When I ran aswMBR it gave the following dialog
aswMBR.exe – entry point not found
The procedure entry point aswscnGetVirusID could not be located in the dynamic link library aswScan.dll’
I Clicked OK and it downloaded Avast for scanning
After download, it repeats the message above
Logs says Initialize success followed by
AVAST engine error: 2
When the scan runs it reports:
SuSystem.windows: c:\windows\system32\consrv.dll SUSPICIOUS
It does not appear to find any other errors.
Is aswMBR.exe running properly if the entry Point is not found? What should I do about the Suspicious consrv.dll entry?
Any information and advice is greatly appreciated.
Download ComboFix from one of the following locations: Link 1 Link 2
VERY IMPORTANT !!! Save ComboFix.exe to your Desktop
IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here
Close any open browsers.
Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
Open notepad and copy/paste the text in the quotebox below into it:
File::
C:\Windows\SysNative\enum1394.dll
NetSvc::
MSMQTriggers
Driver::
MSMQTriggers
Save this as CFScript.txt, in the same location as ComboFix.exe
Refering to the picture above, drag CFScript into ComboFix.exeWhen finished, it shall produce a log for you at C:\ComboFix.txt which I will require in your next reply.
Notes:
Do not mouse-click Combofix’s window while it is running. That may cause it to stall.
Do not “re-run” Combofix. If you have a problem, reply back for further instructions.
If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.
Thank you for your help. I ran comboFix. It produced a log that indicated that some problems were fixed. But to be honest, I don’t understand all of what is in the log. Has the malware/virus been cleaned out of the computer or is there more that I need to do? The Combofix log is attached.
A few more pieces to kill… On completion of this can you let me know what problems remain
Warning This fix is only relevant for this system and no other, using on another computer may cause problems
Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot
If you have Malwarebytes 1.6 or better installed please disable it for the duration of this run
To disable MBAM
Open the scanner and select the protection tab
Remove the tick from “Start with Windows”
Reboot and then run OTL
[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
I haven’t done much since these fixes were made. It seems fine. But I don’t know what was wrong in the first place. It is my son’s computer and he didn’t mention any problem except with the graphics when he plays games and I suspect this is a problem with the graphics card and not a virus. Are there virus/malware that makes graphics flicker when playing games? This seems to be a continuing problem. The only reason I noticed that there was a virus is that his AVAST was not updated and it was turned off and when I turned it on, the scan found some problems. So I don’t know what problem I should be looking for. I can run programs and reboot. And Windows update is asking to be updated. I will do this now. If that leads to any problem, I will let you know.