VAIO Desktop not booting, virus?

[mikehende]

Hey Pete or whoever's here, I am not seeing a model number of this old XP machine anywhere, only the VAIO sign on it. When you power on it is showing weird graphics on the screen as the attached image shows. The owner said he was downloading something from the net when the pc powered off then would not boot to windows so we are suspecting this is a virus situation.

 

I tried pressing F1, F2 and F8 but it will not go to the bios or safe mode. The guy wishes to save the data but I don't want to remove the HDD to attach to another machine since I don't know what sort of virus I am dealing with, any ideas please?

[starbuck]

Hi Mike,

 

Sorry for the delay, am just in from work.

A few removal sites are not dealing with XP any more, they say it's just too insecure to bother with now.

We do have a tool that may allow us to boot the system and get a report .... it'll also enable you to save any data from the system as well.

 

That is odd..... especially that one block that's out of place.

 

Please print these instruction out so that you know what you are doing

 

• Download OTLPENet.exe to your desktop
  
• Ensure that you have a blank CD in the drive
  
• Double click OTLPEStd.exe and this will then open imgburn to burn the file to CD
  
• Reboot your bad system using the boot CD you just created.
  

.

Note : If you do not know how to set your computer to boot from CD follow the steps here

• As the CD needs to detect your hardware and load the operating system, I would recommend a nice cup of tea whilst it loads :)
  .
   
  
• Your system should now display a Reatogo desktop.
  
• Note : as you are running from CD it is not exactly speedy
  
• Double-click on the OTLPE icon.
  
• Select the Windows folder of the infected drive if it asks for a location
  
• When asked "Do you wish to load the remote registry", select Yes
  
• When asked "Do you wish to load remote user profile(s) for scanning", select Yes
  
• Ensure the box "Automatically Load All Remaining Users" is checked and press OK
  
• OTL should now start.
  
• Press Run Scan to start the scan.
  
• When finished, the file will be saved in drive C:\OTL.txt
  
• Copy this file to your USB drive if you do not have internet connection on this system.
  
• Right click the file and select send to : select the USB drive.
  
• Confirm that it has copied to the USB drive by selecting it
  
• You can backup any files that you wish from this OS
  
• Please post the contents of the C:\OTL.txt file in your reply.
  

[mikehende]

Hey Pete, no worries at all. I am suspecting graphics issue but remember this system will not allow me to go into bios, boot options or safe mode and will not boot from anything so your instructions above will not work? I have scanned the drive attached to my pc to backup the data, using MBAM It found a lot of malware but is clean now now on 2nd run.

[starbuck]

Hi Mike

 

The otlpe is designed to work on none booting systems.

Maybe I should have added that the downloading and creating the boot disc is done from a normal running system. This disc is then used as a boot disc to start the infected pc.

It doesn't rely on windows so should run fine.

[mikehende]

I had an OTL disk from a while back, inserted it but same deal.

[starbuck]

Hi Mike,

 

It would seem that this isn't just a graphics or malware issue then.

99% of malware is designed basically to make money.

If the system is totally killed..... the bad guys make nothing.

I'd be more inclined to look for a motherboard problem.

The malware that was cleaned may have been incidental.

[mikehende]

I already advised the guy to get at a least a duo core pc with win7 if budget is an issue and don't spend a cent on this old iron horse. Main thing is I now have his data safely backed up and his HDD is clean, appreciate your help as always, till next time, my friend!

[starbuck]

I already advised the guy to get at a least a duo core pc with win7 if budget is an issue and don't spend a cent on this old iron horse

Good advice Mike.

 

Safe surfing.