Jump to content

Virus/Malware won't let me run any anti virus/malware programs

Recommended Posts

i have been running what i thought was avast internet security 2011. last week it said i was unprotected and clicking Fix Now and Update Engine did nothing. I uninstalled it and used avast removal tool. I have installed nod32, avast free, combofix, antispyware, hijackthis, Prevx 3, and malwarebytes and all of these programs install but shut down after scan starts. Using combofix i have come to learn that avast real time shields, i assume from the internet security version, are always running, although i cannot find any trace of them on my computer. After these programs shut down, i try to reopen them and notice each icon has changed to a generic .exe icon. They will not open and I'm told i do not have permission to run these. Please help me. I have tried everything i can think of. One other thing, i ran avast free and before it stopped working i hurried and ran a boot time scan and it said i had a virus and i chose to put it in the chest but it said it could not. I also combofix in safemode and i did get the .txt from after it ran, but i'm not sure what it says. ComboFix.txt I have tried all of these programs in safe mode and combofix is the only one that would run. Any suggestions will be very appreciated. Thank you.

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

Please download exeHelper from one of these two places:



Save it to your Desktop and run it. When it finishes, restart your computer and see if you can run .exe files now.

If so, please update MBAM, run a Quick Scan, and post its log.

Next, download DDS by sUBs and save it to your Desktop.

Double-click on the DDS icon and let the scan run. When it has run two logs will be produced, please post only DDS.txt directly into your reply.

Link to post
Share on other sites

  • Staff


In the future, please do not attach your logs unless otherwise specified.

Please visit this webpage for instructions for running ComboFix:


  • When the tool is finished, it will produce a report for you.
  • Please post the C:\ComboFix.txt along with a new DDS log so we may continue cleaning the system.


Link to post
Share on other sites

  • Staff

Do not attach your logs unless otherwise indicated. Copy and paste them into your reply instead.

Next, please run a free online scan with the ESET Online Scanner

Note: You will need to use Internet Explorer for this scan.

  1. Tick the box next to YES, I accept the Terms of Use.
  2. Click Start
  3. When asked, allow the ActiveX control to install
  4. Click Start
  5. Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  6. Click Scan
    Wait for the scan to finish
  7. Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  8. Copy and paste that log as a reply to this topic

Next, download my Security Check from here or here.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Let me know how things are running now and what issues remain.


Link to post
Share on other sites

Results of screen317's Security Check version 0.99.7

Windows 7 (UAC is disabled!)

Internet Explorer 8


Antivirus/Firewall Check:

Windows Firewall Enabled!

avast! Free Antivirus

ESET Online Scanner v3

WMI entry may not exist for antivirus; attempting automatic update.


Anti-malware/Other Utilities Check:

Java 6 Update 24

Java 6 Update 3

Out of date Java installed!

Adobe Flash Player

Adobe Reader 9.3.3

Out of date Adobe Reader installed!


Process Check:

objlist.exe by Laurent

ESET ESET Online Scanner OnlineCmdLineScanner.exe

AVAST Software Avast AvastSvc.exe

AVAST Software Avast AvastUI.exe

``````````End of Log````````````

Link to post
Share on other sites

ESETSmartInstaller@High as CAB hook log:

OnlineScanner.ocx - registred OK

# version=7

# iexplore.exe=9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)

# OnlineScanner.ocx=

# api_version=3.0.2

# EOSSerial=bd7e0255ffa01d4785b3b88dc79df7c6

# end=finished

# remove_checked=true

# archives_checked=false

# unwanted_checked=true

# unsafe_checked=false

# antistealth_checked=true

# utc_time=2011-08-26 01:49:07

# local_time=2011-08-26 08:49:07 (-0600, Central Daylight Time)

# country="United States"

# lang=9

# osver=6.1.7600 NT

# compatibility_mode=512 16777215 100 0 377315 377315 0 0

# compatibility_mode=768 16777215 100 0 3298590 3298590 0 0

# compatibility_mode=5893 16776573 100 94 10578537 65872688 0 0

# compatibility_mode=8199 39157246 100 98 1395753 43926073 0 0

# scanned=218190

# found=4

# cleaned=4

# scan_time=38652

C:\Program Files\Microsoft Games\Fable III\paul.dll a variant of Win32/Packed.VMProtect.AAA trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000125 a variant of Win32/InstallCore.B application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Luke\Desktop\cnet_RevoUninProSetup_exe.exe a variant of Win32/InstallCore.B application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Luke\Downloads\cnet_7z922_exe.exe a variant of Win32/InstallCore.B application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

Link to post
Share on other sites

  • Staff


Navigate to Start --> Run, and type Combofix /uninstall in the box that appears. Click OK afterward. Notice the space between the X and the /uninstall

This uninstalls all of ComboFix's components.

Delete SecurityCheck.

After that, navigate to Start --> Control Panel --> Add or Remove Programs, and uninstall the following program (if present):

ESET Online Scanner v3

Java™ 6 Update 24

Java™ 6 Update 3

Adobe Flash Player

Adobe Reader 9.3.3

Restart your computer.

Get the latest version of Java, Adobe Reader, and Adobe Flash Player.

Let me know what issues remain.


Link to post
Share on other sites

  • 3 weeks later...
  • 3 weeks later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.