i recently encountered a Trojan, I'm confident that the original file (and the ones it brought in) are gone, i used AVG scanning in safe mode to FIND and heal everything and it seems it did. the problem is that somewhere during this something took away my administrative properties. along with this the only audio i can get are the microsoft sounds, anything playing out of winamp or anything else will not play. winamp will even tell me that the driver is missing.

if i could get any information about restoring myself as an admin or about the sound issues it would be appreciated Try going to device manager and reinstalling the drivers.

You may also want to go here and SCROLL down to the Hijackthis instructions and post a log so we can check it to be sure the malware is actually gone.i cant go to device manager and i cant even do the first step in your intructions, i don't have administrative powers and i need help on how to remedy thisYou are going to have to get logged on as an administrator.

*sigh* how?Parents? Whos computer is it?NO ONE IS AN ADMINISTRATORHow is that possible? Someone had to make the limited account. Is this a public computer?well in guessing it was from the virus, and no its not a public computer. there are 4 accounts on the computer, when we first set everything up we were all admins but now no oneSorry, I just re-read your first post. I wasn't clear that all accounts have been restricted. If you see me not understanding something then tell me in more detail what is going on!

Log off. On the welcome screen press and hold Ctrl+Alt (both at the same time) Then press the Delete button twice. This will bring up log on options. For the user name type administrator. Do not type in a password! You should be able to log in that way. Post a Hijackthis log.

If it does ask for a password then type administrator for that as well.cant, it says that the system cannot log me on because the user name or password is incorrect, i tried it with and without the administrator as a password

whats the likely hood that I'm just going to have to reformat?Last ditch effort......

http://home.eunet.no/pnordahl/ntpasswd/Hmm, this may be a bit above my level, i think i may just end up dumping everything and starting freshSometimes that is the best choice. Without knowing exactly what is on the computer I am going to include this speech on backdoor trojans. It has some information you may want to follow through with to do with personal information (identity theft)

Again this MIGHT not apply but it never hurts to be on the safe side.



Backdoor Trojans, IRCBots and rootkits are very dangerous because they provide a means of accessing a computer system that bypasses security mechanisms and steal SENSITIVE information like passwords, personal and financial data which they send back to the hacker. Remote attackers USE Backdoor Trojans as part of an exploit to to gain unauthorized access to a computer and take control of it without your knowledge.

Read this article: Danger: Remote Access Trojans.

If your computer was used for online banking, has credit card information or other sensitive data on it, all passwords should be changed immediately to include those used for banking, email, eBay and forums. You should consider them to be compromised. They should be changed by using a different computer and not the infected one! If not, an attacker may get the new passwords and transaction information. Banking and credit card institutions should be notified of the possible security breach.

Your PC has likely been compromised and there is no way to be sure the computer can ever be trusted again. It is dangerous and incorrect to assume that because the Backdoor Trojan has been removed the computer is now secure. Many experts in the security community believe that once infected with this type of malware, the best course of action is to reformat and reinstall the OS.

When should I re-format? How should I reinstall?.
How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?