I am using Windows Xp. I've tried about everything. System Restore (restore points corrupted), Regedit (no luck), Malwarebytes', Superantispyware, manually removing(removed some things, but to no avail). I discovered that it is named "ave.exe". If it is actively running and popping up with the fake threats, terminating that process with task manager momentarily gets rid of it. I deleted ave.exe from the system, but there is still something else. I have removed "disable security center/firewall/rouge av multiplier" many times using malwarebytes(I'm pretty sure it is programmed to restart every time I restart the computer). There is something I'm missing, after about an hour connected to the internet, the virus returns and seems to get more immune and hard to get around ie. at first I could easily get around it by using mozilla firefox as opposed to Internet explorer. Now the only way to get around it is to enter an address into the address bar. (I've "removed it" about 4 times now.) There is obviously a part of the virus that the antivirus programs continue to overlook. I have unchecked the box "no files hidden" so that could not be the solution either. Any suggestions? I'll post the contents of a certain folder such as HKEY, Prefetch, all of the EXE files, etc., if requested/it could help someone identify which is responsible for renewing the virus.
PS: I'm on a dial-up connection. Please don't send me on a wild goose chase downloading Spybot S&D, Dr. Web..cureit, etc.
PPS: I've tried Rkill and the majority of guides for removing it. I think I'll need more than just a reference to a guide
Any suggestions at all...?
Edited by Need HelpWith IS2010, 15 April 2010 - 08:38 PM.
Moved from Virus, Trojan, Spyware, and Malware Removal Logs ~BP