Avast WEBforum
Other => Viruses and worms => Topic started by: calcuttaman on April 06, 2013, 04:03:24 PM
-
Win 7 with a version of Avast, not sure which version
Was rebooting and it came up to the Boot Choice screen with only these options showing...
Windows Error Recovery
Safe Mode
Safe Mode with Networking
Safe Mode with Command Prompt
Start windows normally
The first 3 options all run down the list of drivers that its loading but get "Stuck" on aswrvrt.sys where it stays for 20-30 seconds. It then shows the "Starting Windows" screen for 20-30 seconds then all I see on the black screen is the mouse cursor. With Start windows normally I get the same end result but don't see the drivers loading.
I can see all my shared files and drives from my networked laptop. Unfortunately I don't have access to my c: drive other then the c:\users dir.
Dell 8500 but I don't have a Win 7 boot disk (they are sending one). Dell says I will have to reinstall Win 7 (yuck).
Any ideas for the present? Would love to be able to access a command prompt (But can't) to try deleting aswrvrt.sys and see if that does anything.
-
are you able to download and run this http://www.avast.com/en-no/uninstall-utility
-
are you able to download and run this http://www.avast.com/en-no/uninstall-utility
No.
All I see on my black screen is a mouse cursor.
-
OK....have notified Essexboy, he usually have some Magic Tools ;)
-
Is it a 32 or 64 bit system
Download the following three programmes to your desktop :
1. Rufus (http://rufus.akeo.ie/downloads/rufus_v1.3.2.exe)
For 64bit systems
2. Windows 7 64bit RC (https://dl.dropbox.com/u/73555776/win7%2064bit%20rc.iso)
3. Farbar Recovery Scan Tool x64 (http://download.bleepingcomputer.com/farbar/FRST64.exe)
For 32bit systems
2. Windows 7 RC (https://dl.dropbox.com/u/73555776/win7-32bit%20rc.iso)
3. Farbar Recovery Scan Tool (http://download.bleepingcomputer.com/farbar/FRST.exe)
Insert the USB stick Then run Rufus
(https://dl.dropbox.com/u/73555776/rufus.JPG)
Select the ISO file on the desktop via the ISO icon.
Press Start Burn
(https://dl.dropbox.com/u/73555776/RufusISO.JPG)
Then copy FRST to the same USB
(http://dl.dropbox.com/u/73555776/frstwintoboot.JPG)
Insert the USB into the sick computer and start the computer. First ensuring that the system is set to boot from USB
Note: If you are not sure how to do that follow the instructions Here (http://lifehacker.com/5991848/how-to-boot-from-a-cd-or-usb-drive-on-any-pc)
When you reboot you will see this although yours will say windows 7.
Click repair my computer
(http://i1224.photobucket.com/albums/ee362/Essexboy3/RepairVista_7275.jpg)
Select your operating system
(http://i1224.photobucket.com/albums/ee362/Essexboy3/RepairVista_7277202.jpg)
Select Command prompt
(http://i1224.photobucket.com/albums/ee362/Essexboy3/RepairVista_7277.jpg)
At the command prompt type the following :
notepad and press Enter.
The notepad opens. Under File menu select Open.
Select "Computer" and find your flash drive letter and close the notepad.
In the command window type e:\frst64.exe and press Enter
Note: Replace letter e with the drive letter of your flash drive.
The tool will start to run.
When the tool opens click Yes to disclaimer.
(https://dl.dropbox.com/u/73555776/FRST%20Start%20scan.gif)
Press Scan button.
It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.
-
Here it is. Might have to leave pretty quick for work, waiting for a call. So I *might* or might not get back to this till later. Thanks in advance.
To much to paste in. Attaching it instead. Damn, Opera isn't handling the attachment correctly. FF does.
-
Absolutely the same problem here after a blue screen one hour ago. :-(
Greez Etienne
-
@EtienneAvast please start your own thread
@ calcuttaman this is your fix..
