frank.zappa77
07-07-2008, 02:46 PM
Hey guys, I've been fixing a friend's computer and to keep this post organized I'll tell you what problems I found and what I did to troubleshoot it. But if you want to jump to the questions, just look at the last paragraph.
First of all I was sure that my friend's computer had a virus on it - it had changed the desktop background to something saying "please install such and such anti-virus", and access was denied to running any executable files. I could not run command prompt, regedit, or task manager - and this was the admin account.
First thing I did was try to boot into safe mood (again as admin) but same problem. Since he had recovery discs, I decided to help him reformat. I popped in the Windows XP disc (Media Center 2005 if it's important) and it would start to load, but right after it said "Starting Windows" I would get a blue-screen like error. So I copied the error code (0x0000007b) and searched it on Google. I couldn't really find anything of help, just that Microsoft said it might be a boot-sector virus. There was also little information about how there could loose/bad connections so I opened up the case but all the wires were where they should have been.
Now from my understanding Windows XP uses NTLDR on the MBR to boot the OS. My first thoughts were that this could have been a boot-sector virus. Before I did anything, I wiped the entire hard drive (just 1 partition) using a GParted Live CD. I tried again to boot the XP disc, but same problem, same error code. I then thought that I should overwrite the current contents of the MBR using GRUB from my Ubuntu Live CD. I didn't have my alternate CD so couldn't just skip to the GRUB stage so instead I just ended up installing Ubuntu on to his HD - so at least he has a working OS for now (problem is he needs XP for work).
I then tried to use the XP disc again, but got the same error code. Now his computer's a Dell and I downloaded the program to flash his BIOS off their site but I need to use a floppy drive. I'll just be borrowing one from my friend along with an IDE cable and then I guess I'll try flashing his BIOS.
And finally my questions - is it plausible that he could have a BIOS virus? After searching Google, I read that it is possible for this to happen, but none of the articles stated any symptoms of telling. My second question - is there any 3rd party software I could use to wipe out the boot sector - in the case that my troubleshooting using GRUB didn't work? (like a live CD or floppy even?)
Sorry for the wall of text but I just wanted to be precise with the details and my troubleshooting methods. Any help will be appreciated.
Thanks.
First of all I was sure that my friend's computer had a virus on it - it had changed the desktop background to something saying "please install such and such anti-virus", and access was denied to running any executable files. I could not run command prompt, regedit, or task manager - and this was the admin account.
First thing I did was try to boot into safe mood (again as admin) but same problem. Since he had recovery discs, I decided to help him reformat. I popped in the Windows XP disc (Media Center 2005 if it's important) and it would start to load, but right after it said "Starting Windows" I would get a blue-screen like error. So I copied the error code (0x0000007b) and searched it on Google. I couldn't really find anything of help, just that Microsoft said it might be a boot-sector virus. There was also little information about how there could loose/bad connections so I opened up the case but all the wires were where they should have been.
Now from my understanding Windows XP uses NTLDR on the MBR to boot the OS. My first thoughts were that this could have been a boot-sector virus. Before I did anything, I wiped the entire hard drive (just 1 partition) using a GParted Live CD. I tried again to boot the XP disc, but same problem, same error code. I then thought that I should overwrite the current contents of the MBR using GRUB from my Ubuntu Live CD. I didn't have my alternate CD so couldn't just skip to the GRUB stage so instead I just ended up installing Ubuntu on to his HD - so at least he has a working OS for now (problem is he needs XP for work).
I then tried to use the XP disc again, but got the same error code. Now his computer's a Dell and I downloaded the program to flash his BIOS off their site but I need to use a floppy drive. I'll just be borrowing one from my friend along with an IDE cable and then I guess I'll try flashing his BIOS.
And finally my questions - is it plausible that he could have a BIOS virus? After searching Google, I read that it is possible for this to happen, but none of the articles stated any symptoms of telling. My second question - is there any 3rd party software I could use to wipe out the boot sector - in the case that my troubleshooting using GRUB didn't work? (like a live CD or floppy even?)
Sorry for the wall of text but I just wanted to be precise with the details and my troubleshooting methods. Any help will be appreciated.
Thanks.