Can someone help me? I have a Virus. [Solved/Closed]

Ask a question stuckNhole 4Posts Monday January 14, 2013Registration date January 16, 2013 Last seen - Last answered on Jan 17, 2013 at 11:04 AM by stuckNhole

I have a virus that has taken over my administrator rights. I cannot access any of my programs...including my anti virus program. I've tried some of the things mentioned on this site but nothing has work so far. I am not a geek and know little about the computer. I have tried to run my cp in safe mode ( I'm in it now) and did the (%systemroot%\system32\restore\rstrui.exe) fix that someone mentioned but it said "access is denied". I get that alot.

Can someone help me please. I have all my kids pictures and vids on here. I don't want to totally restore the computer. I've tried system restore in regular and safe modes. Nothing doing.

I want to chuck this thing through the window! Help me Obi Wan, you're my only hope.

plus moins

Kindly check the below mentioned thread:

There is a very helpful reply from the Ambucias (Moderator). Also you can seek his help on this.

Please revert for clarification.
plus moins
Thanks for your input, I really appreciate it. My problems go farther then that. I did try to download ZHPDiag2 but the virus won't let me run it. This virus has TOTAL control of what I can open and do with files, like deleting or moving and what I download. In both case I can't do anything, including deleting or moving files or downloading programs. My anti virus is not working and most of my programs are not working.

I need serious help. Pleeeeeeease...sob.
jack4rall 6525Posts Sunday June 6, 2010Registration date ModeratorStatus December 30, 2015 Last seen - Jan 15, 2013 at 06:55 AM
Greetings to both of you,

Please let me add few lines


1) When you switch ON your laptop, keep tapping the "F8" key to get "Windows

Advanced Options"( if boot menu appears, press "Esc" key and keep tapping the

F8 key). Select the option "Safe Mode with Networking" --> Press Enter

2) Download the applications from the below link.


Run the above applications as administrator by right-clicking on it and selecting the option "Run

as administrator if you are using Windows 7 OS".

Run the rkill which will terminate the malicious processes. Wait for the process to

get completed. Then, install the "Malwarebytes' Anti-Malware", update it and perform "Full Scan".

After the completion of "Full Scan" --> Click on "Show Results" --> Click on "Remove Selected"

--> Restart your PC.

Later run the ZHPDiag2 tool as per the instructions given there and paste the log url here to check if there are some traces left in your PC or not.

Good Luck
plus moins
Hello and thanks for responding to me.

I have tried that but this insidious virus will not allow it. It won' let me download anything, even in safe mode with networking. I've tried going in through cmd and putting a command in notpad to "neutralize" the administrator rights it has and then going in to download the anti-malware but it wouldn't let that happen. A pop up said it couldn't do it to re-check the spell of the path...etc.

I've been emailing my pictures to myself because it won't let me download them to cd/dvd's or a thumb drive. My vids are probably toast. I tried to down load them with no luck. All I can see to do it trying to clean the hole thing and reinstall. Pardon my tears, I can't help it.

Whoever came up with this virus should be congratulated for his intelligents and excellent abilities...shortly before being shot.

If you anybody has anything else to offer ...please do.

jack4rall 6525Posts Sunday June 6, 2010Registration date ModeratorStatus December 30, 2015 Last seen - Jan 16, 2013 at 02:02 AM
Try this 1
Click on the below hyperlink "Kaspersky Rescue Disk" and download it.
Kaspersky Rescue Disk
Click on the below hyperlinks to find the instructions regarding how to use it
USB Device
Good Luck
plus moins

Thanks for your help. I appreciate it! I downloaded the Kaspersky Rescue disc but again, it won't let me open it. When I try to run it, a window tries to open for a fraction of a second. It blinks open and closes.

I can't even open the Gateway Recovery Management to start the disc restore process. When I click it nothing happens. When I left click it and hit "open" nothing happens. When I hit "open as administrator", I get a pop up that says "Windows cannot access. Check the spelling of the name. Otherwise, there might be a problem with your network".
When I hit the "Diagnose" button I get another pop up saying: "An error occurred while troubleshopoting. I hit the details button and it says error code:0x800070005. Source: Engine. Context:Restricted.

I can't even commit computer hari screwed am I?
jack4rall 6525Posts Sunday June 6, 2010Registration date ModeratorStatus December 30, 2015 Last seen - Jan 17, 2013 at 03:28 AM
Try this 1
First back your data.
1) If its a desktop PC, then connect your hard drive to another PC, perform virus scanning on your drive and backup your data.
Click on the below link and follow the instructions to backup your data from your PC itself
2) Click on the below hyperlink "Stinger" and download the file
Copy the file in your pen drive and connect to your PC.
Start your computer from "Safe mode from command prompt".
Here I assume your pendrive drive letter as G: Now enter the below commands
G: --> Press Enter. Now your command prompt changes to G:
stinger --adl --> Press Enter. A Stinger Window will appear. Perform scanning,
Good Luck
plus moins
Hello Jack4all,

I want to thank you for your attemps to help in my virtual dark despair. But, it was just to much of a mess. I couldn't do the Gateway System Recorver in regular mode. Even though I couldn't do anything else in safe mode, I tried to get into the recovery that way for the heck of it. And it WORKED! So I just wiped it all clean and started over. Saved most of my pics through email but lost those precious vids...sniffle..."(

") Anyway, it's just a relief to have my ole' computer back in my loving arms, working away.

Thanks again. Have a wonderful life my friend.

Member requests are more likely to be responded to.

Members can monitor the statuses of their requests from their account pages.

A CCM membership gives you access to additional options.

Not a member yet?

Sign up now. It takes less than a minute and is completely free!