Download the attached Fixlist.txt to the same USB as FRST
Run FRST as previously
Once it has completed reboot to normal mode
THEN
Download OTL (http://oldtimer.geekstogo.com/OTL.exe) to your Desktop
Secondary link (http://www.itxassociates.com/OT-Tools/OTL.exe)
- Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
(https://dl.dropbox.com/u/73555776/OTL_Main_Tutorial.gif)
- Select All Users
- Under the Custom Scan box paste this in
netsvcs
BASESERVICES
%SYSTEMDRIVE%\*.exe
/md5start
services.*
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
winsock.*
/md5stop
CREATERESTOREPOINT
- Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
- When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
- Post both logs
-
Same issue here but I get to aswrvrt.sys in safe mode and the PC blue screens each time. There seems to be no way to start up using any startup option
Due to changes in the config of the machine I get the tedious "System Recovery Option is not compatible with the version of windows you are trying to repair" so haven't successfully started from the DVD as yet to try repairing that way.
As I can't get to the desktop I am unsure how I can use the repair suggestions posted above.
Thanks
-
Been an Avast user for years but this was the first time I registered with the forum, solely to reply that Avast was indeed the cause of my boot problems and that removing it fixed them. Searching for Aswrvrt.sys led me to this page, which was fortunate since without reading this I had no clue that Avast was the problem.
I was able to boot into Safe Mode with Networking though so I could download and run http://www.avast.com/en-no/uninstall-utility
After it removed everything my machine was able to boot normally (albeit now with no Avast protection).
-
@ calcuttaman this is your fix..
- Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
- When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
- Post both logs
Ok, here they are
I did uninstall Avast.
-
It was not Avast causing the problem but a zero access infection
Warning This fix is only relevant for this system and no other, using on another computer may cause problems
Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot
Run OTL
- Under the Custom Scans/Fixes box at the bottom, paste in the following
(https://dl.dropbox.com/u/73555776/OTL_Fix.GIF)
:Files
C:\$Recycle.Bin\S-1-5-18\$846807fb2202378a2f77ca8da49f469b
:Commands
[resethosts]
[emptytemp]
[CREATERESTOREPOINT]
[Reboot]- Then click the Run Fix button at the top
- Let the program run unhindered, reboot the PC when it is done
- Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
THEN
Download and Install Combofix
Download ComboFix from one of the following locations:
Link 1 (http://download.bleepingcomputer.com/sUBs/ComboFix.exe)
Link 2 (http://www.forospyware.com/sUBs/ComboFix.exe)
VERY IMPORTANT !!! Save ComboFix.exe to your Desktop
* IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here (http://forums.whatthetech.com/How_Disable_your_Security_Programs_t96260.html&pid=494216#entry494216)
- Double click on ComboFix.exe & follow the prompts.
- Accept the disclaimer and allow to update if it asks
(http://img.photobucket.com/albums/v706/ried7/NSIS_disclaimer_ENG.png)
(http://img.photobucket.com/albums/v706/ried7/NSIS_extraction.png)
- When finished, it shall produce a log for you.
- Please include the C:\ComboFix.txt in your next reply.[/b]
Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.
3. If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.
Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now
-
Oh oh, I just ran OTL and got this....
http://calcuttaman.com/public_images/2013-04-07_080649.png
What should I do now?
-
Close OTL and go direct to combofix please
-
It was not Avast causing the problem but a zero access infection
That's good to know that it wasn't Avast. After this is over will delete Avg and go back to Avast.
Not a lot of info out there on how one gets infected with this, ideas?
Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now
Attaching ComboFix.txt
I guess there was something else I hadn't told you as I had forgotten about it. I hadn't been able to access my Windows Firewall for a couple of months. When I would try to load it, it would say I couldn't load the module (Or something like that). Searched for answers but could never get it working. Combofix rebooted and I had programs that were marked for deletion so rebooted, lo and behold up popped the Windows Firewall screen asking for permission for Eye.fi. And I'm able to access it now.
Will run computer for awhile and see how its going.
-
That looks to have killed the remnants
If you are going to install Avast again you will need to do the following :
Download the AVG removal tool http://www.avg.com/gb-en/utilities to your Desktop.
Download Avast Uninstall Utility (http://www.avast.com/uninstall-utility) to your Desktop.
Download the correct version of Avast to your Desktop.
http://files.avast.com/iavs5x/avast_free_antivirus_setup.exe
http://files.avast.com/iavs5x/avast_pro_antivirus_setup.exe
http://files.avast.com/iavs5x/avast_internet_security_setup.exe
Disconnect from the net
Uninstall Avg via control panel
Run the AVG removal tool
Run AswClear
Re-install Avast using the custom mode
-
Hello I have got the same problem. I have ran your tools and generate the frst.txt file (linked at this post).
