system
June 30, 2009, 3:26am
1
I had AVG and decided to try Avast. I uninstalled it and installed Avast. Tried uninstalling in Safe mode, installed again. Repaired… tried everything. Uninstalled even Windows Defender and turned firewall off… no Luck.
I can start Avast and scan. When I close there is no icon on the tray. When I set the Res Protection to anything other then disabled and close the setting window, if I try reopening it it is set to disabled again. It does not remember my setting.
Please help … I will post The highjack log here as well
system
June 30, 2009, 3:40am
2
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:38:56 AM, on 6/30/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe
C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe
C:\Program Files\Maxtor\OneTouch Status\maxmenumgr.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
C:\Program Files\The Foundry\bin\FlicServer.exe
C:\WINDOWS\system32\sesinetd.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\hserver.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Autodesk\mrsat3.7.1-maya2009\bin\raysat2009server.exe
C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\StacSV.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Wacom_Tablet.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\system32\WTablet\Wacom_TabletUser.exe
C:\WINDOWS\system32\Wacom_Tablet.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Documents and Settings\Sandro\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\Trend Micro\HijackThis\HijackBis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/accounts/ServiceLogin?service=mail&passive=true&rm=false&continue=http%3A%2F%2Fmail.google.com%2Fmail%2F%3Fui%3Dhtml%26zy%3Dl&bsv=zpwhtygjntrz&scc=1<mpl=default<mplcache=2
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.1.15.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: PDFCreator Toolbar Helper - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Google Gears Helper - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.23.0\gears.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: PDFCreator Toolbar - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll
O4 - HKLM..\Run: [NVHotkey] rundll32.exe nvHotkey.dll,Start
O4 - HKLM..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM..\Run: [LVCOMSX] “C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe”
O4 - HKLM..\Run: [mxomssmenu] “C:\Program Files\Maxtor\OneTouch Status\maxmenumgr.exe”
O4 - HKLM..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM..\Run: [iTunesHelper] “C:\Program Files\iTunes\iTunesHelper.exe”
O4 - HKLM..\Run: [QuickTime Task] “C:\Program Files\QuickTime\qttask.exe” -atboottime
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU..\Run: [H/PC Connection Agent] “C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE”
O4 - HKCU..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
system
June 30, 2009, 3:41am
3
O4 - HKUS\S-1-5-18..\Run: [DWQueuedReporting] “C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe” -t (User ‘SYSTEM’)
O4 - HKUS.DEFAULT..\Run: [DWQueuedReporting] “C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe” -t (User ‘Default user’)
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.23.0\gears.dll
O9 - Extra ‘Tools’ menuitem: &Gears Settings - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.23.0\gears.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra ‘Tools’ menuitem: Create Mobile Favorite… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.1.15.dll/206 (file missing)
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll ,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FlicServer - Unknown owner - C:\Program Files\The Foundry\bin\FlicServer.exe
O23 - Service: Google Update Service (gupdate1c9872c24478ef0) (gupdate1c9872c24478ef0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HoudiniLicenseServer - Side Effects Software Inc. - C:\WINDOWS\system32\sesinetd.exe
O23 - Service: HoudiniServer - Side Effects Software Inc. - C:\WINDOWS\system32\hserver.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\Logitech\SrvLnch\SrvLnch.exe
O23 - Service: Maxtor Service (Maxtor Sync Service) - Seagate Technology LLC - C:\Program Files\Maxtor\Sync\SyncServices.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: mental ray Satellite 3.7.1 for Maya 2009 (32 bit) (RaySat2009Server) - Unknown owner - C:\Program Files\Autodesk\mrsat3.7.1-maya2009\bin\raysat2009server.exe
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\StacSV.exe
O23 - Service: Performance Logs and Alerts SysmonLogavg8emc (SysmonLogavg8emc) - Unknown owner - C:\WINDOWS\system32\AgCPanelSimplifiedChinesex.exe (file missing)
O23 - Service: TabletServiceWacom - Wacom Technology, Corp. - C:\WINDOWS\system32\Wacom_Tablet.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
–
End of file - 13387 bytes
system
June 30, 2009, 3:42am
4
I could not run hijackthis until I changed the name of the file to something different.
Changed to hijackBis.exe and it worked like a charm… weird… Other problems still there.
