|Try the following:|
Restart your computer.
Tap the F8 key on the keyboard repeatedly until you are presented with the Boot Options screen
Using the arrow keys, select the Safe Mode with Networking option
Press the Enter key
Log in to the account you normally use
In Safe Mode with Networking, download iExplore.exe or eXplorer.exe, which are renamed copies of rKill:
Save the file to the Desktop, and double-click on it. (For Vista/Windows 7, select: Run as Administrator)
Ignore any messages, and allow the file to run until the command window closes.
Press Ctrl Alt Delete or Ctrl Shift Escape to bring up Windows Task Manager
In Task Manager go to File and select: New task (Run…)
In the Create New Taks prompt, in the Open box type: explorer.exe
For the ’Access Denied…’, again in Task Manager, New task (Run…), copy/paste the following:
cacls "C:\Windows\explorer.exe" /G Everyone:F
To fix the Shell entry, download the following Shell.reg file:
[If the file does not download, paste the following, >without the quotes<, in the address bar of your browser:
Save the file to your Desktop.
Locate the shell.reg file on your desktop and double-click on it.
When Windows asks if you would like the data to be merged, allow it to do so.
Now, download Malwarebytes’ Anti-Malware (black button with green and white icon) Save to the Desktop:
Double-click mbam-setup.exe and follow the prompts to install the program.
Run Malwarfebytes’ AntiMalware and update the program.
Once updated, select Perform Full Scan and click the scan button.
When the scan finishes, click OK in the message box, and you will see the results of the scan.
Click the Remove Selected button to get rid of the malware.
When Malwarebytes finishes, you may be prompted to reboot. If so, reboot.
>>Please post the Malwarebytes log in your reply so we can see where we are at, and plan any additional removal strategy.<<