Could you please help me ?
I have ran the zeroaccess symantec fix. It did not find the zeroaccess trojan.
-
I see that you have two hard drives, could you unplug one
-
My computer is a notebook. I have only one hard drive splitted in two partitions.
I have noticed the hard drive led is always highlighted, even if no application is launched.
My PC is very slow, when i try to launch any application. I can not access to diskmanager in order to disable the second partition.
When i try to set offline the volume data with diskpart in safe mode, i have got the french error message "le volume y a encore un chemin d'accès"
-
I can see no malware so I would assume that you have a disc problem especially as the drive light is always on and the second partition is activated
-
thank you for your help. I will try to format and reinstall my PC. I hope the disk is not corrupted.
-
The thing to be aware of is that the last named driver was successfully loaded, it is the one following that is at fault unfortunately it does not provide the name for that
-
My aswrvrt.sys have problem too. Ihave ran FRST and generated frst.txt.
Could you help me please ?
-
There is no malware apparent on that log.. Unfortunately you do not appear to have any restore points either. This may be related to the last windows updates, although one was pulled there is still one that appears to be causing problems
-
Hello, i have solved my issue. A picture file was corrupted. Since i deleted it, my computer runs as the first day
-
A corrupt picture file stopped the boot ? How did you delete it ?
-
I have booted in safe mode with network in order to save my pictures to another computer. My robocopy command always hangs on this file. I have deleted it. After I have tried to boot in normal mode and it works fine now.
-
Well that is really weird .. But it worked and you cannot gainsay that
-
Hello I have got the same problem. I have ran your tools and generate the frst.txt file (linked at this post).
Could you please help me ?
-
Hi download the attached fixlist.txt to the same USB as FRST
Run FRST as before and press Fix
Try to reboot to normal windows
-
Thanks for the help I run frst and fix with that file, here comes the fixlog.
Unfortunately It could not boot windows normally, still the black windows.
I run again the frst scan and here comes the file of frst.
-
This time I will fully uninstall Avast in case that is the culprit
Download Fixlist.txt to the same USB as FRST
Start FRST as before and press fix
Then try a reboot
-
Thanks for the help I run again frst and fix with that file, here comes the fixlog.
Unfortunately It could not boot windows normally, still the black windows.
I run again the frst scan and here comes the file of frst.
Just more info I am using a N145 samsung netbook with windows 7.
With a partition of the hard drive in two units c and d.
-
It is now a little after 1:40am in the UK so essexboy will be in bed now. He should be back on-line later today.
-
thanks for the info...i ll wait till tomorrow here
-
OK it is not Avast or Norton that was causing the problem
Restart from the recovery CD and select command prompt
Type in the following command
sfc /scannow /offbootdir=c:\ /offwindir=c:\windows
Once completed let me know if that cures it
-
Unfortunately I could not run that command, I get this message:
Windows Resource Protection could not start the repair service.
If I try to just run:
sfc /scannow , I get this message:
Beginning system scan. This process will take some time.
There is a system repair pending which requires reboot to complete. REstart windows and run sfc again.
-
Could you reboot and try once more if it fails then :
Follow the destructions on this page http://www.microsoft.com/en-us/download/details.aspx?id=38435
-
Finally I could restore to two year old windows situation and It is working fine so far...
Thanks for your help Essexboy!!!!!
-
Thanks for the update I will keep watching for a bit just to be sure
-
I had a similar problem of system not booting up and when I start up in safe mode, then it stops at aswrvrt.sys. I have a windows vista machine and right now botting it up from USB is saying the disk failure is imminent. I had done a install of avast just before this hapenned. Please help.
-
The warning of an imminent disc failure should be taken seriously
All the computer is telling you is that the last driver successfully loaded was aswrvrt.sys
-
I gets stuck on loading the aswrvrt.sys and doesn't go any further. What are my options here? I would like to at least be able to save my files on the drive. Avast anti virus caused it as that was the last thing I did on the laptop before it stopped booting up.
