Trouble with wave volume

• Download bootkit_remover.rar
• Click the underlined DOWNLOAD text to download the file and save it to your Desktop.
• You then need to extract the remover.exe file from the RAR using a program capable of extracing RAR compressed files. If you don't have an extraction program, you can use 7-Zip
• After extracing remover.exe to your Desktop, double click the remover.exe file to run the program.
• Attach or post inline here, the output from remover.exe

NOTE: The Command Prompt window text can be copied to the clip board by right clicking on the top bar of the window and using the Edit commands to Mark, Copy, and Paste.

 

Did you put it on your desktop? Do you have multiple hard drives or partitions?

 

Do you have all important data backed up? You really should do this before continuing since we will need to rewrite your MBR to fix this and while most times this can be done without any problem, these infections can react badly and that could result in a PC not being bootable. You really don't have much choice though since these infections are too dangerous to your security to leave on a PC.

Now if you have your OS CD, boot to the recovery console and run fixmbr on it:

You can read the below to help you do this:

http://support.microsoft.com/kb/307654


Then boot back into normal mode.

Tell me how things are running.

 

Sounds like Combo did install the RC, but you would be better off to boot to the cd and then run fixmbr from there.

 

That is why I suggested that you back up all your important data and personal files. If for some reason running fixmbr on your hard drive fails and you are unable to boot up, then you would need to do a clean install.

You will only be doing the fixmbr command on the one hard drive that has your MBR. But we can first make sure that you need to do this.

Are you referring to getting into the Recovery console? You need to boot into your bios and change the boot order to cd first so that you can boot to the XP cd.....then choose R for the recovery console. At that point you just type in the command : fixmbr.

Let's double check:

Download MBRCheck to your desktop

• Double click MBRCheck.exe to run (vista and Win 7 right click and select Run as Administrator)
• It will show a Black screen with some data on it
• you must click on the top bar of the Window and then select Edit.
• Then you will see the Select All option.
• Open a notepad and press Control+V
• now please copy that report to this thread

 

Hummm....each of these programs is throwing an error message for your hard drives. Is this a Dell or HP machine?

 

You will need to boot to the Recovery Console to remove this infection.

Now boot to the Recovery Console and run the fixmbr to clear a Master Boot Record infection that you have.

You can read the below to help you do this:

http://support.microsoft.com/kb/307654


Then boot back into normal mode.

Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).

Then attach the below logs:

* C:\MGlogs.zip

Make sure you tell me how things are working now!

 

Your log is still showing the MBR infection. Do you have any disc emulation software running? What issues are you still having?

 

I see you have dameon tools running., please follow step 6 of the Read and Run First instructions and then get me a new MGLogs.zip once it is turned off.

 

Yes, the dameon tools will send a false positive regarding an MBR infection. All I need to see is a clean RunKeys log to tell if it is now resolved. But it sounds to me like everything is working correctly again.