Guidelines
- Only trained MR Team members are allowed to post advice.
- Do not take advice from members outside of the MR Team as it can be potentially dangerous.
- Don't take action on an entry or delete any files on your own. Doing so has a high potential of damaging your machine.
- Don't bump your thread. We realize you may urgently need help, but MR Team members have a life too.
- Don't follow advice from another thread as each fix was created specifically for that user. Doing so has a high potential of damaging your machine.
- Don't post in another members thread. Please create a new one.
- If you can't fit the log in one post, then please use www.pastebin.com
- If you have a problem with your username and such being in the header of a log, then please substitute it and PM me what you removed. Sometimes I might need the username for a fix. The header is a very important part of the log so it needs to be there.
- If you have not gotten a reply within 24 hours, then please send a PM to Tha Sneak.
Members of the MR Team
MR Team Leader(s):
- Tha Sneak
MR Team Co-Leader(s):
- Griffin
MR Team Teacher(s):
- Tha Sneak
- Griffin
MR Team Helper(s):
- Tha Sneak
- Griffin
MR Team Trainee(s):
Instructions
Please give us a brief summary of your issues along with the following logs from the steps below.
Step 1:
Please download OTL to your Desktop. (If you already have it downloaded, then just follow the instructions below).
- Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
- Under the Custom Scan box paste this in
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\*.exe /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.sys
%systemroot%\system32\drivers\*.dll
%systemroot%\system32\drivers\*.ini
%systemroot%\system32\drivers\*.exe
%SYSTEMDRIVE%\*.*
%PROGRAMFILES%\*.
%appdata%\*.*
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
disk.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
usbstor.sys
/md5stop
CREATERESTOREPOINT
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
- Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
- When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
- Please copy (Edit->Select All, Edit->Copy) and paste (Edit->Paste) the contents of these files, one at a time
Note: in the event that OTL fails to run, please use alternate download links to try again:
http://oldtimer.geekstogo.com/OTL.com
http://oldtimer.geekstogo.com/OTL.scr
Step 2:
Please download aswMBR from here
- Save aswMBR.exe to your Desktop
- Double click aswMBR.exe to run it
- Click the Scan button to start the scan as illustrated below
Note: Do not take action against any **Rootkit** entries until I have reviewed the log. Often there are false positives
- Once the scan finishes click Save log to save the log to your Desktop
- Copy and paste the contents of aswMBR.txt back here for review
