Can't access Windows Vista

Norgel · Jul 23, 2010

Hi Geeks!

Recently I encountered a problem which I would describe as worst case scenario: Suddenly I got a popup message roughly resembling a windows alert window that said something like "You will be logged off shortly" (or something like that). After that the computer went down. Upon restarting Windows Vista 32 boots until the loading bar appears but then crashes and reboots.

All my attempts to access desktop (i.e. Safe Mode, Last known good config etc.) would not work. Same goes for auto repair function of the Windows CD.

I tried "Hiren's BootCD" and managed to boot MiniXP. From there I ran "SuperAntiSpyware" which detected "Rootkit.Unclassified/USBHubB". Removing it with SAP made no difference whatsoever. I tried other tools on the CD but had a hard time getting them to work. I got a lot of error messages which kinda confused me completely.

With "UBCD4WIN" I tried to establish network connection with my Laptop, but failed because my network controller could not be addressed.

When searching with "Avira AntiVir Rescue System" it detected "TR/Dropper.gen" within the windows user folder, but (of course) could not remove it. "Rootkit.Unclassified/USBHubB" was not detected by Avira.

I've read your FAQ on how to deal with Malware under Vista, but I simply can't imagine how I might run the programs named there without proper desktop access on my computer letting alone posting the coresponding logs without network access. :confused

As you can imagine I am pretty desperate by now and I would be very thankful for any advice!

Norgel

P.S.: I'm not a native speaker, but I swear I've given my best to explain my problem as good as I can!

Kestrel13! · Jul 23, 2010

Moved your thread Norgel because without you being up and running in order to work through our malware removal procedures we cannot help. Hopefully the good people here in software can assist you.

TimW · Jul 23, 2010

You can try creating this disc on another computer and then booting your infected computer to it:

Kaspersky Rescue Disk.

Norgel · Jul 24, 2010

Kaspersky found and terminated 15 infections. But to no avail. Bootup sequence was still interrupted afterwards.

Luckily I found an old image of my HD on my USB storage and was able to recover that. I still gotta update drivers, programs and stuff, but that's by far better than reinstalling the whole OS.

Anyway thx for your help! :wave

DavidGP · Jul 24, 2010

Norgel said: ↑

Luckily I found an old image of my HD on my USB storage and was able to recover that. I still gotta update drivers, programs and stuff, but that's by far better than reinstalling the whole OS.
Click to expand...

Good stuff and cheers for the update, its something thats always missed out in BACKUP BACKUP BACKUP and as you did find an old image your off and running again, just remember to make them current, I tend to do a full image of my PCs on a Wednesday and Sunday.

I do use Acronis True Image which is retail but Easeus TODO or Macrium Reflect are two free options.

Also do read over this guide How to Protect yourself from malware!

Earthling · Jul 24, 2010

Bit too late now, but if we'd known you had an image I would have suggested that initially you restore only the MBR. That would have seen off any rootkits and left your Windows system intact. Only if there were residual problems would it be necessary to restore the entire image.

As Halo says, make imaging a habit

Log in or Sign up

Can't access Windows Vista

Norgel Private E-2

Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

Norgel Private E-2

DavidGP MajorGeeks Forum Administrator - Grand Pooh-Bah Staff Member

Earthling Interplanetary Geek