ds2k5

a2framework.dll is missing

Recommended Posts

PE? As in a bootable disk? EEK isn't intended to run from bootable disks, and while it may run from a UBCD4Win disk please note that its System File protection and certain detection mechanisms will be useless, so not only will its detection be limited but it could also damage the system.

We highly recommend never running EEK from a bootable disk (the same goes with hooking an infected hard drive to a clean computer to scan it).

Share this post


Link to post
Share on other sites

We don't intend for any of our programs to run from bootable CD's or bootable USB drives. Using them in this way can cause damage to the system. If you can't get logged in to the system, then try Safe Mode With Command Prompt, and if you can get it to boot to the Command Prompt then execute explorer.exe to load Windows Explorer and the desktop, and you can run EEK from there. If that doesn't work, then boot from your Windows PE disk and look in profile folders and system folders for new files/folders (sort by date modified) with apparently random names, and rename them (do not delete them yet as you may need to restore them if there are issues) and then try to boot the system.

Here's examples of some folders you can try looking for them in:

C:\Users\<username>\AppData
C:\Users\<username>\AppData\Local
C:\Users\<username>\AppData\Roaming
C:\Users\Public
C:\Users\Default
C:\Users\Default\AppData
C:\Users\Default\AppData\Local
C:\Users\Default\AppData\Roaming
C:\ProgramData
C:\Windows
C:\Windows\System32
C:\Windows\System32\drivers
C:\Windows\SysWOW64
C:\Windows\SysWOW64\drivers
If you can access the Internet from the Windows PE disk, then you can try uploading any suspect files to VirusTotal for a quick analysis. Keep in mind that VirusTotal's results do not always guarantee that a file is safe or dangerous, and you may need to do more research on your own to verify the safety of a file.

Also, keep a lookout for any files with odd created or last modified dates. Sometimes malware will forge those dates in order to try to fool security software or people who are trying to clean a computer, and you can see some pretty strange dates (both in the future and in the past) due to this. Anything with really odd dates, especially when those dates are impossible, should be considered suspicious, although keep in mind that filesystem corruption/damage can also cause problems with created/modified dates on files.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.