. Here is the log I was able to download/attach: The OTL was made as well but the file was too big to upload. Please advise me which alternative would you like me to use(if at all) in order to upload the file.
  10. I downloaded and installed the RootRepeal, followed the instructions, and started the scan. After about 45-50 minutes later, the scan stopped and the following message showed up on the screen: "Could not initialize driver! Please contact the author." Than, I clicked on OK button after which the a-squared Anti Malware pops up asking me if I wanted to block, quarantine or allow the process. I allowed the process. Immediately after that the scan was finished and I saved the report. Around the same time another message (RootRepeal Error) pops up. I clicked on OK again. The window closed and I exited the program. I attached it bellow using a Snipping Tool.
  11. I installed the ComboFix, followed all the procedures(Antivirus and Antispyware disabled), and did not move or click with a mouse pointer, but the program stalled right after backing up the windows registry. I tried to rerun it for three times but every time the same thing happens. In addition, I stil cannot run ISeeYouXP. The computer runs better as I mentioned yesterday.Should I still post a fresh log for a-squared Anti Malware?
  12. First, I would like to thank you for your effort. Things are going much better now. After I applied the codes you sent me yesterday I was able to log in normal mode. Also, my Internet Explorer 8 finally started, and I installed and ran the Firefox 3.5.3. In addition, I did not notice Gen.Trojan!IK during the deep scan with a-square Anti Malware.Unfortunately I still could not get the ISeeYouXP to run (the UAC turned off, reboot, and run as Administrator), so I attached the other two requested fresh logs:
  13. Good Morning, I tried to run my computer in Normal mode three times, but after the welcome logo I get this message every time: "Windows has encountered a critical problem and will restart automatically in one minute. Please save your work now." So I had to go to msconfig again from the Safe mode and enter the Selective mode and than perform scans. I attached the Avenger log and fresh a-square Anti Malware log. Unfortunately I could not run ISeeYouXP on my Vista(I installed it fine,turned off UAC, rebooted and Ran as Administrator). Simply said,after I right click Run as Administrator nothing happens at all.
  14. Thank you for your prompt response. I took care of fixes.bat and executed it without any problems. I downloaded Avenger and copied and pasted the text in input script box, executed it and rebooted (it rebooted only once) the system without any problems. Before I restore permissions on locked files and remove mountpoints, I'm posting/pasting the Avenger log below: ////////////////////////////////////////// Avenger Pre-Processor log ////////////////////////////////////////// Platform: Windows NT 6.0 (build 6002, Service Pack 2) Thu Oct 08 14:33:11 2009 14:33:11: Error: Invalid script. A valid script must begin with a command directive. Aborting execution! ////////////////////////////////////////// Logfile of The Avenger Version 2.0, © by Swandog46 http://swandog46.geekstogo.com Platform: Windows Vista ******************* Script file opened successfully. Script file read successfully. Backups directory opened successfully at C:\Avenger ******************* Beginning to process script file: Rootkit scan active. No rootkits found! Error: file "C:\cngaudit.dll" not found! File move operation "C:\cngaudit.dll|C:\Windows\System32\cngaudit.dll" failed! Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND) --> the object does not exist Completed script processing. ******************* Finished! Terminate. Please note: After this post I will restore permissions on locked files and remove mountpoints. Than, I will run, Avenger (C:\avenger.txt) a-squared Free ISeeYouXP and post fresh logs as soon as possible. Please advise me on the following: Am I going to substitute a-squared Free fresh scan with a-square Anti Malware like I did the first time? Also, since I did not encounter any problems with above instructions, should I than after I post these fresh posts from above, go to the system configuration and instead selective startup choose normal startup (with all device drivers and services),restart and report how things are running along with posting these fresh logs?
  15. Hello, Last week I had Gen.Trojan!IK appeared on my a-squared Anti-Malware deep scan, and when I attempted to quarantine it the computer screen went blue briefly, and computer restarted. From that point I have several problems: Half of the time my computer would start normally and the rest of the times it would go into restart cycle mode. Also,I noticed that my Firefox and Internet Explorer 8 became disabled, while Opera and Google Chrome are still working.In addition,a couple days ago I could not start my computer in normal mode anymore (just keeps restarting after the welcome sign) so I went into the safe mode.From there, I ran the "msconfig" and disabled some non-Microsoft services and startups,after which I was able to return to the normal mode.My Firefox (that I removed from the computer short time ago) and Internet Explorer 8 are still disabled and the Gen.Trojan!IK (along with some other "infections")is still present. Therefore, I would truly appreciate your help regarding this issue. Please note that I'm using the Windows Vista Home Premium SP2, the Opera Browser, and that all scans are done in the "msconfig" modified, normal mode. As per instructions, I downloaded and installed all the programs other than a-squared Free (I have a-squared Anti-Malware installed). First, I ran the CCleaner. Second, I performed a deep scan using a-squared Anti-Malware, and after I found suspicious lines in my a-squared log (per instructions)I downloaded and ran Win32kDiag. Third,I posted this thread in the Malware Removal forum, and attached the following logs to your post: I'm awaiting further instructions. Thank you
  • Create New...