Any Malware experts?

So I download a lot of music off of rapidshare and mediafire, and I've dealt with Malware viruses before, but this one is a bit tricky. They call it 'Advanced Virus Remover.' I googled it, but I need to access the registry and task manager to manually remove it.
It disabled my task manager, sound card, registry, and install shield. So I can't download any potential malware removers. I have spyware doctor, but it hasn't been doing much to remove it.
I tried deleting the file, but that's as far as I can get before it comes right back.
Any ideas on what to do? I don't have an external hard drive available and really don't want to wipe the hard drive, I have a lot of important programs that I don't have the install discs for anymore and I really don't want to get rid of them.

 

Sounds like "antivirussystemPRO" < me when trying to get it off the gfs laptop.

 

Sounds like a a job for "Wipedrive".

 

NO NO NO use a program called ESET. out of all the anti-virus/firewall/spyware/malware programs this one is the best ive used..

 

download and run both malwarebytes and superantivirus. They are both free and they got rid of that pesky anti virus system pro on a guy's computer at work(took me three hours).

Turn off your computer and start it in safe mode if you can then run those programs. I couldn't start the computer in safe mode so I had to shut the computer down. I downloaded the programs on another computer and then I would turn the computer on and here is the key-you have to get the program going before the virus starts working. So as soon as your icons pop up start installing the program. Then the virus will start and block any other actions from occuring but if you have the install going you're good. Next, you will have to shut the computer down again because the virus will block you from running any programs.

Repeat the first step. Turn the computer on and as soon as the icons pop up double click the icon of the antispyware program you installed. It should scan without issue as long as you do it before the virus pops up on start up.

Now malwarebytes did not get everything so I used superantispyware as well and went through the same process as I did with the first program. Hope this helps.

 

I don't think I failed to mention my install wizard has been tampered with as well. I can't install any new software, everything is going to have to be completely manual.
When I try to open task manager or my registry, it says my administrator has disabled these privileges. (I am the admin?) I booted in safe mode and tried the administrator profile and it still had the same issue.
I'm running XP by the way.

 

If you can't run malwarebytes or superantispyware, try installing them to a flash drive on another computer and update them, then run the programs on your computer from the flash drive. Also, rename the .exe file on both to something other than what they already are. (Example: mbam.exe to cornflakes.exe)

 

Sorry, I edited my post. I gave a little more info on what worked for me.

 

Thanks a bunch. I'll give this a go.

 

www.eset.com

 

I like the cornflakes.exe. A bug tore up my mbam.exe on contact. Everytime I clicked it things got worse.

 

That must have been a nasty sucker. One good reason to run the OS on a separate drive.

 

Actually, I run a separate internet PC. When things start acting funny, I just Wipedrive it. Saves so much time.

 

Gotta stop looking at porn sites that require you to install a porn viewer. .... Or so I hear ..... I wouldn't know from personal experience.

.

 

Well... I have used malwarebytes alot to help remove some malware. However I had some at my work that were just a PITA to remove so I had to use some other programs. With luck I was able to use Avast AV to remove it since the program allowed to perform a scan upon boot. Since the program or files in question in question weren't running they wouldn't be able to stop the programs from running just yet. Also you may want to check your startup programs to see if you can disable it there.

 

No luck so far. When I boot into safe mode, I get the same error at startup before any programs are loaded - even before explorer.exe, so it's impossible to start a program before the virus begins to operate.
Grr

 

Did you try using avast? It doesn't require a boot into safe mode.

Whats the error you get during startup?

 

Just a shot in the dark, do you have your xp installation cd? If yes, you might be able to use that and use sytem restore to go back to before you had the virus. If you put the cd in and boot from that it gives you options for system restore or fixing windows errors. If you've tried everything this can't hurt.

 

I have occasionally had this happen to some of my customers. If you can remove the hard drive, and add it to a second system as a slave, it would not run any programs at startup, as windows is not running on that drive. You might try a BART_PE boot disk with malware tools also.

HTH

James