[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 722
  • Last Modified:

XP Boot Loop

Computer with XP Home was infected with several viruses.  After trying to remove them when we rebooted we kept getting the screen that said "windows unable to boot - click here to select safe mode...etc..    

Regardless of what we selected it came right back to same screen.   We ran repair, tried fixboot - all with no success.  

We then decided to just upgrade the pc to XP Pro.  Loaded fine.  We went through the Windows update and rebooted.  Guess what?  Back in the same loop.  

Tried repair / fixboot.. No success.  We then ran Kaspersky Rescue Disk 10 Boot CD.  Found some viruses, and removed.  

Still loops as described above.  Short of reformatting the drive and starting all over - any fixes to this?
0
kwick
Asked:
kwick
1 Solution
 
David-HowardCommented:
If it's my system and infected that badly I would slave the drive, copy over data I deemed important and then reformat that drive. You have no idea what could be lurking on it at this point. (Rootkit's, etc.) You may get advice that get's you past the boot loop (and that's fine). But it's been my experience that after a point it's like putting a bandaid on a shotgun wound.
0
 
stephen_c01Commented:
Agreed, you might have a deep root kit that is now corrupt, but you cannot trust the machine again unless you wipe it.
0
 
toroblanco2002Commented:
It could be a resident virus that infect program when they load on memory or a combination of viruses like a retro virus can by pass or attack intivirus software.  Also, it could be the drive is faulty do you hear any clicking noise on the hard drive? If there's clicking noise on the hard drive more than likely the hard drive is bad and needs to be replace.
0
 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

 
SysExpertCommented:
I agree. I usually make sure I have an image of the OS of any machine that I use regularly so that I can restore to a known state.

I hope this helps !
0
 
rpggamergirlCommented:
More likely that the malware added a bad subkey or value in the registry and it's still there.
For example if malware added "Userinit.exe" subkey in the IFEO key with a bad Debugger value, and when the bad file was removed the reg entry was left behind.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\userinit.exe

You could try doing a repair of corrupted registry.
Using Recovery Console:
Windows XP - Repairing a corrupted registry hive.
http://web.mit.edu/ist/products/winxp/advanced/registry-corruption.html
0
 
Arun Kumar VCommented:
Hi,

Press F8 before the Win Xp loads and choose Do not disable automatic restart and check what is causing the issue in the blue screen, suspect for the fault hardware driver

if there is a virus scan the system with Windows Live OneCare safety scanner http://onecare.live.com/site/en-us/default.htm (Connected as a secondary to another drive)

Regards
Arun Kumar V
0
 
kwickAuthor Commented:
Reformatted, reinstalled, problem went away
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now