Please, post the last 300-350 lines of avast log: C:\Program Files\Alwil Software\Avast4\DATA\log\Setup.log
system
June 30, 2009, 11:59pm
7
30.06.2009 09:34:48.000 1246365288 general Started: 30.06.2009, 09:34:48
30.06.2009 09:34:48.000 1246365288 general Running setup_av_pro-537 (1335)
30.06.2009 09:34:48.000 1246365288 system Operating system: WindowsXP ver 5.1, build 2600, sp 3.0 [Service Pack 3]
30.06.2009 09:34:48.000 1246365288 system Memory: 14% load. Phys:2097151/2097151K free, Page:4194303/4194303K free, Virt:2069088/2097024K free
30.06.2009 09:34:48.000 1246365288 system Computer WinName: YODA
30.06.2009 09:34:48.000 1246365288 system Windows Net User: YODA\Sandro
30.06.2009 09:34:48.000 1246365288 general Cmdline: /downloadpkgs /noreboot /updatevps /silent /progress
30.06.2009 09:34:48.000 1246365288 general DldSrc set to inet
30.06.2009 09:34:48.000 1246365288 general Operation set to INST_OP_UPDATE_GET_PACKAGES
30.06.2009 09:34:48.000 1246365288 general Old version: 537 (1335)
30.06.2009 09:34:48.000 1246365288 registry Deleted registry: Software\Alwil Software\Avast\4.0\UpdateReady
30.06.2009 09:34:48.000 1246365288 system Using temp: C:\DOCUME~1\Sandro\LOCALS~1\Temp_av_proI.tm~a03884 (34989M free)
30.06.2009 09:34:48.000 1246365288 general SGW32P::CheckIfInstalled set m_bAlreadyInstalled to 1
30.06.2009 09:34:48.000 1246365288 internet SYNCER: Agent=Syncer/4.80 (av_pro-1335;p)
30.06.2009 09:34:48.000 1246365288 system Computer DnsName: yoda
30.06.2009 09:34:48.000 1246365288 system Computer Ip Addr: 192.168.2.163
30.06.2009 09:34:48.000 1246365288 system Installed in: C:\Program Files\Alwil Software\Avast4 (34989M free)
30.06.2009 09:34:48.000 1246365288 internet SYNCER: Type: use IE settings
30.06.2009 09:34:48.000 1246365288 internet SYNCER: Auth: another authentication, use WinInet
30.06.2009 09:34:48.000 1246365288 package Part prg_av_pro-537 is installed
30.06.2009 09:34:48.000 1246365288 package Part vps-9060700 is installed
30.06.2009 09:34:48.000 1246365288 package Part news-50 is installed
30.06.2009 09:34:48.000 1246365288 package Part setup_av_pro-537 is installed
30.06.2009 09:34:48.000 1246365288 package Part jrog-131 is installed
30.06.2009 09:34:48.000 1246365288 general Old version: 537 (1335)
30.06.2009 09:34:48.000 1246365288 general GUID: 3c4ae78b-7e73-4173-9588-1d87eb5660eb
30.06.2009 09:34:50.000 1246365290 general Server definition(s) loaded for ‘main’: 255 (maintenance:0)
30.06.2009 09:34:50.000 1246365290 general SelectCurrent: selected server ‘Download915 AVAST Server’ from ‘main’
30.06.2009 09:34:50.000 1246365290 internet SYNCER: Type: use IE settings
30.06.2009 09:34:50.000 1246365290 internet SYNCER: Auth: another authentication, use WinInet
30.06.2009 09:34:50.000 1246365290 internet SYNCER: Agent=Syncer/4.80 (av_pro-1335;f)
30.06.2009 09:34:51.000 1246365291 internet Used server: http://74.86.96.162/iavs4x
30.06.2009 09:34:51.000 1246365291 internet Used server: http://74.86.96.162/iavs4x
30.06.2009 09:34:51.000 1246365291 file GetFileWithRetry: servers.def.vpu downloaded .
