Member Panel

rachel82

So some nasty website downloaded a virus onto my computer. I ran Norton, got rid of the virus, re-started my computer, and now I cannot log into Windows in normal mode. When I try, it starts to log me in, but automatically logs me off. I went into Safe Mode and did a System Restore, but nope that solve the problem :icon_scra

Here's my log!

joe5

Welcome back Rachel. :smiley:

Looks pretty clean , but these can be fixed with hjt:

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - Default URLSearchHook is missing
O16 - DPF: {C4925E65-7A1E-11D2-8BB4-00A0C9CC72C3} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712/...m/6712/player/ install3.5/installer.exe

Do you remember what the virus name was , or what was removed from youre pc?

rachel82

One was Trojan.ByteVerify, another Trojan.Vundo, and the other was some variety of Bloodhound. Does Norton have a log that keeps track of these?

joe5

Originally Posted by rachel82

One was Trojan.ByteVerify,

To make sure that is gone:

Click on Start->Settings->Control Panel->Java Plug-in and click on the Cache tab. Then click on the Clear button and hit OK.
If you have Java 1.5, do this instead. Start->Control Panel->Java->Settings->Delete Files and click OK and OK.

Originally Posted by rachel82

another Trojan.Vundo, and the other was some variety of Bloodhound. Does Norton have a log that keeps track of these?

The bloodhound doesn't say anything , thats a heuristic detection and the Vundo isn't present in the hjt log , so thats either blocked or removed.

But you could give this a try anyway to double check:

Please download VundoFix.exe to your desktop.
http://www.atribune.org/ccount/click.php?id=4
Double-click VundoFix.exe to run it.
Click the Scan for Vundo button.
Once it's done scanning, click the Remove Vundo button.
You will receive a prompt asking if you want to remove the files, click YES
Once you click yes, your desktop will go blank as it starts removing Vundo.
When completed, it will prompt that it will shutdown your computer, click OK.
Turn your computer back on.
Please post the contents of C:\vundofix.txt

rachel82

I cleared the Java cache and ran the VundoFix and did not detect any files.

joe5

Give this a try:

go to start / run and in the run window type in:
sfc /scannow >enter
Have you XP CD in youre drive, and it'll run itself, replacing any missing or damaged protected XP files.

Or else a repair install of windows is an idea. You keep all youre files and settings but you have to update windows again afterwerts:

http://www.michaelstevenstech.com/XPrepairinstall.htm

rachel82

Hi Joe,

I tried the Windows repair, but I still can't log into Windows normally. It logs me right back out

Member Panel

Sponsors and Ads

Noticeboard