Boot to Safe mode but not Normal need help - please

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by tagtech, Apr 8, 2009.

  1. tagtech

    tagtech Private E-2

    Howdy from Texas:

    I have done the following as per the instructions and I am still stumped.

    I downloaded:

    1 SuperAntiSpyware
    2 Malwarebytes anti-malware
    3 combofix.exe
    4 mgtools
    5 ccleaner.

    I ran them in order as specified on the READ ME FIRST post.

    Normally this works and I have no problems.

    This time I cannot get the computer to boot in normal mode.
    I can get the computer to boot in safe mode.

    If I try to install SUPERAntiSpyware, the computer still tells me "The System Administrator Has Set Policies to Prevent This Installation"

    What I had to do was install SUPERAntiSpyware on another machine then copy the installed folder over to the infected machine.

    After running everything I still cannot install SUPERAntiSpyware on the infected machine even after running everything.

    I ran the hijackthis log at highjackthis.de and found no real problems to speak of.

    This infected machine has me stumped. I have to ask for help.
    I have included the four following log files.
    1. SuperAntiSpyware
    2. Malwarebytes
    3. Combofix
    4. Zip of the MGtools logs.

    I really appreciate any and all help anyone can provide.

    Thank you

    Kobie
     

    Attached Files:

    tagtech, Apr 8, 2009
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    [Let's start with this:

    Use windows explorer to find and delete:
    C:\siw.trc --> unless you know what this is!
    c:\windows\ohibakezakoboxa.dll
    C:\WINDOWS\system32\drivers\3eae06f4.sys

    Use add/remove programs to uninstall:
    J2SE Runtime Environment 5.0 Update 10
    Java(TM) 6 Update 3

    Now reset mscofig to normal startup, reboot and see if you can get into normal mode,

    Tell me what happens.
     
    TimW, Apr 11, 2009
    #2
  3. tagtech

    tagtech Private E-2

    Howdy Tim:

    Performed the steps outlined and things appear to be working fine.

    One thing I did notice was that the add in PCI video card had losts its drivers or they were corrupted - unknowing . . . and I had to reload the video drivers now with releaded video drivers and your guidance the computer is working fine.

    Thank you very much for your advice.

    Kobie
     
    tagtech, Apr 13, 2009
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    If you can boot to normal mode....you need to get me new logs.
    Please run:
    SAS
    MBAM
    Combo
    And download the newest version of MGTools ( just let it overwrite the original one) ..then run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file.
     
    TimW, Apr 16, 2009
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds