Blue Screen

I am running windows Vista 32 bit on a Toshiba Satellite Laptop and keep getting the blue screen error. The following is information relayed from windows:
Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.0.6001.2.1.0.768.3
Locale ID: 1033

Additional information about the problem:
BCCode: 50
BCP1: B3E97000
BCP2: 00000000
BCP3: 82126558
BCP4: 00000000
OS Version: 6_0_6001
Service Pack: 1_0
Product: 768_1

Files that help describe the problem:
C:\Windows\Minidump\Mini092008-01.dmp
C:\Users\Shawn Martin\AppData\Local\Temp\WER-71464-0.sysdata.xml
C:\Users\Shawn Martin\AppData\Local\Temp\WER9B73.tmp.version.txt

This problem was caused by WinNT / Bagle.gen, a known computer virus.

WinNT / Bagle.gen is also known by the following names:

Win32/Ursnif
Trojan-Downloader.Win32.Bagle.cu
W32.Beagle.GM
Troj/BagleDl-DB
Troj/Bagle-TH

I have completed the process on the RUN ME FIRST - MALWARE REMOVAL GUIDE and have attached the logs as requested. Also as requested, here are the issues I ran into while following the procedures:
1. when running msconfig I received a blue screen and said it could not start. A start up repair was then ran.
2. on my view tab there was no option to show hidden files
3. on the 1st attempt to run the super anti-spyware I received a blue scree, but on round 2 it worked
4. spybot would not work: unable to execute file, create process failed, code 193. % 1 is not a valid win32 application. I had the same issue a few days ago with spybot.
5. combofix.exe would not run (said it is not a valid win32 application).

 

I ran HJT and have attached the log. The Avenger I did not run because the program was not as described and I did not want to mess up the comp. When opened there was no insert script manually box to be checked nor was there a magnifying glass icon or a done button. There were only 3 buttons for adding script from a file, URL, or clipboard. On the bottom there was an execute button and scan for rootkits and a Auto disable rootkits check boxes. As for the files you said to delete:
C:\WINDOWS\Temp: all files were from today and could not be deleted. the only other items were the cookies, history, MP telemetry submit, sxs temp, and temp internet files folder all of which I did not delete.
C:\Documents and Settings\%username%\Local Settings\Temp: Access was denied to the documents and settings folder.
I have been able to run Spybot since the original steps taken just prior to these and have removed several infections with it.
If there is any further insight into this please let me know. Thank you.

 

I ran the program and it ave some sort of error message about the HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\german.exe. I do not however remember exactly what it said. I attempted to retrieve the log and in the avenger folder there was a rar file. inside there was the text file as you described but it ask for a password for the encrypted file. That is where I am at for now.

 

Again I am getting errors and so not to hurt the comp I aborted the Avenger program to be safe. The error I am getting is the same as before.

Error: Invalid registry syntax in command:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run drvsyskit
Only register keys under the HKEY_LOCAL_MACHINE hive are accessible to this program.
Skipping line. (Register Key deletion mode)

I hit ok and proceeded but got a similar message except it said "...\run german.exe" (rather than drvsyskit as it did above).

If I may ask, what is this procedure going to do? I get the warning of how powerful the Avenger program is and I do not want to have to reformat my comp.

 

here are the logs from the 2 programs.

 

I attempted as directed and received the following error message:
Cannot import C:\Users\Shawn Martin\Desktop\fixME.reg: The specific file is not a registry script. You can only import binary registry files from within the registry editor.
I have stopped at this point in the directions.

 

I retried it and it worked. I have completed the other steps as well. Thank you for all of your help with this. I run the newest version of the free edition of AVG. Is this good enough protection? I don't really want to purchase any programs.