i believe i was infected with the advanced virus remover program. i attempted to use Malwarebytes' anti-malware to remove it. i ran one successful scan however upon rebooting, im not sure what happened but pretty much i cannot load Vista anymore unless i go into safe mode. it keeps saying that i have a hardware error and it tries to run chkdisk. when it fails, it bluescreens. i do not remember exactly what it says but it says something about a missing HIVE file. to make matters worse, i cannot even use internet in safe mode (i booted safe mode with networking). if i try to run malware, the program automatically closes (i think its a function of the trojan). upon trying again, the program says that "i do not have enough privelages to run it which is bogus because im on an administrator account. if i uninstall and reinstall malware i can get the program to open however i cannot run it still. if i try to reboot windows from the last operable settings nothing loads and pretty much i get fatal errors on all of my loadup programs and then i get a prompt telling me that windows is going to reboot in a minute. Prior to this problem, after i had scanned for and removed "advanced virus remover" i had to reboot to finish the clean up. however, on reboot, AVR was still there on my desktop and i got an error for "project1 has had a fatal error". i looked it up a bit and i believe project 1 is also a virus or trojan. I'm just wondering if anyone could give me suggestions as to how to proceed. i was thinking of trying to USB in "highjackthis" so i could post a log but i do not have a guarantee of it working. i have ccleanered already and i had trend micro officescan client for my anti virus program before. if anyone could help me out i would be very grateful, this is the worst case of infection that i've ever had.
i forgot to mention, before i had been able to at least load up firefox. now it just automatically closes the program. internet explorer results in the same. i was trying to look up fixes for it through google search engine but i believe that anytime i tried to click a link to say bleepingcomputer or whatever it would automatically redirect me to some kind of advertisement. so, most likely probable that i have a major registry edit somewhere....Furthermore i cannot open regedit or task manager. i am told that the program is infected and that i need to run antivirus software blah blah (probably courtesy of AVR)
when i try to run malwarebytes "windows cannot access the specified device, path, or file. you may not have the appropriate permissions to access the item"
run regedit "registry edting has been disabled by your administartor"
taskmanager through typing taskmgr in run "task manager has been disabled by your administrator"
Edited by nerffej, 23 July 2009 - 10:26 AM.