30.06.2009 09:34:52.000 1246365292 general Server definition(s) loaded for ‘main’: 269 (maintenance:0)
30.06.2009 09:34:52.000 1246365292 general SelectCurrent: selected server ‘Download766 AVAST Server’ from ‘main’
30.06.2009 09:34:52.000 1246365292 internet SYNCER: Type: use IE settings
30.06.2009 09:34:52.000 1246365292 internet SYNCER: Auth: another authentication, use WinInet
30.06.2009 09:34:53.000 1246365293 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:34:53.000 1246365293 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:34:53.000 1246365293 file GetFileWithRetry: prod-av_pro.vpu downloaded .
30.06.2009 09:34:53.000 1246365293 package LoadProductVpu: C:\Program Files\Alwil Software\Avast4\Setup\prod-av_pro.vpu
30.06.2009 09:34:53.000 1246365293 package LoadPartInfo: jrog = jrog-147 returned 00000000
30.06.2009 09:34:53.000 1246365293 package LoadPartInfo: news = news-50 returned 00000000
30.06.2009 09:34:53.000 1246365293 package LoadPartInfo: program = prg_av_pro-537 returned 00000000
30.06.2009 09:34:53.000 1246365293 package LoadPartInfo: setup = setup_av_pro-537 returned 00000000
30.06.2009 09:34:53.000 1246365293 package LoadPartInfo: vps = vps-9062900 returned 00000000
30.06.2009 09:34:53.000 1246365293 package LoadProductVpu: C:\Program Files\Alwil Software\Avast4\Setup\prod-av_pro.vpu ended with 00000000
30.06.2009 09:34:54.000 1246365294 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:34:54.000 1246365294 file GetFileWithRetry: part-vps-9062900.vpu downloaded and verified
30.06.2009 09:34:54.000 1246365294 package Part vps-9062900 was set to be installed
30.06.2009 09:34:54.000 1246365294 package DeleteObsoletePackages: Removed part-vps-9060700.vpu
30.06.2009 09:34:54.000 1246365294 general Part of license key: W24471832H1400A0511
30.06.2009 09:34:54.000 1246365294 package IsFullOkay: vps-9062900.vpu - not okay (doesn’t exist)
30.06.2009 09:34:55.000 1246365295 package IsFullOkay: vpsm-9062900.vpu - not okay (doesn’t exist)
30.06.2009 09:34:55.000 1246365295 package IsFullOkay: vpsm-9062900.vpu - not okay (doesn’t exist)
30.06.2009 09:34:55.000 1246365295 package Packages before download
30.06.2009 09:34:55.000 1246365295 package Vpu: C:\Program Files\Alwil Software\Avast4\Setup\vps-9060700.vpu, size: 25900594. md5: F8E25FC9C069206D957B8E23E3B68BFC, computemd5 returned 0x00000000, sig: 5961AA50D99C6D307EC9C2B8C7F28672B28E723CA6139532A3693D7E3CBF2A5D2F0DEE77C1C5C1F8 returned 0x00000000
system
July 1, 2009, 12:01am
8
30.06.2009 09:34:58.000 1246365298 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:34:58.000 1246365298 file GetFileWithRetry: vps-9060800-9060700.vpu downloaded and verified
30.06.2009 09:34:58.000 1246365298 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9060800-9060700.vpu, returned 0x00000000
30.06.2009 09:35:00.000 1246365300 package PerformDiff: Ok
30.06.2009 09:35:01.000 1246365301 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:01.000 1246365301 file GetFileWithRetry: vps-9060900-9060800.vpu downloaded and verified
30.06.2009 09:35:01.000 1246365301 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9060900-9060800.vpu, returned 0x00000000
30.06.2009 09:35:02.000 1246365302 package PerformDiff: Ok
30.06.2009 09:35:03.000 1246365303 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:03.000 1246365303 file GetFileWithRetry: vps-9061000-9060900.vpu downloaded and verified
30.06.2009 09:35:03.000 1246365303 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9061000-9060900.vpu, returned 0x00000000
30.06.2009 09:35:03.000 1246365303 package PerformDiff: Ok
30.06.2009 09:35:05.000 1246365305 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:05.000 1246365305 file GetFileWithRetry: vps-9061100-9061000.vpu downloaded and verified
30.06.2009 09:35:05.000 1246365305 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9061100-9061000.vpu, returned 0x00000000
30.06.2009 09:35:05.000 1246365305 package PerformDiff: Ok
