Yes. It did not make a difference.
Main Topics
Browse All Topicshave a dell latitude d810 with XP sp3. seem to have a virus which has disabled regedit and task manager. can't boot into safe mode - get a blue screen stop error 0x0000007B which says may have a virus. when I go to gpedit.msc to re-enable regedit and task manager, under user config:administrative templates:there is only windows components. it does not show system options.
ran malwarebytes anti-malware - found Backdoor.Bot, quarantined and deleted successfully
This Question has been solved and asker verified All Experts Exchange premium technology solutions are available to subscription members.
Experts Exchange has been collecting answers to technology questions since 1996…3 million and counting! If you have a question, chances are we already have your answer.
If you can't find the exact answer you're looking for, ask our exclusive community of 50,000 experts. You’ll get a personalized answer from a trusted professional.
Thousands of free tech tips, tricks, how-to’s and tutorials are available in our peer reviewed articles section. See for yourself how smart our experts are, no login required.
Access the answers to your technology questions today.
30-day free trial. Register in 60 seconds.
Members of the expert community talk about why the experience at Experts Exchange is different than what you will find anywhere else.

Try it out and discover for yourself.
30-day free trial. Register in 60 seconds.
Join the community of experts here and help other tech pros by answering question in your area of expertise. You can earn FREE access to all Experts Exchange's premium features and resources.
Try resetting local group policy to defaults. This procedure should work, http://escapelogic.com/mai
First of all, check the filtering options in Group Policy - Administrative Templates (Right Click - View - Filtering - Make sure that nothing is filtered).
If this is not the case, do the following:
1. Right click Administrative Templates under User Configuration
2. Choose Add/Remove Templates
3. Click the button that says "Add"
4. If the window does not already take you there, browse to %windir%\inf\ (ie. c:\windows\inf\)
5. Choose the system.adm template
6. Click the button that says "Close"
Also another solution to resetting group policy is to simply delete the %Systemroot%\System32\Grou
Try making a backup of the profile that is affected by logging in as another user (You may need to reboot) and renaming that users profile folder located in %Systemroot%\documents and settings\. By doing this the next time you log onto the computer you computer will start a fresh profile. All you need to do from there is copy your fav's documents desktop and any other items you have in your old profile to the new one.
Be sure to virus scan your old profile items prior to copying them back to the new one.
One example would be if you normally logged in as skitterling with luck there will be a folder in %systemroot%\documents and settings called skitterling all you need to do is log in as an admin and rename this folder to skitterling.old. With any luck When you next log in as skitterling your profile and settings will be set back to default. all you need to do then is copy your desktop fav's and documents from the skitterling.old folder to the new skitterling folder.
You can use Panda Active Scan to detect what kind of "malicious software" you are dealing with: http://www.activescan.com.
What do you mean by "won't update"? Do you get an error message? I have just run a full system scan in my machine and worked perfectly...
If you want to "cure" your machine, the first thing that you need to do is use the best antivirus software out there.
I would definitely recommend Panda Active Scan since it's free (at least for viruses, worms and Trojans) and has minimum installation needs.
Download a program called security task manager here, http://www.neuber.com/task
For example, not more than a week ago I had a workstation which after a few minutes post bootup it would stop wanting to load any new programs. Security task manager showed a DLL running in System32 which I could not find (was running in kernel mode). I was able to kill it with security task manager and then rename the dll from a prompt (if you cant see the file it doesnt mean you cant do stuff to it from a prompt). After rebooting it did not load again, and the workstation hasn't had an issue since.
Hmmm.. I have read all the comments and would suggest you to download ComboFix and save it with a different name like CoF.exe or something different from the actual filename. Then disable your antivirus and firewall and run it. Do not use mouse or keyboard while its running though. The virus that you might have in your system might prevent the installation of antiviruses if it can recognise the name, so best to rename all scanners and use.
Secondly, download SuperAntiSpyware, update it and do a scan. Don't forget to change the name after downloading though.
Thirdly, you can send us a HijackThis log after doing the scans, that will help us see what is still left on your system.
Hope it helps.
Business Accounts
Answer for Membership
by: epochassetPosted on 2009-03-19 at 11:04:34ID: 23932308
Did you try booting with last-known good config option on the bootup F8 menu?