-
You have the recovery console on USB ? If so then
Restart from the recovery CD and select command prompt
Type in the following command
sfc /scannow /offbootdir=c:\ /offwindir=c:\windows
-
Hello,
I have the same mistake with my notebook
I made the same step and attached the FRST text file here
Can you have a look ?
thank you
Thibaut
-
Are you able to use system restore from the recovery console to go back a few weeks
-
I tried but I don't have any restore points :/
I have had already this problem before formatting my computer few weeks ago and everything was OK till today.
Do you know where is come from ?
-
Prior to the boot failure did you update windows or any other programmes
-
No I did not
-
I can see no malware or corrupted files on the log
Have you tried an sfc /scannow ? I can remove Avast but there is no guarantee that it will fix it
-
I tried /scannow but nothing is found.
I have also tried to repair but that's not working neither.
This aswrvt.sys is doing what exactly ?
-
That was the last driver successfully loaded, the driver after that one is the one that has failed to load properly
-
I have the same problem, windows doesn't start because aswrvrt.sys, I don't know how but I succesfully start in a safe mode the the pc and I unistalled Avast but the pc is still stuck at the start screen.
Now it seems that the problem is the classpnp.sys.
Here enlcosed I attach the frst.txt file, seems that I get a malware...
Please could you tell me how to fix it without loosing everything?
thank you,
Vito
-
classpnp.sys is the driver that loads before aswrvrt.sys so as I have continually stated this does not appear to be an Avast problem.
From safe mode could you run an elevated command prompt :
Go Start > All Programs > Accessories
Right click command prompt and select "Run as Administrator"
In the box that opens type the following and press enter:
sfc /scannow
-
Hello everybody, i got today the same issue
@essexboy could you please check my log too?
Thanks a lot in advance
-
Hi is this running on a Mac ? Also are you overclocking it ?
-
hi, yes it's running on a mac, and i don't overclock it!
there was an update on avast, before rebooting i saw that avast was not working anymore!
so i wanted to reboot, and then i arrived at this point!
thanks
-
I will use FRST to remove Avast but I am not sure if that will cure the problem
Download the attached fixlist.txt to the same USB as FRST
Run FRST as before then press fix
Once done try a further reboot
-
thx it worked!
now i will uninstall avast!
again thank you for you quick response!
cheers
-
hi essex,
can you help me too please?
my comp isnt booting anymore...
i run win 7 64bit and after watching youtube films yesterday my comp today freezes at the beginning of windows.
i already downloaded fubar and the other tool. i cannot copy the text because its too lon. i attached the files below. ah and i also used your fixlist for avast removal to try if that was the error but it didnt solve the problem.
-
Try this fixlist, in case you missed anything. However, I offer no guarantees
-
i will run this fix and then post the results. may you please help me... maybe with some other options i could try?
when i try to normally run windwos these points happen:
it checks the integrity of my C: drive (partition of one hd) where only my operating system is on. after completing the check it stops and does nothing.
if i skip the check i can choose between normal and safe boot procedure. if i run it normal, it boots shows the desktop, but i cant interact with anything. after 1 minute it freezes.
if i run safe mode it stops in the middle of loading drivers. now that i deletet avast, it stops at a random other location of the boot procedure.
thanx for any help in advance....
-
We can use another programme to look at the system using OTL if you wish... Are you able to create either a CD or USB to use for booting
-
hello i ran the fix but it didnt find anything. also looking in notepad there is no C: drive anymore. its called D: now i tried to sfc /scannow it ---> the selected drive is corrupted and unreadable... however the data i have on my former d: drive (now e:) is still there, so im still hoping my hdd isnt broke.
what do you suggest in doing?
thanx
-
OK do you have a CD or a USB drive handy ?
-
yes i have a 2GB usb stick here... the sick comp hasnt got a disc drive.
the usb stick i have i used fubar on it and copied the scan program.
just telll me if 2gb are enough and what i have to do please.