30.06.2009 09:35:06.000 1246365306 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:06.000 1246365306 file GetFileWithRetry: vps-9061200-9061100.vpu downloaded and verified
30.06.2009 09:35:06.000 1246365306 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9061200-9061100.vpu, returned 0x00000000
30.06.2009 09:35:06.000 1246365306 package PerformDiff: Ok
30.06.2009 09:35:07.000 1246365307 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:07.000 1246365307 file GetFileWithRetry: vps-9061300-9061200.vpu downloaded and verified
30.06.2009 09:35:07.000 1246365307 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9061300-9061200.vpu, returned 0x00000000
30.06.2009 09:35:07.000 1246365307 package PerformDiff: Ok
30.06.2009 09:35:08.000 1246365308 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:08.000 1246365308 file GetFileWithRetry: vps-9061400-9061300.vpu downloaded and verified
30.06.2009 09:35:08.000 1246365308 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9061400-9061300.vpu, returned 0x00000000
30.06.2009 09:35:08.000 1246365308 package PerformDiff: Ok
30.06.2009 09:35:10.000 1246365310 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:10.000 1246365310 file GetFileWithRetry: vps-9061500-9061400.vpu downloaded and verified
30.06.2009 09:35:10.000 1246365310 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9061500-9061400.vpu, returned 0x00000000
30.06.2009 09:35:10.000 1246365310 package PerformDiff: Ok
system
July 1, 2009, 12:02am
9
30.06.2009 09:35:12.000 1246365312 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:12.000 1246365312 file GetFileWithRetry: vps-9061600-9061500.vpu downloaded and verified
30.06.2009 09:35:12.000 1246365312 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9061600-9061500.vpu, returned 0x00000000
30.06.2009 09:35:12.000 1246365312 package PerformDiff: Ok
30.06.2009 09:35:14.000 1246365314 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:14.000 1246365314 file GetFileWithRetry: vps-9061700-9061600.vpu downloaded and verified
30.06.2009 09:35:14.000 1246365314 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9061700-9061600.vpu, returned 0x00000000
30.06.2009 09:35:14.000 1246365314 package PerformDiff: Ok
30.06.2009 09:35:14.000 1246365314 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:14.000 1246365314 file GetFileWithRetry: vps-9061800-9061700.vpu downloaded and verified
30.06.2009 09:35:14.000 1246365314 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9061800-9061700.vpu, returned 0x00000000
30.06.2009 09:35:14.000 1246365314 package PerformDiff: Ok
30.06.2009 09:35:15.000 1246365315 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:15.000 1246365315 file GetFileWithRetry: vps-9061900-9061800.vpu downloaded and verified
30.06.2009 09:35:15.000 1246365315 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9061900-9061800.vpu, returned 0x00000000
30.06.2009 09:35:15.000 1246365315 package PerformDiff: Ok
30.06.2009 09:35:15.000 1246365315 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:15.000 1246365315 file GetFileWithRetry: vps-9062000-9061900.vpu downloaded and verified
30.06.2009 09:35:15.000 1246365315 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9062000-9061900.vpu, returned 0x00000000
30.06.2009 09:35:16.000 1246365316 package PerformDiff: Ok
30.06.2009 09:35:16.000 1246365316 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:16.000 1246365316 file GetFileWithRetry: vps-9062100-9062000.vpu downloaded and verified
30.06.2009 09:35:16.000 1246365316 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9062100-9062000.vpu, returned 0x00000000
30.06.2009 09:35:16.000 1246365316 package PerformDiff: Ok
30.06.2009 09:35:17.000 1246365317 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:17.000 1246365317 file GetFileWithRetry: vps-9062200-9062100.vpu downloaded and verified
30.06.2009 09:35:17.000 1246365317 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9062200-9062100.vpu, returned 0x00000000
30.06.2009 09:35:17.000 1246365317 package PerformDiff: Ok
