Viruses found by avast

The other day i got a message from avast that there is a new version to download. I did that and today i got warnings that there was some trojans found by avast. It recommended doing a scan at boot up.

It found 102 viruses in places such as spybot, spyware terminator, system volume information, PC tools firewall, hijackthis, crawler toolbar, Izarc, WINDOWS, System etc

As a result these programs no longer work.

Why were all these missed in my weekly scans etc

Is the new version of Avast to blame? Could they be false readings?

 

It was actually yesterday when i updated avast version not the other day.

The viruses found were moved to chest.

Spyware terminator, spybot, crawler toolbar no longer work.

PS I also got a message about a crawler toolbar update which i updated. Dont know if this is to blame.

 

I have followed all the steps in the READ AND RUN ME FIRST-Malware Removal Guide.

I have attached logs as requested except Root Repeal which i have attached an error report as it would not work.

 

Last log.

 

That was due to a short lived faulty update from Avast and they have since fixed it and released this. Avast Blog: Apologies for Bad Definition Update


There are however a few things we can clean up found in your logs.

Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX Checked until you exit all browser sessions including the one you are reading in right now:

• O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

After clicking Fix checked, exit HijackThis.



Your Java is out of date.

Older versions have vulnerabilities that malicious sites can use to infect your system.

First install the new Sun Java Runtime Environment

Note: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.

Be sure to close all browser windows before beginning the install.

Remove the old version(s)

Download JavaRa
* Unzip the file and open the JavaRa.exe
* Click Remove Older Versions
* JavaRa will search for and remove any outdated version of Java and remove any that are found.
* Click Additional Tasks
* Place a check next to Remove Useless JRE Files and click Go
* Exit JavaRa
* Delete the JavaRa files from the desktop

Additional Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. To disable the JQS service if you don't want to use it, go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter. Click OK and restart your computer.



If you are not having any other malware problems, it is time to do our final steps:

1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
2. If we used Pocket Killbox during your cleanup, do the below
   • Run Pocket Killbox and select File, Cleanup, Delete All Backups
3. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
   • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
   • "%userprofile%\Desktop\combofix" /uninstall
     • Notes: The space between the combofix" and the /u, it must be there.
     • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
5. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
6. If running Vista, it is time to make sure you have re-enabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
7. Go to add/remove programs and uninstall HijackThis.
8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
9. If you are running Vista, Windows XP or Windows ME, do the below:
   • Refer to the cleaning procedures in step 3 the READ ME for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
   • Then reboot and Enable System Restore to create a new clean Restore Point.
10. After doing the above, you should work through the below link:
    • How to Protect yourself from malware!

 

Thanks Evilfantasy

Do i just re download and re install the programs that it stuffed up, such as spybot, Spyware terminator etc.

Also what about the windows files it deleted?

 

You should be able to restore the files from the Avast quarantine.

 

Unfortunately i deleted them. I think i am just going to have to re install all the programs.

In another thead in the software forum i had a problem with LGDispDrv ie whenever i used Windows media player a few times it crashes. (Thread was called LGDispDrv problems)

I was told to follow the 'read and run me first-malware removal' guide. Since this has found nothing and it still is happening does anyone know what else it could be.

 

Let them know that we are finished here and they will continue helping in your other topic. Once we get the malware removed we prefer other issues to be handled in the proper forum, Software, Hardware etc,.