Is it possible to attack filesystem during shutdown?

[givemeabreak]

I'm referring to windows 7 OS. That is, a super malicious virus via backdoor or whatever messes up filesystem during OS shutdown or dynamically create and place bad file on the logical path of the boot process that damaged cluster(s)?

Also, I'd like to remove one cache file in the Windows directory each time when the OS is shutdown, is it doable? If so how? And the reason is that this cache file prevents boot. Err msg: "proccess1.bad.configuration" something or to this event.

Thanks in advance.

P.S. I received two or three bogus and potentially malicious emails from computerforum. The most recently titled "Hide my presence on I'm on the ..." from weebit [email protected]..., which I did not open. I wonder if the admin can prevent such email or via Setting? Please advise.

P.S. 2 I have no idea why some human beings are so EVIL!

 

[johnb35]

Just an FYI, foul language isn't a good thing to be using on our forum. Verbal warning here.

I highly doubt you are getting malicious emails from computerforum. You posted the gmail address so its not computerforum. At this point since we couldn't get you squared away in your original thread, I would just wipe windows and reinstall. After so much corruption, windows isn't fixable. You can try doing an online Eset scan to see if it catches anything.

Please download and run the ESET Online Scanner
Disable any antivirus/security programs.
IMPORTANT! UN-check Remove found threats
Accept any security warnings from your browser.
Check Scan archives
Click Start
ESET will then download updates, install and then start scanning your system.
When the scan is done, push list of found threats
Click on Export to text file , and save the file to your desktop using a file name, such as ESETlog. Include the contents of this report in your next reply.
If no threats are found then it won't produce a log.

 

[givemeabreak]

Just an FYI, foul language isn't a good thing to be using on our forum. Verbal warning here.

I highly doubt you are getting malicious emails from computerforum. You posted the gmail address so its not computerforum. At this point since we couldn't get you squared away in your original thread, I would just wipe windows and reinstall. After so much corruption, windows isn't fixable. You can try doing an online Eset scan to see if it catches anything.

Please download and run the ESET Online Scanner
Disable any antivirus/security programs.
IMPORTANT! UN-check Remove found threats
Accept any security warnings from your browser.
Check Scan archives
Click Start
ESET will then download updates, install and then start scanning your system.
When the scan is done, push list of found threats
Click on Export to text file , and save the file to your desktop using a file name, such as ESETlog. Include the contents of this report in your next reply.
If no threats are found then it won't produce a log.

Thanks for the ideas, as for "I would just wipe windows ", the computer has many useful software programs installed already, wiping all out is extremely undesirable, also when I bought this laptop it came with windows 7 pre-installed but BestBuy did not include windows 7 CD.

How about copying everything on the hard drive to a new hard drive and use a new hard drive (main benefit: if no issue it would indicate the current hard drive is a source of problem. Down side: if malicious is deeply embedded then they would also be copied over the new hard drive. Tough choice.

 

[johnb35]

Sorry for the late reply, been busy the last couple days.

All OEM computers have a recovery partition on the hard drive that you would have to boot into to reinstall windows. If you give me the make and model of computer, I can tell you what to do at startup to get into the recovery partition. Unfortunately sometimes when you are severely infected, your only recourse of action is to wipe and reinstall windows. As long as you have all installation media for the programs then you should be good to go. If there is any data that needs to be saved, you would have to transfer it to flash drives, cd's or another hdd.