Armageddon Posted March 17, 2010 Posted March 17, 2010 the otl instructions reposted Quick explanation: If we make a bootable disc and boot your system up using this... we can bypass the malware and get a report off the infected system. You then transfer the report to the usb stick, and then send the report from the other system. You will also be able to get any files etc you want off the system at the same time.... sound good? OK this file is big... print these instruction out so that you know what you are doing Two programmes to download First ISOBurner this will allow you to burn OTLPE.iso to a CD and make it bootable. Just install the programme, from there on in it is fairly automatic. Instructions Second Download OTLPE.iso and burn to a CD using ISO Burner. NOTE: This file is approx 280Mb in size so it may take some time to download. When downloaded double click and this will then open ISOBurner to burn the file to CD Reboot your system using the boot CD you just created. Note : If you do not know how to set your computer to boot from CD follow the steps here As the CD needs to detect your hardware and load the operating system, I would recommend a nice cup of tea whilst it loads :) Your system should now display a Reatogo desktop. Note : as you are running from CD it is not exactly speedy Double-click on the OTLPE icon. Select the Windows folder of the infected drive if it asks for a location When asked "Do you wish to load the remote registry", select Yes When asked "Do you wish to load remote user profile(s) for scanning", select Yes Ensure the box "Automatically Load All Remaining Users" is checked and press OK OTL should now start. Change the following settings. Change Drivers to All Change Registry to All Under the Custom Scan box paste this in: %SYSTEMDRIVE%\*.* /md5start eventlog.dll scecli.dll netlogon.dll cngaudit.dll sceclt.dll ntelogon.dll logevent.dll iaStor.sys nvstor.sys atapi.sys IdeChnDr.sys viasraid.sys AGP440.sys vaxscsi.sys nvatabus.sys viamraid.sys nvata.sys nvgts.sys iastorv.sys ViPrt.sys eNetHook.dll ahcix86.sys KR10N.sys nvstor32.sys ahcix86s.sys nvrd32.sys /md5stop %systemroot%\*. /mp /s %systemroot%\System32\config\*.sav Press Run Scan to start the scan. When finished, the file will be saved in drive C:\OTL.txt Copy this file to your USB drive if you do not have internet connection on this system. Right click the file and select send to : select the USB drive. Confirm that it has copied to the USB drive by selecting it You can backup any files that you wish from this OS Please post the contents of the C:\OTL.txt file in your reply. Quote Google is your friend We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs. Get help with computer problems. Join Free PC Help here Donations are welcome. Read Here
dustybin Posted March 17, 2010 Author Posted March 17, 2010 It's getting on for midnight now, so I may have to leave the boot from CD stage until tomorrow. I've downloaded the ISO Burner and the OTLPE but have gone no further for now. Sleep time for me! Thanks for your help...for now! :) Quote
dustybin Posted March 18, 2010 Author Posted March 18, 2010 Before I burn this OTLPE to disc, if I use then use this newly-created disc to boot my PC, will it affect any documents and settings on there? I don't want to lose my photos or documents plus I have a whole heap of music on there (over 7000 songs). Quote
Armageddon Posted March 18, 2010 Posted March 18, 2010 Tlhe OTL disk is a malware removal utility that runs in a pe back ground it will run scans and provide us with information of any possible infections of your system which our rather good security staff can deal with Quote Google is your friend We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs. Get help with computer problems. Join Free PC Help here Donations are welcome. Read Here
dustybin Posted March 19, 2010 Author Posted March 19, 2010 When I plug the USB stick I have into the PC, the PC is not detecting it. I have checked the USB stick into this laptop that I've borrowed and am posting on and it works fine, so why can't the PC detect it? Because of this failure by the PC to recognise the USB stick it's not practical for me to follow the above recommended steps at this stage is it, as I can't post the results? Quote
dustybin Posted March 22, 2010 Author Posted March 22, 2010 Firstly an apology to all who have helped and offered support and advice. At the recommendation of my wife, after I became unable to respond to replies when the owner of the laptop I had been borrowing needed it back on Friday morning, I have had to cut my losses and get an engineer to "wipe" Windows and reinstall it for me. You, and others elsewhere, have been of valued assistance to me, and now that my problems have gone I didn't want to leave this thread hanging. Thank you! Quote
cookaboy Posted March 23, 2010 Posted March 23, 2010 Hi, I am also having the exact same problem as dustybin had. I do not have the install disk for windows xp either as it was alrady installed when I purchased the laptop from the store. What do you suggest I do please? I did find this blog (Security Forums :: View topic - LSASS errors - probable malware..) however I do not understand what the user means when he talks about ' ubcd4win'. Please help! Much appreciated. Cookaboy Quote
Net_Surfer Posted March 23, 2010 Posted March 23, 2010 Hi, I am also having the exact same problem as dustybin had. I do not have the install disk for windows xp either as it was alrady installed when I purchased the laptop from the store. What do you suggest I do please? I did find this blog (Security Forums :: View topic - LSASS errors - probable malware..) however I do not understand what the user means when he talks about ' ubcd4win'. Please help! Much appreciated. CookaboyHello cookaboy, "UBCD4Win": is a bootable recovery CD that contains software used for repairing, restoring, or diagnosing almost any computer problem. ... If you have a booting problem then you need to open your own thread on the right forum explaining in details when this happened and what were you doing at the time and I or another member can reply with the right steps for you to follow to get your machine back in order and free of malware. Regards Net_Surfer Quote "Obstacles are what you see when you take your eyes off your goals"Practice "Safe Computer" with regular automated Registry Backups Use: ERUNT by: Peter A. Bromberg, Ph.D. Net_Surfer is a proud ex-member of UNITE and ASAP And a Graduate of BleepingComputer: Malware Removal Training Program http://fc00.deviantart.net/fs51/f/2009/281/3/3/Pointing_Smiley_by_thejagman22.gifYou too could train to help others!. http://i318.photobucket.com/albums/mm416/Net_Surfer/twitterbutton1.gif
cookaboy Posted March 24, 2010 Posted March 24, 2010 Hi net_surfer. I appreciate the reply and thankyou for welcoming me to the site. You see my problem is exactly the same as what dustybin had in the way this msls52.dll file is missing and therefore the whole computer will not get past login. It seems from what I have tried to find out that this is a malware problem? The post i linked to from another site was in regards to booting from a booting utility CD (i do not have the XP install disks), in order to change the extension to some files that contained the txt 'msls52.dll' and restore the computer to normal. Do you have any ideas or alterior solutions? Thanks! Sorry if I am confusing in anyway but this is all a little bit beyond me.:) Quote
RandyL Posted March 24, 2010 Posted March 24, 2010 cookaboy can you start a new thread please?Computer Support Forums - FreePCHelp.co.uk - FAQ: General Forum Usage Quote We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs.Get help with computer problems. Join Free PC Help here Donations are welcome. Read Here
dustybin Posted March 25, 2010 Author Posted March 25, 2010 Good luck, cookaboy! Open a new thread (as advised) if you've not this problem resolved already...and be patient! ;) Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.