greetz
i used RUFUS!! not fubar lol
-
OK 2Gb is ample
On the working computer
Download
Peazip (http://peazip.googlecode.com/files/peazip-4.7.3.WINDOWS.exe) to the desktop
Run and install the programme
As it installs this page will show, deselect the AVG ticks
Press decline and it will then install cleanly
(https://dl.dropbox.com/u/73555776/peazip.jpg)
Download the following files to the desktop .. Right click the links and select save as...then select desktop
Rufus (http://rufus.akeo.ie/downloads/rufus_v1.3.2.exe)
OTLPE_standard (http://oldtimer.geekstogo.com/OTLPEStd.exe)
Right click OTLPE on your desktop and select ..Open as archive
(https://dl.dropbox.com/u/73555776/Unzup%20archive.png)
Select OTLPE standard
(https://dl.dropbox.com/u/73555776/select%20archive.PNG)
Click Extract, ensure that desktop is selected
(https://dl.dropbox.com/u/73555776/extract%20archive.PNG)
Insert the USB stick Then run Rufus
(https://dl.dropbox.com/u/73555776/rufus.JPG)
Select the ISO file on the desktop via the ISO icon.
Press Start Burn
(https://dl.dropbox.com/u/73555776/RufusISO.JPG)
Once the USB has burnt then
- Reboot the sick system using the boot USB you just created.
Note : If you do not know how to set your computer to boot from CD follow the steps here (http://www.hiren.info/pages/bios-boot-cdrom)
- As the USB needs to detect your hardware and load the operating system, I would recommend a nice cup of tea whilst it loads :)
- Your system should now display a Reatogo desktop.
Note : as you are running from USB it is not exactly speedy
- Double-click on the OTLPE icon.
- Select the Windows folder of the infected drive if it asks for a location
- When asked "Do you wish to load the remote registry", select Yes
- When asked "Do you wish to load remote user profile(s) for scanning", select Yes
- Ensure the box "Automatically Load All Remaining Users" is checked and press OK
- OTL should now start.
- Drag and drop this attached scan.txt into the Custom scans and fixes box
- Press Run Scan to start the scan.
- When finished, the file will be saved in drive C:\OTL.txt
- Copy this file to your USB drive if you do not have internet connection on this system.
- Right click the file and select send to : select the USB drive.
- Confirm that it has copied to the USB drive by selecting it
- You can backup any files that you wish from this OS
- Please post the contents of the C:\OTL.txt file in your reply.
-
hi essex...
i have a problem. creating the usb device using rufus doesnt work. i tried redownloading OTL but the file seems to be ok.
ould not get ISO-9660 file information for file /i386/txtsetup.sif
ISO label: 'ReatogoPE'
Size: 296333312 bytes
Has a >4GB file: No
Uses EFI: No
Uses Bootmgr: Yes
Uses WinPE: Yes
Uses isolinux: No
Using ISO: OTLPE_New_Std.iso
Caution: Opened PHYSICALDRIVE1 drive for write access
Unknown boot record
Clearing MBR/GPT structures...
Partitioning (MBR)...
Formatting...
Using cluster size: 4096 bytes
Creating file system: Task 1/12 completed.
Creating file system: Task 2/12 completed.
Creating file system: Task 3/12 completed.
Creating file system: Task 4/12 completed.
Creating file system: Task 5/12 completed.
Creating file system: Task 6/12 completed.
Creating file system: Task 7/12 completed.
Creating file system: Task 8/12 completed.
Creating file system: Task 9/12 completed.
Creating file system: Task 10/12 completed.
Creating file system: Task 11/12 completed.
Creating file system: Task 12/12 completed.
Format completed.
Writing master boot record...
Drive has a zeroed non-bootable master boot record
Set bootable USB partition as 0x81
Using Rufus bootable USB selection MBR
Caution: Opened D: drive for write access
Writing partition boot record...
Confirmed new volume has an NTFS boot sector
Copying ISO files...
Extracting files...
Disc image is an ISO9660 image
Extracting: D:\AUTORUN.INF (53 bytes)
Unable to create file: [0x00000005] Zugriff verweigert
Found drive 'USBDisk RunDisk USB Device'
1 device found.
Sector Size: 512 bytes
Cylinders: 249, TracksPerCylinder: 255, SectorsPerTrack: 63
Partition type: MBR, NB Partitions: 1
Disk ID: 0x4F065862
Partition 1:
Type: NTFS (0x07)
Size: 1.9 GB (2049511424 bytes)
Start Sector: 2048, Boot: No, Recognized: Yes
this is the logfile of rufus. is the 2gb too small maybe?
-
Hmm it should have no problem with that size
Do you have any of these programmes on your computer ?
