Posted 13 March 2011 - 05:14 AM
I am new to this forum so hello to everyone. I have the following problem:
Yesterday, my AV (Eset NOD 32) detected Win32.Sality NAM on my computer - it was infecting all .exe files.
I immediately rebooted in safe mode and downloaded some removal tools (stinger, rmslt from AVG, MBAM, SalityKiller) and ran them. Than I ran full NOD32 scan. Now tools tell that the computer is clean and everything seems fine except one thing.
Suddenly, I am unable to edit or create any file on drive C without administrator rights. I just have one account on my computer and it has administrator rights and I have UAC turned off.
Here is the example of the problem: I double-click on Word icon, then I open a document stored in C and it opens as read only (although in file permissions read-only is disabled). Or when I open notepad, create a new .txt and try to save it to C I get message like A required privilege is not held by the client. However, when I run notepad/Word as an administrator everything works.
I checked the drive permission and (compared to drive d) found nothing unusual. On google I found something about taking ownership but some people wrote it might damage the system if used incorrectly so I did not try it.
Can it be because of virus? Is my computer still infected? What should I do?
My OS: Fully updated Win7 x64 Ultimate.
Thank you very much for reply.