Task Manager and Regedit Disabled

W

WTFsandwich

New member
Local time
7:20 AM
Messages
13
Well, I know this is caused by malware, unfortunately. I've gotten rid of the malware itself, but I have no idea how to re enable the Task Manager or regedit. Each says "Disabled by administrator", but I'm the only account on the computer, and it's an admin account.

What should I do?

I'm on Win7 Pro x64

Thanks
 

My Computer

Computer Manufacturer/Model Number
ASUS G73Jh
OS
Windows 7 Home Premium x64
CPU
Intel Core i7 @ 2.00 GHz
Memory
6 GB DDR3
Graphics Card(s)
ATI Mobility Radeon HD 5870
Sound Card
Realtek HD Audio

My Computer

Computer Manufacturer/Model Number
HP Pavilion Elite 495UK
OS
Windows 7 Ultimate SP1 64-Bit
CPU
Intel Core i7 870 @ 2.93GHz
Motherboard
MSI 2A9C (CPU1)
Memory
8Gb Dual-Channel DDR3 @ 664MHz
Graphics Card(s)
nVidia GeForce GTX 460 1024MB dedicated RAM
Sound Card
Realtek HD Audio
Monitor(s) Displays
HP2310i
Screen Resolution
1920 x 1080
Hard Drives
1x1954GB Hitachi HDS22020ALA 330 (RAID), 1x1954GB Hitachi External for backup and storage
PSU
460W
Case
HP Elite
Cooling
Air cooled
Keyboard
Logitech K750 solar-powered keyboard
Mouse
Logitech Wireless M180 mouse
Internet Speed
2Mb
Other Info
Pure Avanti Flow Internet Radio with iPod Dock, 64Gb iPod, HP USB Speakers, Sony MDR-V500 Headphones, Sony Vaio F-Series Laptop
seavixen32 said:
I'd stab at a guess and say you haven't got rid of all the malware.

Did you carry out a scan in Safe Mode? If not, it would be advisable to do so.

Malwarebytes is a great tool to use in these cases.

You might want to check these tutorials:

Regedit - Enable or Disable - Vista Forums

Task Manager - Enable or Disable - Vista Forums
Click to expand...

I approve of this post. If you use malwarebytes in safe mode with networking (so it can update if it needs too) you may even negate having to do the other stuff.
 

My Computer

Computer Manufacturer/Model Number
Insane hobo technologies. ;-)
OS
Windows 7 x64
CPU
Intel i7 2600k
Motherboard
Asrock z68 extreme 4 gen 3
Memory
G.skill Ripjaw 16gigs @ 1866
Graphics Card(s)
Nvidia gtx580 (evga)
Sound Card
Integrated HD audio + hdmi
Monitor(s) Displays
24" ASUS widescreen + 42" insignia
Screen Resolution
1080p (1920x1080)
Hard Drives
128 Samsung 830
256 Samsung 840
3 x 1tb storage drive (various)
1 western digital 1tb (eSATA)
1 Seagate 1tb (eSATA)
PSU
1 kilowatt SLI/Crossfire rated Silverstone modular
Case
NZXT Phantom + additional 220 fan
Cooling
Zalmann
Keyboard
Microsoft wireless 3000 (v2)
Mouse
MS - wireless 5000 (bluetrack)
Internet Speed
depends on if you ask me or my provider.
Other Info
The above information is provided as is, and the author assumes no responsibility for issues it may cause with your sanity or fanboyism.
I did scan in safe mode, with Malwarebytes, AVG and MSE. It all came up clean. I've tried to manually fix the registry with a .reg file that has

REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableRegistryTools"=dword:00000000
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableRegistryTools"=dword:00000000

in it.

That didn't work. Nor did running

REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_DWORD /d 0 /f

in the run box.

I did just find a program called QuickFix7 on here though, I'm going to try that out and see if it works.
 

My Computer

Computer Manufacturer/Model Number
ASUS G73Jh
OS
Windows 7 Home Premium x64
CPU
Intel Core i7 @ 2.00 GHz
Memory
6 GB DDR3
Graphics Card(s)
ATI Mobility Radeon HD 5870
Sound Card
Realtek HD Audio
Am I to understand you have both AVG and MSE installed at the same time?
 

My Computer

Computer Manufacturer/Model Number
Insane hobo technologies. ;-)
OS
Windows 7 x64
CPU
Intel i7 2600k
Motherboard
Asrock z68 extreme 4 gen 3
Memory
G.skill Ripjaw 16gigs @ 1866
Graphics Card(s)
Nvidia gtx580 (evga)
Sound Card
Integrated HD audio + hdmi
Monitor(s) Displays
24" ASUS widescreen + 42" insignia
Screen Resolution
1080p (1920x1080)
Hard Drives
128 Samsung 830
256 Samsung 840
3 x 1tb storage drive (various)
1 western digital 1tb (eSATA)
1 Seagate 1tb (eSATA)
PSU
1 kilowatt SLI/Crossfire rated Silverstone modular
Case
NZXT Phantom + additional 220 fan
Cooling
Zalmann
Keyboard
Microsoft wireless 3000 (v2)
Mouse
MS - wireless 5000 (bluetrack)
Internet Speed
depends on if you ask me or my provider.
Other Info
The above information is provided as is, and the author assumes no responsibility for issues it may cause with your sanity or fanboyism.

