Laptop not starting since running Norton Eraser tool

My sisters laptop was infected with a Trojan...I got it fixed with instructions in this thread

http://deletemalware.blogspot.com/2011/06/how-to-remove-security-protection.html

This deactivated the malware by entering the registration and email id. However it did not remove it. So got a new Norton install, and ran system scan. It detected a few Trojans, and said it could not remove them. Suggested the Norton Eraser. I ran that, and it said it needed to reboot. Once I started it, I came over to my place (3 hrs away). Now my sis called to say that laptop does not start at all/ Asked her to hit F8 and do a safe mode, but it seems like it did not come up still. So was wondering what I could do to ensure the laptop comes back. I will be there this Saturday, but wanted instructions before hand so that I can just follow them.

Thanks in advance...

 

Can someone suggest some action please?

Thanks in advance...

 

Sorry, the version is Windows Vista..I do not have the recovery CD. Just do not want to lose the data by reformatting it. Please suggest some way.

 

Hello, you can try the below:

http://img827.imageshack.us/img827/1263/frst.gif For 32-bit (x86) systems download Farbar Recovery Scan Tool and save it to a flash drive.
For 64-bit (x64) systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:

• Restart the computer.
• As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
• Use the arrow keys to select the Repair your computer menu item.
• Choose your language settings, and then click Next.
• Select the operating system you want to repair, and then click Next.
• Select your user account and click Next.

To enter System Recovery Options by using Windows installation disc:

• Insert the installation disc.
• Restart your computer.
• If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
• Click Repair your computer.
• Choose your language settings, and then click Next.
• Select the operating system you want to repair, and then click Next.
• Select your user account an click Next.

On the System Recovery Options menu you will get the following options:

• Select Command Prompt
• In the command window type in notepad and press Enter.
• The notepad opens. Under File menu select Open.
• Select "Computer" and find your flash drive letter and close the notepad.
• In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
• Note: Replace letter e with the drive letter of your flash drive.
• The tool will start to run.
• When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will make a log (FRST.txt) on the flash drive. Please attach this log to your next reply. (How to attach)

 

I am not getting into the Command prompt part. The machine was working fine. But since the Norton Eraser run, the monitor does not display anything. It has the Repair Windows option, but that just hangs without moving forward. So F8 is not giving me the standard Safe mode or Command Prompt options.

I will try tomorrow by connecting it to an external monitor to see if it is a display card issue, but I doubt it.

I really don't want to lose the data. Any suggestion?

 

Have you tried booting from a Windows Vista DVD and following the instructions listed?

 

I don't have a Vista DVD and hence the issue...Is there from somewhere I can download a bootable and then see if it works?

I connected today to an external monitor...definitely the VGA has an issue.
I can see two options: Windows repair and start Windows Normally. In the first it does something and the screen just blanks out. In the second it just stays at the Microsoft screen. :cry

 

Ok somehow got it to a safe mode set...and here is the frst.txt. Please let me know if you can do anything.

 

This tool is not intended to be run from within Windows. This is why the instructions tell you to use System Recovery Options -> Command Prompt.

However, if you are now able to boot into Windows in any mode, you can try to follow these directions: How to Remove TrojanOS/Alureon.A

 

Sorry...my mistake...I just got carried away when I saw the machine come back in Safe Mode.

Here is the log...

I see a folder called NPE...Should I just delete it so that it does not get launched every time at startup? Please suggest.

 

No leave this alone for now. Continue with the below:

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Attached is fixlist.txt

• Save fixlist.txt to your flash drive.
• You should now have both fixlist.txt and FRST.exe on your flash drive.

Now re-enter System Recovery Options.
Run FRST and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt).
Please attach this to your next message. (How to attach)

Now attempt to boot into Normal Mode.

If successful, immediately continue with this procedure: How to Remove TrojanOS/Alureon.A

 

Attached...And it does start Normally now. So is everything ok?

 

Also one more question...The display seems to have stopped for the laptop monitor. Do you think it is related? Did the VGA drivers get affected somehow with the Eraser activity?

 

You should be the one to answer this.

Your latest log looks good but we usually like to get logs from multiple scanners to be thorough.

 

"Stopped" as in it's still not working?

NPE wouldn't have anything to do with your display.

 

First THANKS for the help. If you need any more logs, please let me know when and how frequently.

The display is very faded...it was much more brighter. It does not change with the brightness buttons (F7/F8) on the laptop..infact it does not even look like these buttons cause any change

 

You're welcome.

Usually you are required to press and hold the Function (Fn) key before you press the F7/F8 keys to adjust brightness.