Solved: Windows 7 64-bit BSOD 0x7B booting after Pihar and ZeroAccess removal

Create Account

Anti-Virus Apps

Questions

Followers

Top Experts

Jason Johanknecht🇺🇸

Windows 7 64-bit BSOD 0x7B booting after Pihar and ZeroAccess removal

Dell Inspiron 1545 laptop with Windows 7 64-bit Home Prm. Pulled hard drive for virus scan using NIS 2013 and removed ZeroAccess, Boot.Pihar, Maljava, and Trojan.Ransomlock. Computer did successfully boot before removal, would run for a couple of minutes then BSOD. Now during boot process - BSOD (STOP 0x7B).

TDSS Killer doesn't find anything more than what was removed. I have tried fixmbr and chkdsk.

Zero AI Policy

We believe in human intelligence. Our moderation policy strictly prohibits the use of LLM content in our Q&A threads.

Patrick Bogers🇳🇱

Hi

You need to boot with Windows 7 x64 media and do a repair install. Some viruses like to replace bootfiles explaining you BSOD on boot.
Pretty sure this will fix your problem.

Thomas Zucker-Scharff🇺🇸

Scanning a device with a windows OS should be done while the boot device is running as boot device to protect windows files. Win 7 x64 especially makes many engines think that a rootkit or key logger is active because of the way it tricks 32 bit programs. Check out this article:

https://www.experts-exchange.com/A_6650.html

On malware fighting best practices by younghv.

As to your current situation, sounds like your only recourse is a repair install, unless you have a backup (the one you always do before trying to remove malware).

Jason Johanknecht🇺🇸

ASKER

I have been doing virus removal this way for years, and this is the first one that didn't work and couldn't be resolved due to Windows files infected the scanner doesn't find or windows/registry settings that need to be corrected. I am sure it is going to turn out that way, just haven't figured it out yet. We repair atleast 200 virus infections a year using this method.

Repair install is not possible, since you have to perform this from starting within the OS.

EARN REWARDS FOR ASKING, ANSWERING, AND MORE.

Earn free swag for participating on the platform.

Thomas Zucker-Scharff🇺🇸

You can do a repair by starting the repair console from a win 7 boot cd. Try using a sardu created boot disk (see my article).

Jason Johanknecht🇺🇸

ASKER

How are you doing the repair install from the DVD? I tried and keep getting the expected you must reboot, remove the DVD and start from within Windows. I have googled and found nothing.

Thomas Zucker-Scharff🇺🇸

If you download SARDU click on the win7 rescue disk and create a bootable device.

Get a FREE t-shirt when you ask your first question.

We believe in human intelligence. Our moderation policy strictly prohibits the use of LLM content in our Q&A threads.

ASKER CERTIFIED SOLUTION

Jason Johanknecht🇺🇸

ASKER

membership

Signing up is free and takes 30 seconds. No credit card required.

Create Account

Thomas Zucker-Scharff🇺🇸

Datapro,

Thanks for sharing what you found - great resource. So does that mean you got everything up and running?

Jason Johanknecht🇺🇸

ASKER

Everything works perfectly now!

Jason Johanknecht🇺🇸

ASKER

Worked perfectly!

EARN REWARDS FOR ASKING, ANSWERING, AND MORE.

Earn free swag for participating on the platform.

Anti-Virus Apps

Questions

Followers

Top Experts

Anti-virus software was originally developed to detect and remove computer viruses. However, with the proliferation of other kinds of malware, antivirus software started to provide protection from other computer threats. In particular, modern antivirus software can protect from malicious browser helper objects (BHOs), browser hijackers, ransomware, keyloggers, backdoors, rootkits, trojan horses, worms, malicious layered service providers (LSPs), dialers, fraud tools, adware and spyware. Some products also include protection from other computer threats, such as infected and malicious URLs, spam, scam and phishing attacks, online identity theft (privacy), online banking attacks, social engineering techniques, Advanced Persistent Threat (APT), botnets and DDoS attacks.