30.06.2009 09:35:18.000 1246365318 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:18.000 1246365318 file GetFileWithRetry: vps-9062300-9062200.vpu downloaded and verified
30.06.2009 09:35:18.000 1246365318 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9062300-9062200.vpu, returned 0x00000000
30.06.2009 09:35:18.000 1246365318 package PerformDiff: Ok
30.06.2009 09:35:18.000 1246365318 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:18.000 1246365318 file GetFileWithRetry: vps-9062400-9062300.vpu downloaded and verified
30.06.2009 09:35:18.000 1246365318 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9062400-9062300.vpu, returned 0x00000000
30.06.2009 09:35:19.000 1246365319 package PerformDiff: Ok
30.06.2009 09:35:21.000 1246365321 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:21.000 1246365321 file GetFileWithRetry: vps-9062500-9062400.vpu downloaded and verified
30.06.2009 09:35:21.000 1246365321 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9062500-9062400.vpu, returned 0x00000000
30.06.2009 09:35:21.000 1246365321 package PerformDiff: Ok
30.06.2009 09:35:22.000 1246365322 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:22.000 1246365322 file GetFileWithRetry: vps-9062600-9062500.vpu downloaded and verified
30.06.2009 09:35:22.000 1246365322 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9062600-9062500.vpu, returned 0x00000000
30.06.2009 09:35:22.000 1246365322 package PerformDiff: Ok
30.06.2009 09:35:24.000 1246365324 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:24.000 1246365324 file GetFileWithRetry: vps-9062700-9062600.vpu downloaded and verified
30.06.2009 09:35:24.000 1246365324 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9062700-9062600.vpu, returned 0x00000000
30.06.2009 09:35:24.000 1246365324 package PerformDiff: Ok
30.06.2009 09:35:25.000 1246365325 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:25.000 1246365325 file GetFileWithRetry: vps-9062800-9062700.vpu downloaded and verified
30.06.2009 09:35:25.000 1246365325 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9062800-9062700.vpu, returned 0x00000000
30.06.2009 09:35:26.000 1246365326 package PerformDiff: Ok
30.06.2009 09:35:27.000 1246365327 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:27.000 1246365327 file GetFileWithRetry: vps-9062900-9062800.vpu downloaded and verified
30.06.2009 09:35:27.000 1246365327 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vps-9062900-9062800.vpu, returned 0x00000000
30.06.2009 09:35:28.000 1246365328 package PerformDiff: Ok
30.06.2009 09:35:48.000 1246365348 package DeleteObsoletePackages: Removed vps-9060700.vpu
30.06.2009 09:35:49.000 1246365349 internet Used server: http://download766.avast.com/iavs4x
30.06.2009 09:35:49.000 1246365349 file GetFileWithRetry: vpsm-9062900.vpu downloaded and verified
30.06.2009 09:35:49.000 1246365349 package DldPackage: C:\Program Files\Alwil Software\Avast4\Setup\vpsm-9062900.vpu, returned 0x00000000
30.06.2009 09:35:49.000 1246365349 package DeleteObsoletePackages: Removed vpsm-9060700.vpu
30.06.2009 09:35:49.000 1246365349 package Transferred: files 28, bytes 1452719, time 31186 ms
30.06.2009 09:35:49.000 1246365349 package Retries: total 0, files 0, servers 2
30.06.2009 09:35:49.000 1246365349 package Submit: files 0, bytes 0, time 0 ms
30.06.2009 09:35:49.000 1246365349 package Submit success: files 0, bytes 0, time 0 ms
30.06.2009 09:35:49.000 1246365349 internet Sending stats ‘http://download766.avast.com/cgi-bin/iavs4stats.cgi ’: 00000000 204
30.06.2009 09:35:49.000 1246365349 file NeedReboot=false
30.06.2009 09:35:49.000 1246365349 general Return code: 0x20000000 [Something done]
30.06.2009 09:35:49.000 1246365349 general Stopped: 30.06.2009, 09:35:49
system
July 1, 2009, 12:02am
10
30.06.2009 09:35:50.000 1246365350 general Started: 30.06.2009, 09:35:50
30.06.2009 09:35:50.000 1246365350 general Running setup_av_pro-537 (1335)
30.06.2009 09:35:50.000 1246365350 system Operating system: WindowsXP ver 5.1, build 2600, sp 3.0 [Service Pack 3]
