Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Win7 almost loads desktop (after malware cleanup)

28 May 2013   #1
ftcnet

7 Home Premium x64 build 7601 SP1
 
 
Win7 almost loads desktop (after malware cleanup)

My friend brings me his Win7Pro laptop with some newish variant of the Ukash malware (Trojan.Winlock). System Restore didn't work, so I used the Admin account to run Malwarebytes scan which helped. His usual login account (Fred) has admin privs, but just before it should load the desktop, it shows a black screen with just a CMD (DOS window) at the C:\Windows\system32 prompt. Typing 'explorer' loads desktop as expected.

The Admin login goes to desktop -no problem, but Fred (admin) login stops at CMD (DOS Windows) and requires 'explorer' command to proceed to desktop.

The registry entry Computer\HKEY_CURRENT_USER\Software\Microsoft\Command Processor \
had an AUTOBOOT entry to some random named file which I removed. Apparently there's still something else I need to find.

Any suggestions or ideas on how to resolve this would be most appreciated. Thanks,


My System SpecsSystem Spec
.
28 May 2013   #2
centaur78

Windows 7 ultimate x64
 
 

Please run Autoruns and then click on File> Save.. Save the file in .arn format and upload here. Will have a look
My System SpecsSystem Spec
28 May 2013   #3
Kaktussoft

Microsoft Community Contributor Award Recipient

Microsoft Windows 7 Home Premium 64-bits 7601 Multiprocessor Free Service Pack 1
 
 

Quote   Quote: Originally Posted by ftcnet View Post
My friend brings me his Win7Pro laptop with some newish variant of the Ukash malware (Trojan.Winlock). System Restore didn't work, so I used the Admin account to run Malwarebytes scan which helped. His usual login account (Fred) has admin privs, but just before it should load the desktop, it shows a black screen with just a CMD (DOS window) at the C:\Windows\system32 prompt. Typing 'explorer' loads desktop as expected.

The Admin login goes to desktop -no problem, but Fred (admin) login stops at CMD (DOS Windows) and requires 'explorer' command to proceed to desktop.

The registry entry Computer\HKEY_CURRENT_USER\Software\Microsoft\Command Processor \
had an AUTOBOOT entry to some random named file which I removed. Apparently there's still something else I need to find.

Any suggestions or ideas on how to resolve this would be most appreciated. Thanks,
In Fred account check:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce
and
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
and

HKEY_Current_User\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell
My System SpecsSystem Spec
.

28 May 2013   #4
Kaktussoft

Microsoft Community Contributor Award Recipient

Microsoft Windows 7 Home Premium 64-bits 7601 Multiprocessor Free Service Pack 1
 
 

display screenshot of fred's HKEY_CURRENT_USER\Software\Microsoft\Command Processor
My System SpecsSystem Spec
30 May 2013   #5
ftcnet

7 Home Premium x64 build 7601 SP1
 
 

.. thanks all for the replies with useful suggestions. Fred says his boss is getting him a new laptop, so he's OK with it the way it is until the new laptop arrives in a day or so.
My System SpecsSystem Spec
Reply

 Win7 almost loads desktop (after malware cleanup)




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
BSOD after desktop loads: 0x0000000a
I'm getting a BSOD within minutes of the desktop loading. I have update the mobo bios hoping it would fix things but no luck there. Any help would be greatly appreciated.
BSOD Help and Support
Malware cleanup
I had uninstalled the program yesterday and reinstalled it. This scan took about 10 minutes and then said "failed" after finding 27 processes. I ran it agin, but don't see a way to save a log. It said 17 processes, but this is all I see. I've included a pic.
System Security
BSOD after desktop loads - 0x8e
Windows 7 Home Premium 1-2 minutes after the desktop loads, the computer BSOD's out to 0x8e BS. Some say it's a memory issue, while the computer was working fine 2-3 hours straight before I restarted it. Thanks for any help. :p EDIT: Runs perfect in safe mode.
BSOD Help and Support
desktop cleanup
How do I disable the infernal obnoxious and useless desktop cleanup that keeps deleting the shortcuts I put on the desktop.
General Discussion
BSOD after desktop loads
Hi all, Been getting the BSD for the last 3 months, roughly at one per month, always just after the desktop loads. It all seemed to start when I tried to overclock my ATI Radeon HD5670 graphics card to get a bit more oomph out of it. I used the official ATI Catalyst Overdrive software and let it...
BSOD Help and Support
Desktop Cleanup Wizard
Ok, anybody.. where's the evasive Desktop Cleanup Wizard in 7?
General Discussion


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 13:21.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App