•Panda USB vaccine
•Lexar JumpDrive Secure USB device
•ESET Smart Security
Otherwise there may be a problem with the USB drive
-
it was avira antivirus on this machine here (my girlfriends one.
its creating the usb boot device now. ill reply when im done with ur instructions.
thanx
-
So it is now loading the reatogo boot system ?
-
ok it now loaded the reatogo system.
started OTLPE ... then he asks me for the windows location.
the problem is i cannot acces the D: (my old C:) it shows up in the list but is non browsable. as if the partition is broken or so....
just selecting any of the displayed drives tells me that there is no windows 2000 or later installed...
any idea?
-
Is the windows folder visible when you open the drive ? If so select that folder
-
Hi Essex,
having the same problem in here, i'm running windows 7, can you please check the file attached and advise what to do.
Thanks for your help
-
No malware apparent, are you able to run a restore point from the recovery console
-
I have the same problem, but on an xp machine, in safemode, it locks up at aswrvrt.sys, or it shows windows loading then black. is there and iso for xp?
-
I have the same problem, but on an xp machine, in safemode, it locks up at aswrvrt.sys, or it shows windows loading then black. is there and iso for xp?
hey i have answer in your second thread.
http://forum.avast.com/index.php?topic=127181.0
-
Is the windows folder visible when you open the drive ? If so select that folder
essex, i have been following all of your stuff in this post. heres my problem, my FRST file says that the hive is missing, and shows NOTHING in the text file as far as scanned stuff, just empty file except for where it says all the startup files are missing, winlogon.exe etc etc.... now when i boot with the OTLPE, when i try following your directions, c: shows up but there are NO folders or anything in it and I therefore can not scan it....what are your suggestions?
-
If neither OTLPE nor FRST can see the drive/folders then I would suspect that the hard drive has failed
-
Hi!
I seem to have the same problem. Windows won't boot on my pc, not in any modes. I'm working from my girlfriend's Mac now, which doesn't run Rufus. I would like to send you an FRST file or something similar. What can I do?
Thanks in advance for your reply.
-
What is the flavour of windows you are running ? XP, Vista 7 or 8
Do you have the cd
-
Windows 7. No cd. Thanks for the quick reply :)
-
Does the mac have the ability to burn an ISO file to a CD and make it bootable
Also is this 32 or 64bit
-
Windows 7 64 bit. There is a burner on the Mac, but I don't know if it can write ISO images. It only says CD R etc. Also I don't have any burnable discs handy. Sorry for the bother.
-
Are you able to get access to a windows PC to create the USB drive ?
-
Maybe tomorrow. If not, is there something else we could try?
-
Problem solved. My pc works. The solution was very simple. I went into the BIOS and changed the SATA configuration from IDE to AHDI. Don't know why it was changed in the first place. Could Avast have done it?
-
Avast does not touch the BIOS did you get some windows updates prior to the failure ?
-
Hello Essex, I seem to have the same problem as the above users (while trying to boot screen goes black post windows login screen), no access to my desktop except through command prompt safe mode, which for some reason is extremely slow.
Have also gotten "User Profile Service Failed" while trying to logon in Safe Mode.
64 bit Windows 7 with avast!
Any help would be greatly appreciated.
Best,
Cocheck
-
Same problem here, had to re-install windows as this was the only solution.
I will not reccomend avast to anyone.
My computer crashed because of AVAST and now i have to start all over again with my setting up my PC
Also lost a lot of data because of this!
-
@cocheck are you able to login to safe mode, if so follow the steps here
http://support.microsoft.com/kb/947215
-
Decided to just reinstall windows after all.
But thanks for the help!
-
Here it is. Might have to leave pretty quick for work, waiting for a call. So I *might* or might not get back to this till later. Thanks in advance.
To much to paste in. Attaching it instead. Damn, Opera isn't handling the attachment correctly. FF does.
Hello Essexboy!
Can you help me?
Running Windows 7 here.
Not sure what happened to cause this, also have Avast...
I tried every possible option to reboot and none of them work.
It loops going back to startup...
I have followed your instructions using USB disk as boot driver and I attached the txt file here.
Can you please look into it for me and let me know what can I do?
Many thanks!