30.06.2009 09:35:50.000 1246365350 system Memory: 14% load. Phys:2097151/2097151K free, Page:4194303/4194303K free, Virt:2069088/2097024K free
30.06.2009 09:35:50.000 1246365350 system Computer WinName: YODA
30.06.2009 09:35:50.000 1246365350 system Windows Net User: YODA\Sandro
30.06.2009 09:35:50.000 1246365350 general Cmdline: /refresh /noreboot /updatevps /silent /progress
30.06.2009 09:35:50.000 1246365350 general Operation set to INST_OP_UPDATE_INSTALL_PACKAGES
30.06.2009 09:35:50.000 1246365350 general Old version: 537 (1335)
30.06.2009 09:35:50.000 1246365350 registry Deleted registry: Software\Alwil Software\Avast\4.0\UpdateReady
30.06.2009 09:35:50.000 1246365350 system Using temp: C:\DOCUME~1\Sandro\LOCALS~1\Temp_av_proI.tm~a03404 (34988M free)
30.06.2009 09:35:50.000 1246365350 general SGW32P::CheckIfInstalled set m_bAlreadyInstalled to 1
30.06.2009 09:35:50.000 1246365350 system Installed in: C:\Program Files\Alwil Software\Avast4 (34988M free)
30.06.2009 09:35:50.000 1246365350 internet SYNCER: Type: use IE settings
30.06.2009 09:35:50.000 1246365350 internet SYNCER: Auth: another authentication, use WinInet
30.06.2009 09:35:50.000 1246365350 package Part prg_av_pro-537 is installed
30.06.2009 09:35:50.000 1246365350 package Part vps-9062900 is installed
30.06.2009 09:35:50.000 1246365350 package Part news-50 is installed
30.06.2009 09:35:50.000 1246365350 package Part setup_av_pro-537 is installed
30.06.2009 09:35:50.000 1246365350 package Part jrog-131 is installed
30.06.2009 09:35:50.000 1246365350 general Old version: 537 (1335)
30.06.2009 09:35:50.000 1246365350 general GUID: 3c4ae78b-7e73-4173-9588-1d87eb5660eb
30.06.2009 09:35:50.000 1246365350 general Entering:UpdateInstallPackages
30.06.2009 09:35:50.000 1246365350 package LoadProductVpu: C:\Program Files\Alwil Software\Avast4\Setup\prod-av_pro.vpu
30.06.2009 09:35:50.000 1246365350 package LoadPartInfo: jrog = jrog-147 returned 00000000
30.06.2009 09:35:50.000 1246365350 package LoadPartInfo: news = news-50 returned 00000000
30.06.2009 09:35:50.000 1246365350 package LoadPartInfo: program = prg_av_pro-537 returned 00000000
30.06.2009 09:35:50.000 1246365350 package LoadPartInfo: setup = setup_av_pro-537 returned 00000000
30.06.2009 09:35:50.000 1246365350 package LoadPartInfo: vps = vps-9062900 returned 00000000
30.06.2009 09:35:50.000 1246365350 package LoadProductVpu: C:\Program Files\Alwil Software\Avast4\Setup\prod-av_pro.vpu ended with 00000000
30.06.2009 09:35:50.000 1246365350 package ArePartsInstallable: 1
30.06.2009 09:36:12.000 1246365372 package vps: can’t open event Global\vpsNew.sig
30.06.2009 09:36:12.000 1246365372 package vps: updated [9062900]
30.06.2009 09:36:12.000 1246365372 package Transferred: files 0, bytes 0, time 0 ms
30.06.2009 09:36:12.000 1246365372 package Retries: total 0, files 0, servers 0
30.06.2009 09:36:12.000 1246365372 file NeedReboot=false
30.06.2009 09:36:12.000 1246365372 general Return code: 0x20000000 [Something done]
30.06.2009 09:36:12.000 1246365372 general Stopped: 30.06.2009, 09:36:12
system
July 1, 2009, 12:03am
11
Please someone help… I really wanna give avast a chance but if I cannot solve this soon I will be going back to AVG…
Thanks a lot…
system
July 1, 2009, 5:10pm
12
Problem solved.
I noticed my regedit would not start as well so went after fixing that problem.
I ran CCleaner to clean problems with my registry.
Tool a look at hijack this but found nothing suspicious.
Next I found a program called Combofix and that did the trick. I would recommend running it if you are facing similar problems…
After running combofix the machine rebooted and the avast icons are there and working properly.
Hope this solution can help others… Took me a few hours to get over this.
system
July 1, 2009, 7:12pm
13
Glad that you fixed your problem.
You will like Avast! its really a great anti virus.
Mr.Agent
Sorry not being here before. I’m having busy days. Glad you’ve found the way.