Computer not starting up properly

Sexy_Shell · Jul 15, 2009

Ok so my computer isn't starting up the way it should. I've done a virus check and found some trojan vundo's, used fixvundo.exe to remove them, restarted the computer and scanned again this time no viruses showing up. Got ccleaner did everything with that, defragged. Found an error in my registry inprocserver32 can't seem to get it fixed. There are some sites that I can't log into it logs me in then logs me out. Also my anti-virus program is running in the background but doesn't come up in the start up menu. Can I get some suggestions on how to fix my problem.

Thanks

chaslang · Jul 17, 2009

Welcome to Major Geeks!

Please follow the instructions in the READ & RUN ME FIRST link given futher down and attach the requested logs when you finish these instructions.

If you have problems where no tools seem to run, please try following the steps given in the below and then continue on no matter what you find. You only need to try the TDSSserv steps if having problems getting scans in the Read & Run Me First. If TDSSserv is not found, just continue on with the READ & RUN ME.

TDSSserv Non-Plug & Play Driver Disable

READ & RUN ME FIRST. Malware Removal Guide

If something does not run, write down the info to explain to us later but keep on going.

Do not assume that because one step does not work that they all will not.

After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!

Helpful Notes:

If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:

Starting your computer in Safe mode

If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware, Malwarebytes and Spybot ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.

If you cannot seem to login to an infected user account, try using a different user account (if you have one) in either normal or safe boot mode and running only SUPERAntiSpyware and Malwarebytes while logged into this other user account. Then reboot and see if you can log into the problem user account. If you can then run SUPERAntiSpyware, Malwarebytes, ComboFix and MGtools on the infected account as requested in the instructions.

To avoid additional delay in getting a response, it is strongly advised that after completing the READ & RUN ME you also read this sticky:

Don't Bump! It Only Hurts You!!!

Any additional post is a bump which will add more delay. Once you attach the logs, your thread will be in the work queue and as stated our system works the oldest threads FIRST.

Sexy_Shell · Jul 18, 2009

inprocserver32

I have an error in my registry
HKEY_CLASSES_ROOT\CLSID\(117A62F-05D2-11D1-83FC-00A0C9089C5a)\inprocserver32
(default)=C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx

I have tried to remove it from my registry and it won't let me delete it.

Also my anti-virus does not come up in the menu bar.

Please help

Sexy_Shell · Jul 18, 2009

trojan vundo

Windows defender found a trojan vundo on my computer. I ran FixVundo.exe and this is what I got.

Symantec Trojan.Vundo Removal Tool 1.5.1
The process "iexplore.exe" might be affected by the threat. It has been suspended.
The process "iexplore.exe" might be affected by the threat. It has been suspended.
The process "iexplore.exe" might be affected by the threat. It has been suspended.
The process "iexplore.exe" might be affected by the threat. It has been suspended.
The process "iexplore.exe" might be affected by the threat. It has been terminated.
The process "iexplore.exe" might be affected by the threat. It has been terminated.
The process "iexplore.exe" might be affected by the threat. It has been terminated.
The process "iexplore.exe" might be affected by the threat. It has been terminated.

C:\Documents and Settings\Admin\Favorites\?Ãsorted Bookmarks: (not scanned)
C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\Quarantine: (not scanned)
C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\SrtETmp: (not scanned)
C:\System Volume Information: (not scanned)
C:\WINDOWS\Resources\Themes\Redvista_??: (not scanned)
D:\System Volume Information: (not scanned)

Trojan.Vundo has been successfully removed from your computer!

Here is the report:

The total number of the scanned files: 91314
The number of deleted files: 0
The number of viral processes terminated: 4
The number of viral processes suspended: 4
The number of viral threads terminated: 0
The number of registry entries fixed: 0

Please help me get rid of this I really don't wanna have to format my hard drive.

Thanks

AbbySue · Jul 18, 2009

Welcome to MajorGeeks!

I have moved your other posts into this thread and deleted the duplicates. It appears you are not familiar with how a forum works so please take time to read the FAQ's or ask if you aren't sure.

In order to get your computer fixed you need to follow the instructions given to you yesterday by chaslang in post #2 of this thread. The Read & Run me is a piece of cake to follow, you just need to complete it one step at a time.

Good luck!:major

chaslang · Jul 20, 2009

Until you do what I already requested and attach the logs, there is nothing we can do for you.

Log in or Sign up

Computer not starting up properly

Sexy_Shell Private E-2

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

Sexy_Shell Private E-2

Sexy_Shell Private E-2

AbbySue MajorGeeks Administrator

chaslang MajorGeeks Admin - Master Malware Expert Staff Member