Win32.Heur/backdoor64/ has taken over.

What exactly havppens when you try to boot in normal mode?
There are no problems showing in your safe boot mode logs?

Please empty your Recyle Bin which has lots of file showing in it.

 

There is nothing of interest in that log and note if you are going to run Kaspersky, you really should uninstall Avast first.

Try the below.

Please do the below so that we can boot to System Recovery Options to run a scan.

For 32-bit (x86) systems download Farbar Recovery Scan Tool and save it to a flash drive.
For 64-bit (x64) systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.


Enter System Recovery Options from the Advanced Boot Options:

• Restart the computer.
• As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
• Use the arrow keys to select the Repair your computer menu item.
• Select US as the keyboard language settings, and then click Next.
• Select the operating system you want to repair, and then click Next.
• Select your user account an click Next.

On the System Recovery Options menu you will get the following options:

• Select Command Prompt
• In the command window type in notepad and press Enter.
• The notepad opens. Under File menu select Open.
• Select "Computer" and find your flash drive letter and close the notepad.
• In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
  Note: Replace letter e with the drive letter of your flash drive.
• The tool will start to run.
• When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will make a log (FRST.txt) on the flash drive. Please attach this file to your next reply. (See: How to attach)

 

Per your FRST log, Kaspersky is not uninstalled.

Also there is no malware showing. I suggest that you uninstall ALL protection type software including all of the below:

Avast
Kaspersky
Malwarebytes
SuperAntiSpyware

Then reboot your PC. After reboot run the below FRST fix which will additional force out left over drivers/services from these and will delete folder to make sure they are gone.


Download this >> View attachment fixlist.txt



Save fixlist.txt to your flash drive.

• You should now have both fixlist.txt and FRST64.exe on your flash drive.

Now reboot back into the System Recovery Options as you did previously.
Run FRST64 and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt).
Please attach this to your next message. (See how to attach)

Now see if you can boot into normal Windows.

 

You need to attach the new log I requested not the fix that I gave you.

Also you should run MGtools in normal boot mode now and attach the new MGlogs.zip file. That is if you can get it to run in normal boot mode.

 

That was explained in the black command prompt window. Take a look.

 

You still never attached the fixlist.txt log I requested from running the FRST fix. You now just attached a new scan log. And you will notice that Kaspersky is still showing up. Also you will notice that you have not been running FRST from the Recovery Environment as requested. You are running it in normal boot mode from here C:\Users\patrick\Downloads\New folder which is not what was requested.

 

I'm sorry but there has been no signs of an infection in any of the logs you had attached thus far. The only problem I say was too many drivers and services due to multiple AV/AS products. If you can borrow a Windows Boot DVD from someone, perhaps you can get in the System Recovery Options with it and use System Restore.

 

We fix them many times per week. Your logs do not show the infection.

No. Your RogueKiller log had no problems. Those are Kaspersky drivers. The Hitman Pro log you attached found nothing.