HELP ME!!! PERSONAL GAURD 2009

View previous topic View next topic Go down

HELP ME!!! PERSONAL GAURD 2009

Post by shadowlord153 on Tue Jul 27, 2010 9:15 am

I got a virus about a year ago, personal gaurd 2009 on one of my win 2000 computers. I had spybot s&d, but didn't act fast enough. I am now stuck in the "windows is starting color" screen, where it displayes the logo with the load bar underneath. that section is now in a boot loop, being forced to restart when it reaches the end. that is without safe mode. with safe mode on, I am met with an error message that says that "safe mode cannot start because your computer has a virus (Personal gaurd 2009)" It won't get as far as the normal boot, either.

can anyone help?

shadowlord153
Novice
Novice

Posts Posts : 5
Joined Joined : 2010-07-27
OS OS : 2000,XP,vista,95,7,MSDOS 4.0
Points Points : 23275
# Likes # Likes : 0

View user profile

Back to top Go down

Re: HELP ME!!! PERSONAL GAURD 2009

Post by shadowlord153 on Tue Jul 27, 2010 7:41 pm

forgot to add. I need to recover files on hard disk

shadowlord153
Novice
Novice

Posts Posts : 5
Joined Joined : 2010-07-27
OS OS : 2000,XP,vista,95,7,MSDOS 4.0
Points Points : 23275
# Likes # Likes : 0

View user profile

Back to top Go down

Re: HELP ME!!! PERSONAL GAURD 2009

Post by Dr Jay on Tue Jul 27, 2010 8:08 pm

Hello, and welcome to GeekPolice.

Please note the following information about the malware forum:
  • Only Tech Officers, Global Moderators, Administrators, and Malware Advisors are allowed to give advice on removing malware from your computer.
  • From this point on, please do not make any more changes to your computer; such as install/uninstall programs, use special fix tools, delete files, edit the registry, etc. - unless advised by the staff I noted above.
  • Please do not ask for help elsewhere (in this site or other sites). Doing so can result in system changes, which may not show up in the logs you post.
  • If you have already asked for help somewhere, please post the link to the topic you were helped.
  • We try our best to reply quickly, but for any reason we do not reply in two days, do one of two things:

    Reply to this topic with the word BUMP, or
    see [You must be registered and logged in to see this link.].

  • Lastly, keep in mind that we are volunteers, so you do not have to pay for malware removal. Persist in this topic until its close, and your computer is declared clean.





We need to do some diagnostics to get started.

1. Please download and run RKill.

[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.]

  • Save it to your Desktop.
  • Double click the RKill desktop icon.
  • It will quickly run and launch a log. If it does not launch a log, try another download link until it does.
  • Please post its log in your next reply.
  • After it has run successfully, delete RKill.

Note: This tool only kills the active infection, the actual infection will not be gone. Once you reboot the infection will be active again! Please do not reboot until instructed further to do so.

2. Download [You must be registered and logged in to see this link.] to your desktop.
  • Double click MBRCheck.exe to run (Vista and Windows 7 users, right click and select Run as Administrator).
  • It will show a black screen with some data on it.
  • A report called MBRcheckxxxx.txt will be on your desktop
  • Open this report and post its content in your next reply.


3. Please download [You must be registered and logged in to see this link.] by me, and save to your Desktop.
  • Double-click on Cheetah-Anti-Rogue.zip, and extract the file to your Desktop.
  • Double-click on Cheetah-Anti-Rogue.cmd to start.
  • It will finish quickly and launch a log.
  • Post the contents of it in your next reply.


4. In your next reply, please post the following logs for my review:
  • MBRCheck log (2)
  • Cheetah log (3)


Thanks! Smile


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13717
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302127
# Likes # Likes : 10

View user profile

Back to top Go down

Re: HELP ME!!! PERSONAL GAURD 2009

Post by shadowlord153 on Tue Jul 27, 2010 8:55 pm

one problem. I cannot boot up AT ALL!!!!!!
on normal mode, I get stuck in a boot loop. on safe mode, I get a blue screen of death saying that I cannot boot in safe mode because personal gaurd 2009 is stopping it.
this is on my Windows 2000 NT computer
I also need files, they are neccessary to my work

shadowlord153
Novice
Novice

Posts Posts : 5
Joined Joined : 2010-07-27
OS OS : 2000,XP,vista,95,7,MSDOS 4.0
Points Points : 23275
# Likes # Likes : 0

View user profile

Back to top Go down

Re: HELP ME!!! PERSONAL GAURD 2009

Post by Dr Jay on Wed Jul 28, 2010 2:29 am

We are going to be using a Windows Recovery Environment to help disinfect the system so it may boot again.

Download the OTLPE Network REATOGO Windows Recovery Environment.
  • Place a blank CD-R disc in to your CD burning drive.
  • Download [You must be registered and logged in to see this link.] and double-click on it to burn to a CD using ISO Burner.
  • Reboot your system using the boot CD you just created.

    Note : If you do not know how to set your computer to boot from CD follow the steps [You must be registered and logged in to see this link.]
  • Your system should now display a REATOGO-X-PE desktop.
  • Double-click on the OTLPE icon.
  • When asked "Do you wish to load the remote registry", select Yes
  • When asked "Do you wish to load remote user profile(s) for scanning", select Yes
  • Ensure the box "Automatically Load All Remaining Users" is checked and press OK
  • OTL should now start. Change the following settings
    • Change Drivers to Non-Microsoft
    • Press Run Scan to start the scan.
    • When finished, the file will be saved in drive C:\_OTL\MovedFiles
    • Copy this file to your USB drive if you do not have internet connection on this system
    • Please post the contents of the OTL.txt file in your reply.


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13717
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302127
# Likes # Likes : 10

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum