• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 264
  • Last Modified:

Rights messed up by virus URGENT!!

Honnored Colleagues

I'm really in deep **** here!

A Windows7 Pro pc belonging to a VIP customer (my wife) has been strucked by virus wich it seems I have cleaned out now.
However even everything looks pretty normal I have some serious issues with user rights.

The pc was running mail with a terrible client called Incredimail 2.0.
This has been destroyed by cleaning out the virus.
There is NO WAY that you can transfer data from Incredimail unless you run a "Data Transfer" within Incredimail which is not possible because the main exe file is damaged.

Ok enough history - to the issue:

The install program fails due to missing permission to the file.
First it said, that the user to do this you needed permission from user "System" .
Then I checked rights and made sure that permission was granted to everyone.
Then I transfered ownership to local user currently logged on called "BIB"

Then I try to reinstall but now it says that I need permission from BIB???

1 Solution
Gerwin Jansen, EE MVETopic Advisor Commented:
>> This has been destroyed by cleaning out the virus.
What virus or virus(es) were cleaned from the system?
OhmitAuthor Commented:
Yeah I know this is done by the virus but isn't there a way to rebuild this?
John HurstBusiness Consultant (Owner)Commented:
Open cmd.exe with Run as Administrator. At the prompt, run SFC /SCANNOW , allow to complete and restart. Any improvement?

Do a Windows Repair:
http://windows.microsoft.com/en-CA/windows7/products/features/startup-repair  or


If these do not repair the computer, back it up and reinstall Windows.  .... Thinkpads_User
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Gerwin Jansen, EE MVETopic Advisor Commented:
>> Yeah I know this is done by the virus but isn't there a way to rebuild this?
Besides doing what thinkpads_user is suggesting, in case of a virus infection it is good to know which virus you had. This way we can lookup the virus characteristics and look for repair possibilities for that virus.
Reset security permissions to default

First install subinacl

Then download reset.cmd.txt and rename it to reset.cmd and run it as administrator


After running subinacl reboot computer and check. Before you run subinacl uninstall all security software and make sure your are not connected to the net.

Creating a new user account is a better option in case of virus infection..


Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now