System Restore problem after trojan.metajuan removal

Hello,

I want to thank you all for such useful forums. So I have tried running through all the steps that in the Read and Run me thread and there were a couple problems I ran into.

First off, when I tried to remove all of my quarantine files from my Norton folder, there was a specific one I couldn't remove. It's called backdoor.tidserv. It says reboot is required but everytime I reboot it manages to quarantine that file but then another copy of the backdoor.tidserv pops up with the same problem.

Also, when set to normal mode, I had to start up my computer 3 times before it would actually stop freezing at the login screen (after the 3rd time I was going to go safe mode, but it worked on the 3rd time). Don't know if that is relevant.

When I went to Add or Remove Programs, I found a few things I could uninstall that were on your list, but My Way Search Assistant, which is there, will not allow me to uninstall it (as in the option to remove it isn't there, it only says 'used rarely' but the option that should be below it doesn't exist.

I was also asked to turn off TeaTimer, which I can't do because ever since I got the trojan I have not been able to open Spybot. I've tried running it straight from it's folder as well but it just won't open. It acts like it will but doesn't.

Also, as background information as to what I have tried so far. I ran a full-system scan with Norton and it detected a Downloader, which it removed just fine, it detected backdoor.tidserv, which I mentioned above, and it detected trojan.metajuan, which it said 'Remove failed.' It then takes me to the symantec site which tells me to turn off system restore, do a full update of norton, do a full system scan, then remove added entries to the registry. I couldn't turn my system restore off because the option is grayed out in it's appropriate tab, so I got some help and figured out to turn it off manually from services.msc. After that I booted normally, did my update, did a full system scan (with the same problems still), then rebooted my computer as per symantec instructions. Finally I went to check out the registry and none of those values (for the trojan or backdoor) were existent for me to remove. I then tried a full system scan again and the two problems still persisted (backdoor for reboot and trojan removal failure). That is when I then came over here, started from scratch and am following your guys' instructions. Hope that information helps as well.

 

Upon completion of the WHOLE process in the Read and Run me section, it seems my machine is clean and working fine. I then attempted to do the final step of System Restore reset and I ran into a little problem. Luckily, the system restore options are not grayed out anymore (it must have been the trojan like I said before). So I checked the box to turn it off and clicked apply. An error message then popped up that said "System Restore encountered an error trying to enable/disable one or more drives. Please restart your machine and try again."

I restarted and tried again and it did the same thing. I've already done a full virus scan with Norton, SAS, Malwarebyte and Spybot with nothing popping up to make sure there wasn't anything left over (I could be completely wrong of course). I then tried again and same thing. So then I restarted in safe mode and tried once in my user name and once in the default admin and both times the problem persisted. All the logs are attached.

I patiently await a reply. Thanks a ton.

 

As an update, my computer is having trouble starting up. Whenever it gets to the login screen I put in my password and then it freezes. I usually have to restart the machine a couple times before it starts up right. Thought that might be useful for you guys to know. Thanks again.