ih8puters

Yesterday I found out my computer was infected with spyware and a trojan virus. I use Norton 360 which did not detect anything. My cable company actually sent me a message saying my internet settings were changed by a virus and that I needed to run my antivirus/spyware protection software. I ran norton which said it removed something but my computer was still acting funny. I downloaded AVG which I've used in the past and it found other items which were removed. My computer ran progressivly slower and slower. I could not press ctrl, alt, delete as I get a message saying the administrator has it locked. I restarted my computer and now I get a login screen saying the computer has been locked by it's administrator and will not allow me to do anything. PLEASE HELP ME. I have absolutely no idea what I am doing. I am a real estate investor and desperately need the files stored on this computer.

Thank you

g25racer

Have you tried booting into safe mode? When the bios page (page that says your pc make) appears repeatedly hit F8 key until a black page appears. Hit the arrow down key until "safe mode (no network)" is highlighted and hit "enter".

__________________
CPU - AMD Athlon 64x2 5200+ @ 2.6ghz
Ram - 2GB Stock clock
HD - 320gb seagate & Samsung 750gb 32mb cache
GPU - XFX 8600GT XXX Zalman @ 680 or 700mhz
PSU - Ultra X-finity 600watt
OS - Vista Home Premium(32) & Ubuntu (8.04) Ultimate Ed
Audio - JVC 460watts
Control - Logitech G25 Wheel & Logitech Rumblepad 2
Games - GTR2 and LFS
-- Race Sim's for Life --

PCC_Australia

Sounds quite odd to say the least. You are the administrator of your computer aren't you? and you can remember the password? If not try the Windows defaults:

username: administrator or admin

leave the password field blank and hit ok or enter on your keyboard.

As for the Virus. Sometimes after a scan is completed and results are returned, it is good to take a look at the paths of the infected files and manually navigate to the folder where the assumed infected file is found and manually delete that file.

Let us know how you go, as far as accessing your desktop etc.

__________________
PC Credibility Australia | Easy.Flexible.Robust

Email: nick@pccredibility.com.au
Forums: http://www.pccredibility.com.au/forums
IM: nick@pccredibility.com.au

g25racer

Also. If you have both AVG and Norton installed that is BAD. You need to get rid of one of them. I recommend sticking with AVG and dump norton. Un-install norton once you get into safe mode.

__________________
CPU - AMD Athlon 64x2 5200+ @ 2.6ghz
Ram - 2GB Stock clock
HD - 320gb seagate & Samsung 750gb 32mb cache
GPU - XFX 8600GT XXX Zalman @ 680 or 700mhz
PSU - Ultra X-finity 600watt
OS - Vista Home Premium(32) & Ubuntu (8.04) Ultimate Ed
Audio - JVC 460watts
Control - Logitech G25 Wheel & Logitech Rumblepad 2
Games - GTR2 and LFS
-- Race Sim's for Life --

ih8puters

Thank you very much for the quick reply. At the log-in screen I couldn't type anything it was "grayed" out. I rebooted the computer pressing f8 as suggested by one of the previous posts. I now have AVG running another scan and it has picked up a lot of stuff. The only thing I recognize is trojan.....I see Trojan.bomka , trojan.killproc.h , trojan.goldun.u , trojan. conhook.b , trojan.Zlob.f , Trojan.PWS.cu , etc. My computer has always ran fine until this happened yesterday. AVG has identified a lot of stuff but I'm completely ignorant about this. How do I know what I'm dealing with to even begin to remove it.

PCC_Australia

You can generally look up the definitions on any known good Anti Virus manufacturers website.

Personally, i just type the name of the virus into a google search and see whether or not the virus attaches itself to a program or frequently used file within Windows itself.

If you are unsure if the file is used alot and is a core component of daily software activites, just quarantine the file to be sure.

Hope this helps

__________________
PC Credibility Australia | Easy.Flexible.Robust

Email: nick@pccredibility.com.au
Forums: http://www.pccredibility.com.au/forums
IM: nick@pccredibility.com.au

ih8puters

is it possible to get so many virus' at once? My computer was fine until yesterday. Now AVG has a HUGE list of things

ceewi1

Post a HijackThis log:

Please download the HijackThis installer from http://www.trendsecure.com/portal/en...HJTInstall.exe.

Run the installer and choose Install, indicating that you accept the licence agreement. The installer will place a shortcut on your desktop and launch HijackThis.

Click Do a system scan and save a logfile

When the Notepad window opens choose Edit -> Select All to select the entire log, and copy and paste the log into a reply post.
Most of what it lists will be harmless or even essential, don't fix anything yet.

__________________

Cheap PSUs - 2% of system costs, responsible for 28% of system deaths

ceewi1

Yes, it's not unusual for an infection to download reinforcements. I suggest you spend as little time on the Internet as possible with the infected machine.

__________________

Cheap PSUs - 2% of system costs, responsible for 28% of system deaths

ih8puters

Working on that now. I will post results ASAP