My Computer

Computer Manufacturer/Model Number
ASUS G73Jh
OS
Windows 7 Home Premium x64
CPU
Intel Core i7 @ 2.00 GHz
Memory
6 GB DDR3
Graphics Card(s)
ATI Mobility Radeon HD 5870
Sound Card
Realtek HD Audio
It's best to pick one security and go with it. The free version of mbam doesn't really count as it doesn't run active at all. Both the other two are attempting to gain control of certain processes and system components though and can lead to trouble down the road.

I personally prefer MSE because it's generally more stable with windows 7, though admittedly AVG has more features. In fact I'm wondering if AVG didn't decide to block access to those two items as a security measure. As some apps have that option.
 

My Computer

Computer Manufacturer/Model Number
Insane hobo technologies. ;-)
OS
Windows 7 x64
CPU
Intel i7 2600k
Motherboard
Asrock z68 extreme 4 gen 3
Memory
G.skill Ripjaw 16gigs @ 1866
Graphics Card(s)
Nvidia gtx580 (evga)
Sound Card
Integrated HD audio + hdmi
Monitor(s) Displays
24" ASUS widescreen + 42" insignia
Screen Resolution
1080p (1920x1080)
Hard Drives
128 Samsung 830
256 Samsung 840
3 x 1tb storage drive (various)
1 western digital 1tb (eSATA)
1 Seagate 1tb (eSATA)
PSU
1 kilowatt SLI/Crossfire rated Silverstone modular
Case
NZXT Phantom + additional 220 fan
Cooling
Zalmann
Keyboard
Microsoft wireless 3000 (v2)
Mouse
MS - wireless 5000 (bluetrack)
Internet Speed
depends on if you ask me or my provider.
Other Info
The above information is provided as is, and the author assumes no responsibility for issues it may cause with your sanity or fanboyism.
I use MSE and am happy with it. That and a regular scan with Malwarebytes has kept my system free from nasties.

Anyway, pleased to read you've managed to clean your system.
 

My Computer

Computer Manufacturer/Model Number
HP Pavilion Elite 495UK
OS
Windows 7 Ultimate SP1 64-Bit
CPU
Intel Core i7 870 @ 2.93GHz
Motherboard
MSI 2A9C (CPU1)
Memory
8Gb Dual-Channel DDR3 @ 664MHz
Graphics Card(s)
nVidia GeForce GTX 460 1024MB dedicated RAM
Sound Card
Realtek HD Audio
Monitor(s) Displays
HP2310i
Screen Resolution
1920 x 1080
Hard Drives
1x1954GB Hitachi HDS22020ALA 330 (RAID), 1x1954GB Hitachi External for backup and storage
PSU
460W
Case
HP Elite
Cooling
Air cooled
Keyboard
Logitech K750 solar-powered keyboard
Mouse
Logitech Wireless M180 mouse
Internet Speed
2Mb
Other Info
Pure Avanti Flow Internet Radio with iPod Dock, 64Gb iPod, HP USB Speakers, Sony MDR-V500 Headphones, Sony Vaio F-Series Laptop
Unfortunately, I spoke too soon. I guess you all were correct in assuming it's not completely gone. Task manager and regedit became disabled as soon as I restarted my computer. I removed AVG in an attempt to see if that was indeed what was stopping TM and RE. Unfortunatley, it seems they're still locked. QuickFix worked again, however, I'd like to completely remove this malware, as I'm sure it can do more damage than simply blocking these two utilities.

What do you all suggest I try?
 

My Computer

Computer Manufacturer/Model Number
ASUS G73Jh
OS
Windows 7 Home Premium x64
CPU
Intel Core i7 @ 2.00 GHz
Memory
6 GB DDR3
Graphics Card(s)
ATI Mobility Radeon HD 5870
Sound Card
Realtek HD Audio

My Computer

Computer Manufacturer/Model Number
HP Pavilion Elite 495UK
OS
Windows 7 Ultimate SP1 64-Bit
CPU
Intel Core i7 870 @ 2.93GHz
Motherboard
MSI 2A9C (CPU1)
Memory
8Gb Dual-Channel DDR3 @ 664MHz
Graphics Card(s)
nVidia GeForce GTX 460 1024MB dedicated RAM
Sound Card
Realtek HD Audio
Monitor(s) Displays
HP2310i
Screen Resolution
1920 x 1080
Hard Drives
1x1954GB Hitachi HDS22020ALA 330 (RAID), 1x1954GB Hitachi External for backup and storage
PSU
460W
Case
HP Elite
Cooling
Air cooled
Keyboard
Logitech K750 solar-powered keyboard
Mouse
Logitech Wireless M180 mouse
Internet Speed
2Mb
Other Info
Pure Avanti Flow Internet Radio with iPod Dock, 64Gb iPod, HP USB Speakers, Sony MDR-V500 Headphones, Sony Vaio F-Series Laptop
I might have only done a quick scan, now that I think about it. I'll make sure to try a full one.

I'll be back with some results (hopefully)

EDIT: It seems that the malware has hijacked svchost.exe I'm fairly sure that's a difficult or impossible removal, and I have a feeling that if I were to scan again it wouldnt be gone. Is my only other option really a full reinstall?
 
Last edited:

My Computer

Computer Manufacturer/Model Number
ASUS G73Jh
OS
Windows 7 Home Premium x64
CPU
Intel Core i7 @ 2.00 GHz
Memory
6 GB DDR3
Graphics Card(s)
ATI Mobility Radeon HD 5870
Sound Card
Realtek HD Audio
You must log in or register to reply here.
Back
Top