Help needed

[Michael (alan1998)]

Hello,

So I literally just got home from school to find my computer in a horrible mess. It wasn't booting up at first, seems to work now. Windows Startup Repair saved the OS and my files. However, I would like to know why my computer crashed like that. I haven't had it crash in nearly a year since I owned it.

Is their any kind of file kept or anything that I can post for someone to look at?

[Secondmineboy]

There could be something wrong with system files or some updates broke the system.

Best is that you make backups at least of your personal data or better an ISO-Image of the whole system.

[Michael (alan1998)]

Yeah, I scanned with OTL. There are tons of .sys and other files within system32...

[Secondmineboy]

Please attach that log here and wait for an expert.

He knows how to deal with this.

[Michael (alan1998)]

That log was produced with a Quick Scan. Not the usually one

[magna86]

Please download aswMBR and save it to your desktop.

Double click aswMBR.exe to start the tool.

• Select Yes if prompted to download the Avast database.
   
• Click Scan
   
• Upon completion of the scan ( Scan finished successfully ) click Save log and save it to your desktop, and post that log in your next reply for review.
  Note: do NOT attempt any Fix yet.
  
  

[magna86]

OTL log does not tell me anything that would cause the error in the system. When you deliver me the aswMBR log then we shall see what to deploy next.

[Michael (alan1998)]

Log attached. I can format IF needed. I do have a MAK key plus a win 7 HP SP 1 64

[magna86]

This is Windows 8.1 system?


Edit:
I'll need to look at deeper then aswMBR can go ...


Please download GMER, the RootKit Detector tool from the link below and save it to your Desktop:

Gmer download link
Note: file will be random named

Double-clicking to run GMER.

• Wait for initial scan to finish - if there is any query, click No;
  
• Click [ Scan ] button and wait until the full scan is complete;
  
• Click [ Save ... ]- save the report to the Desktop (named ARK );
  
  
• Then click the >>> button and select Autostart card;
  
• Click [ Scan ] button;
  
• After quick scan, click Copy button;
  
• Open notepad and Paste text. Save report to the Desktop (named autostart )

> Attach here both Gmer logreports. (ARK.txt and autostart.txt)

[Michael (alan1998)]

incorrect. It's windows 7 Home Premium Service Pack 1 64 bit. However, the original OS was Windows 8.

[magna86]

Ok. As I was sow the GPT partition and Windows 7 in logs so I wanna to confirm.

Please run GMER if you will for additional ARK scan.

[Michael (alan1998)]

Hey,

I got some unknown MBR code. I'll attach a ScreenShot of another error I got

[magna86]

Is that from initial scan? If so, just press Scan button ...

If this is final results, just press Save button and save notepad as ARK.txt on Desktop and attach or paste the log here.

[Michael (alan1998)]

Initial Scan.

However, I just tried to scan and it hit something and I blue Screened. Should I try Safe Mode? Or do you have something else?

[magna86]

Initial Scan.

However, I just tried to scan and it hit something and I blue Screened. Should I try Safe Mode? Or do you have something else?

That's Ok. You're get BSOD as GMER trying to load it's driver into kernel. Probably the driver has hooked something ..
GMER and aswMBR shows "unknown MBR" flag as you do not even have MBR partition type on your system. You have GPT type that is came with origin Win8.

OTL doesn't show malware or somting like, therefore you may remove OTL and it's files by clicking CleanUp! button.