Avast is erasing all my windows 7 system user setting files.

Viruses and worms
1

It has happened twice in the last few days.

If I run a scan shows no infections.

2

What do you mean? Is a warning popping up? If so, attach a screenshot. For a virus/malware check…

Go Here

Download and Run in ordered list: Malwarbytes, OTL, aswMBR (Windows 7 ONLY!!)

Attach the following log files in your next reply.

  • OTL.txt
  • Extras.txt
  • aswMBR.txt
  • Malwarebytes.txt
3

Please also mention the exact version of avast as well as the vps version.
And what makes you think it is avast?

4

Let me explain in more depth then I will attach the requested info.

About 3 days ago a pop up message stated a firefox addon is bad or something.
Cant remember exactly what it said but there was a repair of fix etc button there so I clicked it.

It shut down firefox and did a bit of this and that restart then when I logged in It was like I had just installed windows fresh with my programs. Welcome to Avast etc.

I worked for a few days and set everything back up.

This morning I get an avast message Software critical.
Do like I always do and click on update Java, IE the one that need an update.

Tried to install but failed, then bang, everything is reset again.

About 10 minutes ago, sounded like my computer was trying to play a program when none was playing and system sluggish.

Thought I would try to reboot and bang everything is reset again.

About 3-4 days ago I was searching for something on the internet and went to a website and I did see a rootkit alert, so I am assuming a rootkit was installed or tried to install and Avast caught it, now I am left with this issue but I am just guessing.

5

Take my advice. Attach the requested logs.

It’s possible the rootkit might’ve compromised an important file for your user account and Avast! has targeted it.

When you save the OTL file. Before pressing OK. Ensure it’s saved as ANSI.

Refer to This picture.

http://i.imgur.com/LhlCUFT.png

Attaching those logs can help find the file. I have PM’d a remover as you mentioned Avast! warned about a Rootkit. They may have a different plan other then the usually OTL, MBAM logs.

6

Maleware Bytes is crashing at startup.

Must be a bad one.

7

try this https://helpdesk.malwarebytes.org/entries/43177446-How-do-I-use-Chameleon-to-run-Malwarebytes-Anti-Malware-on-an-infected-system-
you may also try run it from safe mode

if no success continue with OTL

8

Okay, I got it somewhat sorted out. Avast was not erasing my settings, a file was corrupted so I was being logged in with temporary settings.

I scanned with Avast and nothing found.
Could not scan with malware bytes.

I tried regedit and rename the bak file and that did not work.
Tried a couple of other things and ended up with system default settings which is even worse than temporary.

I then created a new computer user and everything is working for now, but I still lost all my settings and bookmarks etc, but it is not resetting them every time I reboot so it looks like it will run okay.

Malwarebytes is working - scanning now.

9

A little help here http://windows.microsoft.com/en-gb/windows/fix-corrupted-user-profile#1TC=windows-7 on how to get the data back from the corrupt user