Anti-virus download problems

The_Grandmaster

Now the waiting game to find someone who can read this log (alienRIK!)

The_Grandmaster

Now the waiting game to find someone who can read this log (alienRIK!)

aliEnRIK

Log seems fine now

Run the avira tool to check your computer out with a decent av scanner ~
http://www.free-av.com/en/tools/3/avira_antivir_removal_tool.html

The_Grandmaster

Would you advise uninstallation of AVG too for avira after that anyway?

GunJack

The_Grandmaster wrote: »

Would you advise uninstallation of AVG too for avira after that anyway?

yes, but make sure to use the avg removal tool to clear the dross

http://www.avg.com/gb-en/download-tools

GunJack

I'd also be inclined to give the pc a full clean-out, including old restore points, once avira's been installed...

fiddiwebb

Also would rcommend downloading CCleaner Slim to clean any garbage, temp files etc.

CCleaner Slim version bottom of this link page...............

http://www.piriform.com/ccleaner/builds

Mr_Linnet

Right ok have carried out an Avira AntiVir Scan and clicked the Try to repair infected files box in confuguration.

The scan found 5 alerts

[TR/Patched GEN]/media Devices/hdg1/Qoobox/Quarantine/C/WINDOWS/system32/Drivers/pci.sys.vir.
Is the Trojan Horse TR/PatchedGEN - not removable.

[TR/Crypt.ULPM.GEN]/media/Drivers/hdg1/System/VolumeInformation/_restore{898B1A96-3A9A-4E0A-A888-416F51705205}RP/A0087510.exe
Is the Trojan Horse TR/Crypt ULPM.Gen - not removable

there are three more with the same details except:-
RP255/A0088588.exe
RP255/A0088589.exe
RP255/A0088624.exe

again all not removable

What action should I take next?

In addition Combofix last night also highlighted that I might be the victim of Counterfeiting Software.

Many sincere thanks for everyones help and assistance to date.

aliEnRIK

Theyre all restore points except the first one which was quarantined by combofix anyways
Create a NEW restore point
Then remove the older ones ~
http://support.microsoft.com/kb/555367

Id run another avira scan to be sure theyre gone

As for the counterfeiting software ~ did it mention which software? Or was it refering to XP?

Mr_Linnet

This post has been edited from the original.

The Avira AntiVir scan I carried out (details given on post number 49) was from the cd disk after rebooting and not the link you gave to the Avira tool.en

I tried the link you gave me and downloaded the tool. It ran ok for a short period of time before the blue screen of death came up carrying out a physical dump with these codes :-
First time
0x000000C5 (0x00083D60, 0x00000002, 0x00000000, 0x8054BFOF).
second time
0x000000C5 (0x00083D64, 0x00000002, 0x00000001, 0x8054BBB4).

I created a restore point and carried out a system restore picking a date approx 1 month ago. It went through the process but after rebooting a message came on the system restore page that the computer could not restore to that date. I tried two months back and even three months back all with the sme results!!

To answer your last question, I have a message at the bottom of my desktop screen (no wallpaper now just a black screen with my desktop icons ) displaying You may be the victim of counterfeiting software. This copy of Windows did not pass genuine Windows validation. There is also a small star icon appeared at the bottom of the screen next to my AVG icon and time etc with gives you the option to give online validation details, the optiuon to purchase a genuine Windows licence etc.

I dont really know where to go from here? Do you have any suggestions please

For the fear of repeating myself again but I really do appreciate your continued help and interest.;)