1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.


Discussion in 'Virus & Other Malware Removal' started by venom7513, Jan 1, 2011.

Thread Status:
Not open for further replies.
  1. venom7513

    venom7513 Thread Starter

    Jan 1, 2011
    Hello! I am having some major issues with my Windows 7 Starter netbook. Earlier today I downloaded and tried to run an executable. It must have been viral somehow. As soon as I opened it my computer froze. When I rebooted I was presented with a BSOD (0x0000008E). I tried Safe Mode and got the same result. I tested my RAM and there does not appear to be any kind of hardware failure.

    I did some research on the BSOD and think I have Backdoor.Rustock.B . The computer will sit at the desktop for about 30 seconds before it BSODs in both Safe Mode and normal mode. There isn't enough time to run any diagnostics before kernel failure.

    I am able to boot up into the Windows Recovery Console however the System Restore wizard says that there are no restore points on the system disk. I can access the command prompt. I located my Windows installation (drive E relative to the recovery console) and tried to manually copy the SYSTEM, SAM, SECURITY, etc. hives from the included backups within the config folder however this didn't fix the problem either.

    I know that System Restore WAS working before I got this Rootkit. If I can find the registry backups, I am literate enough to copy them manually from the recovery console. Does anybody know where it stores it's registry backups on the drive?

    Also, I am able to offline edit the registry through the recovery console as well but I have no idea what I'm looking for.... Does you guys have any ideas as to where I can even start?

    Worst case scenario I can copy my data off using the recovery console and re-image my Windows partition...but I really don't want to do that. Any idea and/or suggestions would be much appreciated. :)

    Thank you!
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/972065

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice