A friend of mine bought a pen drive and plugged into my computer,
opened up 'my computer' and 'explore'd the removable drive. There i found the files: 'Funny UST scandle.avi.exe', "xmss.exe' and 'autoruns.inf'. Suddenly the computer started acting abnormally, Folders closeing automatically and task manager not working.

I opened up 'Process explorer' and killed xmss.exe from there. Opened 'autoruns' and unchecked xmss.exe and restarted.
But after the restart, the real disaster happened. As soon as i log in(autologon) i am automatically logged out without getting any chance to do something.

I need to get my windows working again. What can i do here? Help!!!

Did you try booting in safe mode. If not try and run your antivirus software. Also try using vcleaner if you can log in safe mode.

what's vcleaner?

I'll suggest you to download NOD32 or Kaspersky AntiVirus 7 and scan your computer. They are the best antivirus in the market.

www.eset.com for NOD32
www.kaspersky.com for KAV7

try this http://thinkdigit.com/forum/showthread.php?t=78794

I recommend to install Kaspersky Internet Security 7 to remove all the spywares and viruses that are in ur system

chk ma thread which Harry Potter gave ya

AVG

Turn off system restore, and do full online scan.
Few good you can find here:
http://www.techhunt.org/node/72

AVG
Kapsersky is lot Better than AVG.......

AVG
I would say that AVG is the worst AntiVirus in the world.:D
It has high false rates and doesn't detect simple viruses.

If Vaibhva, you use AVG, then I would say to ditch it and start using NOD32 or Kaspersky. You'll definitely come to know the difference.........:mrgreen:

hi,my system also infected .. unable to remove virus... user account blocked by virus ... it created a new user ID like limited user .. unable to view my old user account file ..there is no account icon ...

Y dont u people use good antivirus like kaspersky or NOD32 ????????

@dsuresh : Download 30-day trial of kaspersky internet security from kaspersky.com
and do a complete system scan

you use AVG, then I would say to ditch it and start using NOD32 or Kaspersky. You'll definitely come to know the difference.........:mrgreen:
right i 2 had avg but after sum time i installed NOD32 and found 20 VIRUSES :0 :-0
which avg did not find
Thank God

right i 2 had avg but after sum time i installed NOD32 and found 20 VIRUSES :0 :-0
which avg did not find
Thank God
AVG in my school was a real hell. It didn't even detect common viruses like Newfolder.exe, Brontok. And as soon as you inserted your pen drive, it got infected.
If you really want to use a FREE antivirus, then go for Avast instead. But it is also not that good if you compare it with NOD32.

AVG in my school was a real hell. It didn't even detect common viruses like Newfolder.exe, Brontok. And as soon as you inserted your pen drive, it got infected.
If you really want to use a FREE antivirus, then go for Avast instead. But it is also not that good if you compare it with NOD32.
im sayinf that i lyk nod32 more than avg

AVG in my school was a real hell. It didn't even detect common viruses like Newfolder.exe, Brontok. And as soon as you inserted your pen drive, it got infected.
If you really want to use a FREE antivirus, then go for Avast instead. But it is also not that good if you compare it with NOD32.

But for me avg is very good it dectects every virus in my pc. :cool: :cool:

how do u know if ur pc is not infected with a virus avg doesnt detect

^^ i also used nod32 to check but it doesnot found any virus...!!

^^ i also used nod32 to check but it doesnot found any virus...!!
Oh! Really??? :idea::rolleyes::rolleyes::rolleyes:

Guys

I think we should stay on topic and should not convert this thread into "Favorite Anti-virus" thread. ;)

if you can log in in safe mode, try a HijackThis scan and save a logfile. and post the contents here.

Its been a long time and I've reinstalled my OS. I need to work with my computer everyday and don't have time for all that. So 'simply' reinstalled. But its better still to keep knowledge.
Can somebody give out tuts on how to make "autorun.inf" completely disabled for all drives? That would be useful.

Its been a long time and I've reinstalled my OS. I need to work with my computer everyday and don't have time for all that. So 'simply' reinstalled. But its better still to keep knowledge.
Can somebody give out tuts on how to make "autorun.inf" completely disabled for all drives? That would be useful.
1) Go to Folder Options. Now go to the View tab.
2) Click on 'Show Hidden Files and Folders' and also uncheck 'Hide protected Hidden Files'
3) Now go to each drive and delete 'autron.inf' files......

Or you can do this........

Copy the following to a Notepad file and save it as FixAutorun.bat

@echo off
del "c:\windows\autorun.inf" /f/a
del "C:\autorun.inf" /f/a
del "D:\autorun.inf" /f /a
del "E:\autorun.inf" /f/a
del "F:\autorun.inf" /f/a
del "G:\autorun.inf" /f/a
@echo Now Restart PC in Normal Mode!
pause
exit

And then RUN it.........

http://piyushlabs.wordpress.com/downloads/
Youll find the heal here.The collection of heals here r very effective and quarantine ur registry also ..

http://piyushlabs.wordpress.com/downloads/
Youll find the heal here.The collection of heals here r very effective and quarantine ur registry also ..

Hey that's a really nice site. Thanx :)

I was looking for a hacking solution. Forcing system to limit "autorun.inf" functionality so that they do not take over context ( right mouse click) menu like 'open', 'explore' and add any other menu item and make them default.
So that 'autoruns' viruses doesn't get a chance to infect the system even accidentally.

^^^ Just go to Start -> Run

In the run dialog box, just enter the following code:

REG add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer /v NoDriveTypeAutoRun /t REG_DWORD /d 255 /f

Note: This will turn off autoplay on all drives.

OK.
Think its working.
Thanks.
And what if I had to undo changes?

http://piyushlabs.wordpress.com/downloads/
Youll find the heal here.The collection of heals here r very effective and quarantine ur registry also ..

Thanks for the great link to a great website.

^^ i also used nod32 to check but it doesnot found any virus...!!
lol

^^ He is posting just like that I suppose. He hasn't witnessed the power of NOD32...........:lol:

And what if I had to undo changes?


Type this in the run box:

REG add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer /v NoDriveTypeAutoRun /t REG_DWORD /d 0 /f

I have bartpee autoboot cd ,thise cd have own operating. first to select boot from cd-rom in bios then run this cd you will see the winxp are started, then you go in each drive and remove System Volume Information and autorun.inf or remove virus file, then remove your cd and restart your pc

^Spam?

^^
I dont think so
But why bump a 6month old thread for BartPE? :confused:
And i think the prob got solved too :rolleyes:

Problem solved 6 months ago.
Has been a long time though thanks for interest.
Might be useful to someone else.

Try Logging into the SAFE MODE and if the task manager opens,then locate the mentioned files from the process explorer and delete them if they exist. Then navigate to WINDOWS\prefetch\ and check whether the said files exist or not. If they do,then delete them and restart your computer..
If this does not works(And even if it works), try installing an antivirus and a anti-spyware program and do a system scan. I would have preferred AVAST and SPYBOT-Search and Destroy..
Gud luck

Hey Hey!!! Didn't look at the previous entry... But had a nice tym posting it..........lol

use AVG+spyware terminator(free)... havent had a virus in years... if all else fails use System Restore to restore ur system to a previous stable state...

Scan your PC with a-squared and Spyware terminator: http://tech-baby.co.cc/2008/09/13/best-combination-of-security-freewares-for-home-users

A good combination