Maximum PC

ok so i have this bug on my computer and its not going away. its giving me issues with administration (this is the only account on the PC.) Also we did a restore to like 2 days ago, and some files (that were NOT edited in the last 2 days) are like highlighted in a light blue and we can access or even right click them with out Windows freezing.

i cant save a log for hijack this to show. it gives me this:



MAMB and Spybot search and destroy wont get rid of it all. so idk what to do. if i could get a log from hijack this to show you. maybe i could get some assitance. also i tried running hijack this as admin. i get the same thing.

It might just be bad corruption. Have you tried running a full check disk on it? You can initiate it from cmd by typing in "chkdsk /f [drive where this file is]". So if it's on the C:\ drive, do "chkdsk /f C:". If you have to restart, let Windows do so.

"Access Denied as you do not have sufficient privileges. You have to invoke this utility running in elevated mode."

Thast what i got when i tried the chkdsk.


EDIT: oh derp.. i shouldve ran that in admin. i have to restart.


EDIT2: Ok so i did the check disk and nothing was wrong i guess. so i tried the hijackthis again and the same issue came up. so i tried to find the document and there was no "Hijackthis line" at all. a lot of icons are still shaded blue and dont allow you to do anything with them. I ran Super AntiSpyware and nothing came up.

Now, I'm not the brightest bulb in the marque but I read (lurk) at a lot of sites and seem to remember a similar situation. The answer was to create a new account, give it admin priviledges and delete the old account. Smarter people here will have more good advise, so let's see a few more possible solutions. Good luck in your recovery.....

So it turns out that the virus went in and just changed a bunch of files and folders (randomly it seems) to hidden, which is why they were shaded blue. downloaded something to show all files.

Have you tried running your anti-virus in safe mode with networking?

Have you tried to run Malwarebytes from safe mode with networking?

When in safe mode with networking, update each program and run them.

Nasty

Thanks ill try that.. im pretty sure we killed the damn bug but it wont hurt to double check.

Also.. my nickname at work is nastyman... i took a label maker and put it on my badge and its been there for the past like 4 years.. haha but we all pronounce it like "Nasty-mn" like theres no A. just a funny thought after seeing your name.

Trinity Rescue Kit
or
http://support.kaspersky.com/faq/?qid=208282173

Worth a shot if you think you have an infection.

Most viruses remove your ability to modify the hosts file,

Take ownership(rightclick->properties->security->advanced->owner and use your name)
Then give yourself the writes to modify (rightclick->properties->security->edit->add, Add your user account and give it full permissions, then modify it all you want, Make sure to set the original owner back to system when done

OR

You could have microsoft do it for you....

http://support.microsoft.com/kb/972034