-
@pauloaragao this will remove Avast but I do not think it will help with your problem I am afraid
Download the attached fixlist.txt to the same USB as FRST
Run FRST as before and press fix
On completion try a normal boot
-
@essexboy
Ok, so when I rebooted normally, it ran a CheckDisk automatically and that took a looong time to complete.
As I could see, there was nothing wrong.
It went to logon screen, I logged in and it went to Windows but veeery slowly.
Altogether the PC is running very slowly. Whatever I do, wherever I click, it take a long time for something to happen. Any other suggestions?
Should I re-install Avast?
What do you think have caused this? A Windows update or a virus/malware?
What else can I do?
I appreciate the help!
-
Probably a windows update as they appear to be coming more prevalent
Lets reinstall Avast
Download Uninstall Utility (http://www.avast.com/uninstall-utility) to your Desktop.
Download the correct version of Avast
Avast Free (http://files.avast.com/iavs5x/avast_free_antivirus_setup.exe)
Avast Pro (http://files.avast.com/iavs5x/avast_pro_antivirus_setup.exe)
Avast Internet Security (http://files.avast.com/iavs5x/avast_internet_security_setup.exe)
Avast Premier (http://files.avast.com/iavs5x/avast_premier_antivirus_setup.exe)
Disconnect from the net
Uninstall Avast via control panel
- Run aswClear
- It will offer to reboot to safe mode .. Accept that
(https://dl.dropbox.com/u/73555776/aswclear.JPG)
- Once it has rebooted to safe mode
- In the Select Product to Uninstall dropdown choose the version of Avast that is on your system.
- Press Uninstall
- Once complete reboot your system to Normal Mode
- Reinstall Avast
----------
THEN
Lets see what else is on there
Download OTL (http://oldtimer.geekstogo.com/OTL.exe) to your Desktop
Secondary link (http://www.itxassociates.com/OT-Tools/OTL.exe)
- Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
(https://dl.dropbox.com/u/73555776/OTL_Main_Tutorial.gif)
- Select All Users
- Under the Custom Scan box paste this in
netsvcs
BASESERVICES
%SYSTEMDRIVE%\*.exe
/md5start
services.*
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
dir "%systemdrive%\*" /S /A:L /C
CREATERESTOREPOINT
- Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
- When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
- Post both logs
-
Hi, sorry it took so long.
The whole process took the entire afternoon to complete.
The PC still is very very slow...
here are the files.
again, many thanks!
-
The error log is reporting that the IDE is taking a long time to respond. Did the disc check complete ?
Clear Cache/Temp Files
Download TFC by OldTimer (http://oldtimer.geekstogo.com/TFC.exe) to your desktop
- Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
- It will close all programs when run, so make sure you have saved all your work before you begin.
- Click the Start button to begin the process. Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two. Let it run uninterrupted to completion.
- Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.
THEN
Defragment the main hard drive.
Did that give any improvement ?
-
Hi Chaps,
I'm afraid my brother is experiencing a similar issue. His PC will BSOD during OS load, whether it's normal or safe. Loading stops at aswrvrt.sys when loading via safemode, although I renamed that file, it the loading simply stops at the file before that now. I tried changing the HDD interface type in the Bios, sadly to no avail.
I've attached the results from the first tests you asked the OP to run here. If anyone can help out, it'd be very much appreciated.
Regards,
Chris
-
Aye it is a windows problem and the last successfully loaded file was aswrvrt.sys, the one at fault is the one after. Was this after a windows update ?
At this screen could you try a system restore or a startup repair
(https://dl.dropboxusercontent.com/u/73555776/W7%20Command.png)
-
Hi essexboy,
Thanks for the reply. I'm not sure about a recent update, my brother doesn't remember. Startup repair cannot fix the issue, and there don't seem to be any restore points I'm afraid.
Do you have any idea how I might proceed?
/Chris
-
I could remove Avast but I am not sure if it would fix it, would you like to try that ?
-
Yes please, let's give it a go.
Also, I can pop the HDD into another PC and access it from that. Not sure if that provides more options or not.
Cheers,
Chris
-
Download the attached fixlist.txt to the same USB as FRST
Run FRST as before and press fix
On completion try a normal boot
-
Thanks for that, but no luck I'm afraid. Is there anything else that you think might work?
-
Do you have a backup image at all ?
If not I can provide a programme that will enable you to back up your data before reformatting
-
Hi @Essexboy!
