AVAST not running

system · February 2, 2013, 9:37am

I have tried almost everything now, followed all recommendations on how tu get avast free edition to run correctly on my computer. Ive cleaned the computer with ccleaner, I have uninstalled avast with aswclear, restarted in safe mode, uninstalled other antiviruse program, run a malware detection program and errased troyan, a keylogger, etc., but no luck. Can anyone give other recommendation on what to do? Thanks and have a nice weekend!

CraigB · February 2, 2013, 9:42am

What AV were you using previously and how did you remove ? many removal tools can be found here http://singularlabs.com/uninstallers/security-software/ to remove remnants after a normal uninstall, after removing remnants of old AV you maybe required to repair or even reinstall avast as it could have been corrupted.

system · February 2, 2013, 9:46am

Thank you for your reply.

I was using AVG, but it was not running either so after recommendations I downloaded AVAST, but having problems as well…?

CraigB · February 2, 2013, 9:52am

Sounds like you may have a few other issues on that system, see here http://forum.avast.com/index.php?topic=53253.0 for running the necessary tools and supply the logs requested back in this thread when run.

system · February 2, 2013, 10:42am

this is the first from OTL

system · February 2, 2013, 10:50am

This is the log from aswMBR.exe

system · February 2, 2013, 10:57am

This is the log from Malware

system · February 2, 2013, 10:59am

This is the log from AdWcleaner

CraigB · February 2, 2013, 11:06am

Thankyou for the logs, I’ve notified one of the malware experts who will be on later due to time zone differences.

system · February 2, 2013, 11:08am

Thanks a million!

I will get back on and check later. Have a great day!

essexboy · February 2, 2013, 11:12am

Just checking the logs now… There is a rootkit that needs removing

CraigB · February 2, 2013, 11:13am

Your welcome, it’ll probably be around 4 hours or so.

No it wont, he’s turned up early

essexboy · February 2, 2013, 11:20am

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL

[*]Under the Custom Scans/Fixes box at the bottom, paste in the following

https://dl.dropbox.com/u/73555776/OTL_Fix.GIF


:Commands
[CREATERESTOREPOINT]

:Services 
824f8eefdcb0657c

:OTL
DRV - [2013/01/29 22:35:32 | 000,031,576 | ---- | M] (AVG Technologies) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\avgtpx86.sys -- (avgtp)
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Archivos de programa\BabylonToolbar\BabylonToolbar\1.8.7.2\bh\BabylonToolbar.dll File not found
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Archivos de programa\DVDVideoSoftTB\prxtbDVDV.dll File not found
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Archivos de programa\Yontoo\YontooIEClient.dll File not found
O2 - BHO: (uTorrentBar_ES Toolbar) - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Archivos de programa\uTorrentBar_ES\prxtbuTo2.dll File not found
O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Archivos de programa\DVDVideoSoftTB\prxtbDVDV.dll File not found
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Archivos de programa\BabylonToolbar\BabylonToolbar\1.8.7.2\BabylonToolbarTlbr.dll File not found
O3 - HKU\S-1-5-21-1417001333-2052111302-1801674531-1003\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - C:\Archivos de programa\DVDVideoSoftTB\prxtbDVDV.dll File not found
O3 - HKU\S-1-5-21-1417001333-2052111302-1801674531-1003\..\Toolbar\WebBrowser: (uTorrentBar_ES Toolbar) - {DB131C55-60C8-4ADC-84DC-9E76AB06E2DC} - C:\Archivos de programa\uTorrentBar_ES\prxtbuTo2.dll File not found
O3 - HKLM\..\Toolbar: (uTorrentBar_ES Toolbar) - {db131c55-60c8-4adc-84dc-9e76ab06e2dc} - C:\Archivos de programa\uTorrentBar_ES\prxtbuTo2.dll File not found
[C:\WINDOWS\$NtUninstallKB26733$] -> Error: Cannot create file handle -> Unknown point type

:Files
C:\WINDOWS\System32\Drivers\824f8eefdcb0657c.sys
c:\Documents and Settings\All Users\Datos de programa\BrowserProtect
C:\Archivos de programa\DVDVideoSoftTB
C:\Archivos de programa\BabylonToolbar\BabylonToolbar
C:\Archivos de programa\Yontoo

:Commands
[resethosts]
[emptytemp]
[Reboot]

[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

THEN

Download and Install Combofix

Download ComboFix from one of the following locations:
Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here

[*]Double click on ComboFix.exe & follow the prompts.
[*]Accept the disclaimer and allow to update if it asks

http://img.photobucket.com/albums/v706/ried7/NSIS_disclaimer_ENG.png

http://img.photobucket.com/albums/v706/ried7/NSIS_extraction.png

[*]When finished, it shall produce a log for you.
[*]Please include the C:\ComboFix.txt in your next reply.

Notes:

Do not mouse-click Combofix’s window while it is running. That may cause it to stall.
Do not “re-run” Combofix. If you have a problem, reply back for further instructions.
If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.

Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now

system · February 2, 2013, 11:34am

Here comes the OTL log, moving on with the Combofix now.

system · February 2, 2013, 11:55am

When installing the ComboFix I get the message that I dont have “Microsoft Windows recovery console” and that “Alternately, an existing installation of the recovery concole may be present but require updating. Without it, ComboFIx shall not attempt the fixing of some serious infections”

The ComboFix asked if it should update the Microsoft Windows recovery console. I pressed the button YES, but got the answer that it is not possible, ENTRY DENIDED.

Any recommendations?

essexboy · February 2, 2013, 12:01pm

Yes

Go to Microsoft’s website => http://support.microsoft.com/kb/310994

Scroll down to Step 1, and select the download that’s appropriate for your Operating System. Download the file & save it as it’s originally named.

Note: If you have SP3, use the SP2 package.

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools

http://img.photobucket.com/albums/v666/sUBs/RC1-4.gif

[*]Drag the setup package onto ComboFix.exe and drop it.

[*]Follow the prompts to start ComboFix and when prompted, agree to the End-User License Agreement to install the Microsoft Recovery Console.

http://img.photobucket.com/albums/v706/ried7/whatnext.png

[*]At the next prompt, click ‘Yes’ to run the full ComboFix scan.

[*]When the tool is finished, it will produce a report for you.

Please post the C:\ComboFix.txt in your next reply.

system · February 2, 2013, 1:01pm

You are fantastic!
All worked and here comes the log from ComboFix.

essexboy · February 2, 2013, 1:03pm

OK is Avast now working ?

If not then uninstall and use aswclear afterwards … Then re-install

system · February 2, 2013, 1:16pm

IT´S WORKING PERFECTLY!

You are the BEST, thank you so, so, so much! :-*

essexboy · February 2, 2013, 1:21pm

Any further problems before I tidy up ?

AVAST not running

Announcements