My computer wont finish the root Repeal scan

My computer is acting strange...It freezes up and will not respond, when I use Opera or Mozilla. I try to end the process of the non responding program in task manager, it doesnt respond I have to reboot my system...in order to end the process of the not responding programs..I have followed all your steps, however the root repeal freezes on the last drive...and never completes the scan or give a scan report . I thank you in advance for any help that may give.

 

I almost forgot the Mbam log...thanks again

 

Here are the results

 

Yes I have my important data backed up, I also have the boot cd...internet explorer works fine...it only freezes up when using opera and mozilla...

 

Hi,

chaslang has asked me to help you while he is busy with other projects at the moment.

Do you have your Windows XP CD? We need it to restore a clean MBR.
If you do not have your Windows XP CD, you can create one with the Recovery Console (which is really all we need), here: Download Windows XP Recovery Console

Then see if you can boot from this CD and get into the Recovery Console. See the second section in the below link where it says "How to use the Recovery Console"

http://support.microsoft.com/kb/307654

If you can get to the command prompt of the Recovery Console, type fixmbr and hit enter. After it finishes type exit to reboot and remove the CD to allow Windows to boot normally.

If you were able to run fixmbr, rerun MBRCheck and attach a new log. Also tell me how things are working.

 

Hi thisisu and chaslang...I tried to repair the mbr...but it failed and give me this error cooo0218 Registry File failure...next I tried to update IObit...unsuccessful... it would always go the IE and stall ...blank screen... so I decided to uninstall IObit since I dont recall installing on my puter..then I tried to uninstall opera...and Panda AV give this message...Blocked...Dangerous operation detected..Rule 5002...I google Rule 5002...and found this...

Rule 5002: During normal behaviour, Web browsers shouldn’t need to execute administration, network or command shell tools. If you receive an alert, some kind of vulnerability is being exploited.

and it goes on to say how PCAV blocks adobe 0-day

the video link below
http://vimeo.com/12449415

I found the problem...Now I'm dependin on your expertise for the solution...thanks in advance for your help!!

 

Were you able to boot off the Windows XP CD enter the Recovery Console?

http://support.microsoft.com/kb/307654
Were you able to get all the way to this screen:

To type in fixmbr?

 

Any suggestions would be helpful...Thanks again

 

Make sure you have your Windows XP cd in the Cd/DVD-Rom drive.
Now reboot your system.
At the HP splash screen (screenshot below)

Press the Esc key on your keyboard.
This takes you to the Boot Menu
Select your Cd-DVD rom device and press ENTER
Be ready to press ANY KEY ON THE KEYBOARD (multiple times if you'd like) when you see the following:

You should start hearing the CD in your CD-rom drive tray spinning up, be patient while the Recovery Console loads.
From there:

1. When the "Welcome to Setup" screen appears, press R to start the Recovery Console.
2. If you have a dual-boot or multiple-boot computer, select the installation that you must access from the Recovery Console.
3. When you are prompted, type the Administrator password. If the administrator password is blank, just press ENTER.

If you can get to the command prompt of the Recovery Console, type fixmbr and hit enter. After it finishes type exit to reboot and remove the CD to allow Windows to boot normally.

If you were able to run fixmbr, rerun MBRCheck and attach a new log. Also tell me how things are working.

 

As I previously said before....

.I tried to repair the MBR...but it Failed and give me this error cooo0218 Registry File failure...next I tried to update IObit...unsuccessful... it would always go the IE and stall ...blank screen... so I decided to uninstall IObit since I dont recall installing on my puter..then I tried to uninstall opera...and Panda AV give this message...Blocked...Dangerous operation detected..Rule 5002...I google Rule 5002...and found this...

Rule 5002: During normal behaviour, Web browsers shouldn’t need to execute administration, network or command shell tools. If you receive an alert, some kind of vulnerability is being exploited.

and it goes on to say how PCAV blocks adobe 0-day

the video link below
http://vimeo.com/12449415

I found the problem...Now I'm dependin on your expertise for the solution...thanks in advance for your help!!

 

Please explain what you tried to do in order to repair the MBR.

 

I placed the factory Windows XP CD...in the drive...and followed your instructions...rebooted the computer and when the black windows came up...I pressed esc...switch the primary booting to CD-dvd Rom...Welcome to Setup screen appears with three options...I choose "R" for recovery....then a blue screen appears...sayin "Error Cooo0218 Registry File failure"...I tried repeat the process 4 times...

10-29-11, 00:43
chaslang MajorGeeks Admin - Master Malware Expert Join Date: Feb 2004
Location: Northern New Jersey USA
Posts: 71,604
Thanks: 45
Thanked 5,059 Times in 2,469 Posts

Re: My computer wont finish the root Repeal scan

--------------------------------------------------------------------------------

Quote:
Originally Posted by thisisu
Were you able to boot off the Windows XP CD enter the Recovery Console?

Not if he got a STOP: c0000218 {Registry File Failure} error. He was running Windows and did not boot to the Recovery Console.

 

I think either I am misinterpreting what chaslang said or you are. I am taking it as you are getting a BSOD because you are still running in Windows (on the hard drive), and NOT on the recovery console (CD-rom drive).

I have never seen anyone get a Registry error BSOD while using a CD.

I am just hoping you are not still using the built in Recovery Console (the one on the HDD)

However, since you are apparently not able to use the above methods, give this one a try:

Please download aswMBR by Avast! to your desktop.

• Double-click aswMBR.exe to run it (Vista and Win7 right-click and select Run as Administrator)
• Select No when asked Would you like to download latest Avast! virus definitions?
• Click the [FixMBR] button.
• Follow the prompts and reboot as requested.

Once you are back into Windows, rerun MBRCheck and attach its latest log.

 

I download the AswMBR...applied the MBRfix..and It wouldnt even load up windows...It would automatically go the BSOD and give the same REGISTRY failure code as before...so I had no choice but to reformat my drive...or "F" (sigh)...I downloaded malwarebytes , panda free av and superantispyware...it superantispyware caught what looked like the same viruses and quarantined them...Now I want make sure the computer is totally clean from any infection

 

Ok, thanks for the heads up.