Virtumonde Again - Now cannot logon

Hi. I have an IBM Thinkpad Z60t that I am attempting to clean up for a friend of a friend. The initial symptoms were popups from "Your PC Protector", which I "successfully" removed by following procedures using Malwarebytes Anti-malware.

I went on to follow the entire Windows XP cleaning script, but after running SUPERAntiSpyware, which reported a virtumonde variant, I encountered a severe problem. After removing the malware, it asked me to reboot and I agreed. Now, Windows XP is awaiting me logging on but is not offering any user to select. I pressed CTRL-ALT-DELETE twice to get the "other" signon window, where the userid for this machine is pre-entered in the User name field, but it will not accept the correct password. Instead, I receive "The system could not log you on. Make sure your User name and domain are correct, then gype your password again. Letters in passwords must be typed using the correct case." This machine is not part of a domain and the password has been typed correctly, including case.

I have been to this point earlier in the process and restored from a backup to start over. In my previous attempt, I tried using a UBCD4WIN disk and an NT password boot disk to fix it, but the password disk software indicated that it could not open it for update and the program on UBCD4WIN appeared to work, but did not allow me to log on.

I do have a backup created just before running the antimalware software that I could restore.

Suggestions??

Thanks!!

 

Please close this thread; I restored the system from a prior backup and I am able to logon. I am going to return the laptop to the owner so she can take use it for a while, then we'll tackle the remaining malware. I'll post details of that attempt at that time.

Thanks, anyway.