6 ответов в этой теме

[fenrir]

Hi all

Using CureIt on my home PC, I discovered to be infected by Maosboot. CureIT found it in services.exe and in a MBR (I have 2 disk in RAID-0 for operating system)

Since the rootkit has been removed, I've not been able to start the operating system. Tryed almost everything (several utilities, partition manager, MBR and boot sector fix) but nothing...

All the data is safe, I can read my data through GetDataBack utility, but I can't start XP, neither in Safe mode... It tries to start but after a little... BUM! BSOD that states UNMOUNTABLE_BOOT_VOLUME

I wouldn't like to reformat, I have many apps installed...

Someone could help?

TIA!

[pig]

Can you access logical volumes on your disk array when booted from Live CD?

[fenrir]

Can you access logical volumes on your disk array when booted from Live CD?

I tried to start the LiveCD, but I get an error (I hope the attached image is readable, I took it by the phone camera )

I tried on my laptop, same error... Maybe I got the wrong CD image?

Thanks!

Прикрепленные файлы:

•  error.JPG   64,81К   88 Скачано раз

[headliner]

It's easy to fix your problem. You must boot from your windows install CD, run recovery console (on first screen press "R") and execute next command: "chkdsk /p". After reboot, your system will start properly.

[fenrir]

It's easy to fix your problem. You must boot from your windows install CD, run recovery console (on first screen press "R") and execute next command: "chkdsk /p". After reboot, your system will start properly.

I tried this, too... But for some weird reason, I don't have the "R" option available... I really don't know what's going on in my PC, but I'm quite desperate

[Eugeny Gladkih]

It's easy to fix your problem. You must boot from your windows install CD, run recovery console (on first screen press "R") and execute next command: "chkdsk /p". After reboot, your system will start properly.

I tried this, too... But for some weird reason, I don't have the "R" option available... I really don't know what's going on in my PC, but I'm quite desperate

is that RAID soft-RAID?

[fenrir]

WOW!! I solved the problem! http://forum.drweb.com/public/style_emoticons/default/laugh.png

Well, the way I solved it is really.... questionable, but it worked!

I was sadly headed to reformat everything, so I did the last try... I deleted the partition and then (with PTTD - Partition Table Doctor) I tried the recovery(*).... Well, I don't know how or why, but it worked!

So, thanks to everyone for the help and thanks for CureIT, which is the ONLY tool able to heal this rootkit. Keep up this good work!

Bye





(*) Don't try this at home.... until you need it bad!