Avast WEBforum
Other => Viruses and worms => Topic started by: jack840 on February 27, 2009, 03:45:59 AM
-
Cannot boot computer so cannot run any clean up. Senerio is as follows, boot starts proceeds to loading personal settings then saving setting message then loading settings again and again. Tried booting form CD no different. Removed HD from computer and placed in usb carrier then used another computer to virus test vis usb. Found rootkit lsp, js:fakeav-k, 3 trojans, 1 adware. Deleted all, replaced drive, no difference. Don't know how to get a complete boot.
-
I suggest you read the instructions, download and burn (maybe from another computer), finally use one of this rescue CD's:
1. Avira (http://www.free-av.com/en/tools/12/avira_antivir_rescue_system.html)
2. Kaspersky (http://dnl-eu10.kaspersky-labs.com/devbuilds/RescueDisk/)
3. BitDefender (http://download.bitdefender.com/rescue_cd/)
4. F-Secure (http://www.raymond.cc/blog/archives/2008/07/26/free-f-secure-rescue-cd-300-to-clean-virus-from-unbootable-windows/)
5. Dr. Web (http://www.freedrweb.com/livecd/?lng=en)
-
Thanks for suggestion.
I moved the master to a slave and added a temporary master. Then ran Dr Web and found Trojans, deleted them. Moved slave back to the master, no different still fail to boot. I then tried Avira, but it found nothing so no fix. I then ran Avast and it found a rootkit but no fix. i'm Currently rerunning DR Web again before expect any success.
I suspect the registry got hurt when the virus occurred so some address or program error is aborting the boot. just a guess. Any suggestions? I suspect a reformat and reload is inevitable.
-
I then ran Avast and it found a rootkit but no fix.
What do you mean by 'no fix'?
-
I mean nothing so far fixes or changes the original problem as explained in my first post.
-
You may have to take your PC to a computer repair shop to have them rebuild it from scratch or just dump the PC and buy a Mac, if any of the rescue CD's mentioned in Tech's post doesn't work.
-
Overinstallation can solve the problem and you won't lose your programs, settings, data, files, etc.
Just choose 'Repair' installation of Windows and install 'over' the old installation.
http://support.microsoft.com/default.aspx?scid=kb;EN-US;315341
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q314058
http://www.webtree.ca/windowsxp/repair_xp.htm
-
Already tried a re-install without any change. I suspect the registry is hurt, any help on this?
-
Were you able to boot to a safe mode?
-
Safe mode was the very first thing I tried with the same result: no boot.
-
Already tried a re-install without any change.
Does the installation stop or it finished ok and you still can't make login?
-
Note the installation completed but it still executes the same boot/shutdown loop forever. Messages are: loading personal settings then shutting down then loading personal settings so on and so no. Loop never stops.
Also my understanding is that by doing the reinstall I can no longer try more restore points because a reinstall removes all restore points.
Also I continue to run Dr Web and Avast and neither finds any more problems. Please understand to do this I have the corrupted master drive installed as a slave so I can run the scans. Still believe a registry issue now any help?
-
It could be, I think we'll never be sure. But also, I don't know how to fix it... Sorry.
-
Can't boot into safe mode either? So basically you have no control to the os whatsoever. My guess is that one of the driver is damaged by the virus which casue the system to reset itself. Since you already reinstall windows, then it shouldn't be a windows driver. Probably a video or network driver that is causing it. Hmmm...I wonder if there is a way to remove all your drivers without booting into windows.....Anybody knows how?
-
If this is the situation, maybe consider backing up all data and documents and start again... ::)
-
- How to restore Safe Boot.
The malware may have deleted the SafeBoot registry keys.
Here are some options to restore them:
http://didierstevens.wordpress.com/2006/06/26/restoring-safeboot/ (http://didierstevens.wordpress.com/2006/06/26/restoring-safeboot/)
http://didierstevens.wordpress.com/2007/02/19/restoring-safe-mode-with-a-reg-file/ (http://didierstevens.wordpress.com/2007/02/19/restoring-safe-mode-with-a-reg-file/)
Also see http://forum.avast.com/index.php?topic=26554.msg216924#msg216924 (http://forum.avast.com/index.php?topic=26554.msg216924#msg216924)
-
If worst comes to worst use nortan tools and reload your boot sector. It sounds like the virus is there. Did you try installing another hd and load windows to see if it was your hd or 3rd party devices?
-
Do you have a xp pro cd, if you have there may be a way to fix your problem.