Virus - VBS:malware-gen

Howdy!
On a rootkit scan found this VBS:malware-gen virus on my PC:
windows\system32\groupPolicy\user\registry.pol

Registry.pol was infected and moved to virus vault…

I tried to restore it but PC wants to know which program opens it…can’t locate the program or says its not there.

Now nothing works but AVAST…most icons have changed to AVAST…nothing much works at all.
Have been backing up all info for a re-format but would L O V E to fix this without having to.
Regedit opens AVAST.
Tried to download malware remover but won’t install…opens AVAST…

Any help appreciated.
Troy

Pls post requested logs:https://forum.avast.com/index.php?topic=53253.0
When a malware expert online will help you,pls wait! :slight_smile:

If possible, use System Restore to return to a time earlier than the removal. Then run the report tools Be Secure informed you about:

Please follow the directions for scans in this topic and attach as many of the logs as you can run.
Logs to assist in cleaning malware

FRST.txt, Addition.txt, Malwarebytes Anti-Malware log and aswMBR.txt. Thanks.

Thanks for the reply - System Restore does Not Work…

Can you get to the Advanced Boot Options menu? (You don’t say what OS your system is; possible to get here by tapping F8 key during startup) If so choose Repair Your Computer.

Sorry, Windows 7…Yes - Advanced boot option seems to restore back to AVAST program starting all programs…but does not go back far enough or prior to Malware infection…looks like its a reformat…bloody Malware…who makes this stuff…
Thanks for your help - Troy

If you have the Win7 DVD, then this article may be helpful in helping you restore the system without a total reformat >>>>

http://www.bleepingcomputer.com/tutorials/windows-7-recovery-environment-command-prompt/