Lately Avast has been freaking out, with the Malware block pop ups:Win32:malware-gen Win32:Downloader-PKU (Trj) almost none stop. Ive scanned and scanned. I downloaded OLT. I am currently scanning a log to post on here. I dont know what to do,
follow this guide and attach (not copy and paste) logs from malwarebytes / OTL / aswMBR
http://forum.avast.com/index.php?topic=53253.0
when done, the malware removers will be notified. It may take many hours before one arrive so be patient
heres mbam
Here is OTL
heres OTL part 2 cause 1 coudlnt fit and exceeded limit
There will be a bit of a time zone delay as essexboy will be in bed now (just after 1am in the UK now). He will be back later today depending on his work hours.
Possible one of the other malware removal specialists in a closer time zone may be able to pick it up.
and the ASW i dont think it finished but it was going anywhere after malwarebytes cleanold
Hi do you experiment with a lot of toolbars ?
Warning This fix is only relevant for this system and no other, using on another computer may cause problems
Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot
Download the attached Fix.txt to your desktop
Run OTL
[*]Click the Run Fix button at the top
[*]A dialogue will open asking for the location of fix.txt
[*]Navigate to where you downloaded fix.txt and select it
[*]Click Run Fix again
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
THEN
Download and Install Combofix
Download ComboFix from one of the following locations:
Link 1
Link 2
VERY IMPORTANT !!! Save ComboFix.exe to your Desktop
- IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here
[*]Double click on ComboFix.exe & follow the prompts.
[*]Accept the disclaimer and allow to update if it asks
http://img.photobucket.com/albums/v706/ried7/NSIS_disclaimer_ENG.png
http://img.photobucket.com/albums/v706/ried7/NSIS_extraction.png
[*]When finished, it shall produce a log for you.
[*]Please include the C:\ComboFix.txt in your next reply.
Notes:
- Do not mouse-click Combofix’s window while it is running. That may cause it to stall.
- Do not “re-run” Combofix. If you have a problem, reply back for further instructions.
- If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.
Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now
I tried to run combofix but it went to blue screen of death about halfway through
OK we will need to work outside of windows
Reboot the computer and immediately press and hold F8
On the menu that appears is there a “repair my computer” option
Do you have a windows CD
If not do you have a USB drive available (4Gb)
No CD and I already tried the repair but it just keeps looping back, and yes I have a 8gb usb drive
Download the following three programmes to your desktop :
Extract wintoboot to your desktop
Insert a USB drive of at least 4GB
Run Wintoboot
http://dl.dropbox.com/u/73555776/wintoboot.JPG
Drag and drop the Windows 7 ISO to the programme in the space indicated
Tick the Format box and accept the warnings
Press Do It
You will see it progressing
http://dl.dropbox.com/u/73555776/usb%20progress.JPG
It will let you know when it is done
Then copy FRST to the same USB
http://dl.dropbox.com/u/73555776/frstwintoboot.JPG
Insert the USB into the sick computer and start the computer. First ensuring that the system is set to boot from USB
Note: If you are not sure how to do that follow the instructions Here
When you reboot you will see this although yours will say windows 7. Click repair my computer
http://i1224.photobucket.com/albums/ee362/Essexboy3/RepairVista_7275.jpg
Select your operating system
http://i1224.photobucket.com/albums/ee362/Essexboy3/RepairVista_7277202.jpg
Select Command prompt
http://i1224.photobucket.com/albums/ee362/Essexboy3/RepairVista_7277.jpg
At the command prompt type the following :
notepad and press Enter.
The notepad opens. Under File menu select Open.
Select “Computer” and find your flash drive letter and close the notepad.
In the command window type e:\frst64.exe and press Enter
Note: Replace letter e with the drive letter of your flash drive.
The tool will start to run.
When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.
Also Im still getting malware pop ups as in the title
You will do untill I can replace the services file and then get combofix running
keeps saying flashing failed
Could you do the USb from a different computer ? As the malware is probably blocking it
Nope did not work, kinda bummed i dont know why
Do you have a second USB in case that one is bad ?
do i have to put the files anywhere special or anything like for it to work
They all need to be on the same USB
The windows ISO file and FRST64
We could try A cd next if you cannot get a flash drive to work