Help needed please...

Hi.

I usually just browse these forums for help and have found what I've always been looking for but now I have a problem that I could not find any info on and would really appreciate some help on the matter.

I was online tonight when suddenly my internet connection died (ADSL USB modem). My modem just seemed to literally just shut down and would not come back online. I had to reboot in order to get back online again.

However, when I rebooted (which took a long time and I had to physically switch my laptop off in the end), I was faced with the following error message when my laptop started up again.

"One of the files containing the system's registry had to be recovered by use of a log or alternative copy. The recovery was successful."

After clicking OK, everything went back to normal. I could get back online etc... Once online, I tried doing a search for the error message I received and got only a few hits for what I typed in. The hits that I did get indicated some sort of virus or something.

I've done a complete virus scan using Norton (fully updated version) and nothing. Just spoke to my friend and he said to open Norton's settings and look in the exlusions list and see what's in there and for some reason in my exclusion list is \system volume information. I recently removed some programs from the start up menu and wonder if this is to cause. Just got a virus alert from Norton and it's found Trojan.ByteVerify and has automatically deleted it.

My firewall (Norton, fully updated) seems to be fine (I do not have SP2 as it was causing problems with my system), although I did notice the other day that I had a lot of intrusion attempts using something called "Remote Grab Trojan" or something similar. I Have also done an online virus and security check via symantec.com and this again picked up nothing at all. I have the latest version of Ad-Aware and this picked up just some trackers. Also done an online Sasser checker through Microsoft and this didn't pick anything up.

I've rebooted my laptop several times now and I only received that error message the one time.

I know this is a bit long-winded, but I tried to be as specific as possiblt for you guys.

Any help in this matter would be grealy appreciated. Keep up the excellent work

Andy

 

Hi Andy,

You are probably OK. Windows may have had an Improper Shutdown issue or the like that resulted in the error message.

system volume information - System Restore. This is protected . . .That is why we have people flush System Restore when fixing malware problems - If any malware is in there, tools and scans can't clean it and it will be restored along with everything else, should you have to use system restore.

If you really want to make sure that you are Malware-free, take a spin through our Cleanup Tutorial HERE:

READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan and Virus Removal

There are only a few of us Volunteers who regularly offer advice in this forum. Running through the above Tutorial will remove a lot of stuff that would otherwise clog a HijackThis Log and save us valuable time.

Please let us know the steps that you are able to complete and the ones that give you problems. Note that you need to be in Safe Mode with System Restore OFF (if you have it) and have the Viewing of Hidden Files ENABLED as per the instructions in the link. Make sure to do the Online Scans.

Post back and let us know how you fared. Also, send us a HijackThis Log. Please be sure to follow the instructions below:

Note that your HijackThis should be up-to-date (v1.99) and MUST be extracted to its own safe folder – C:\Program Files\HijackThis!
Should you need a Fresh Download of HJT, get it HERE: HijackThis v1.99

Also note that, before you scan, you MUST close all running programs including your web browser, e-mail and items in the system tray.

Please save your HJT Log as a .txt File and attach it via the "Manage Attachments" tool in the Additional Options section when you post.

I’m not around this forum too often these days, but somebody will try to take a look when they get a chance.

Best luck
PP