Posted 07 August 2009 - 02:23 PM
I have worked as a PC tech for 3 years, and i have come up against a problem that i am unable to solve on my wife's computer. She has a piece of spyware that is disabling any scan software i run, and making it a hidden, read-only file that even the admin account of the machine does not have access to. It has disabled:
Symantec Corporate Edition
I have found braviax.exe on the machine and got rid of that in addition to a group of processes that call themselves debug.exe, win.exe, notepad.exe, login.exe, lsass.exe, amd csrss.exe. manually deleting all of these files in safe mode has had little effect. in addition there is a dns hijack that causes all google search results to go to other pages. finally, it disables viewing of hidden files, and registry editing, though i have found ways around those restrictions.
Any help would be greatly appreciated.
ps. smitfraudfix has been slightly effective. (it does not shut down and lock up), but it says that the process list and the dns fix tools are access denied.