Sorry it took so long to answer, I had a very busy week.
I ran the cache cleaner and defragmented the disk.
The Cleaner ran ok up until the end but I had to reboot manually.
The defrag took over 8 hours and never completed... I had to reboot the computer.
Things are still the same, PC very very slow to startup and once it does, still very slow to run things...
Any other suggestions?
I just dont want to loose all my personal data in it :(
Help me pls!
Thanks
-
I have the feeling that the Hard drive is having problems, mainly due to the IDE errors
Could you open the computer and ensure that the hard drive cable is connected properly along with the power cable
-
@essexboy
Sorry for my ignorance, but it's a notebook, does it still work the same way?
-
Yes it should what is the make and model ? I will then locate the instructions
-
Sony Vaio VCPEB15FX
PCG-71312L
I was able to locate the HD unplug it and plug it back.
That is as far as I could go.
Didnt see any cables...
thanks
-
Could you download and install the sony vaio care programme from here http://esupport.sony.com/US/p/support-info.pl?&info_id=953
From the programme you will be able to run a hard drive test
-
@essexboy
I already had that installed.
Thing is, it's getting worse... Now I cant even get to windows desktop.
Everytime I startup it goes to recovery mode options.
To recover it takes hours and nothing happens.
I can run cmd, but I dont know what to do with it.
I am afraid I will loose all my personal stuff.
What else can I do?
At this point I just want to transfer my files to my desktop PC and format the notebook.
Can you help?
Thanks
-
I would back up your files anyway as this appears to be a hardrive error and a reformat may not cure it
-
Essexboy -I have the same problem as Calcuttaman who started this thread. I was going to follow your advice to Calcuttaman re inability to boot : download Rufus, download win 7 RC, download FRST etc BUT
I am running VISTA 64 bit rather than Windows7. What is the correct download for VISTA?. I do not have my restore disks :-( btw
-
For 64bit systems
2. Windows 8 64bit RC (https://dl.dropbox.com/u/73555776/64win8RC.iso)
2. Windows Vista 64bit RC (https://dl.dropbox.com/u/73555776/Vista%2064bit%20rc.iso)
2. Windows 7 64bit RC (https://dl.dropbox.com/u/73555776/win7%2064bit%20rc.iso)
3. Farbar Recovery Scan Tool x64 (http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/)
-
Booted from usb, loaded windows files, and now has frozen on the moving horizontal bar screen with Microsoft Corporation below it - bar is still moving (2hrs).
Created Vista Rc bootable for 64 bit (on a 32 bit Windows7 PC) with Rufus per your instructions to Calcuttaman. Flashdrive is 1 Gb. Any ideas?
-
Have you tried a restart with the USB to see if it will load
If not I do have another programme that may work it will use the same USB as you have now
-
It never gets to the point where I can do a restart - only way is to turn it off and start again. Locks at the same point in the windows install - on the horizontal bar (which keeps moving left to right). In the alternative, is there any way to format the C drive and then install windows 7 professional UPGRADE 64 bit. I have that.
-
Yes you should be able to run the upgrade CD and reinstall windows
Or we could try outside of windows using OTLPE
-
Tried the upgrade cd - no luck. The issue seems to be with the iastor.sys file. The upgrade or repair programs on the cd cannot see the hard drive or the operating system that was in it. It asks for the correct drivers. It can see the flash drive it that is inserted (labels it C), the boot partition of the cd (labeled X) and the cd/DVD drive itself
-
Please print these instruction out so that you know what you are doing
- Download OTLPENet.exe (http://oldtimer.geekstogo.com/OTLPENet.exe) to your desktop
- Ensure that you have a blank CD in the drive
- Double click OTLPENet.exe and this will then open imgburn to burn the file to CD
- Reboot your system using the boot CD you just created.
Note : If you do not know how to set your computer to boot from CD follow the steps here (http://www.hiren.info/pages/bios-boot-cdrom)
- As the CD needs to detect your hardware and load the operating system, I would recommend a nice cup of tea whilst it loads :)
- Your system should now display a Reatogo desktop.
Note : as you are running from CD it is not exactly speedy
- Double-click on the OTLPE icon.
- Select the Windows folder of the infected drive if it asks for a location
- When asked "Do you wish to load the remote registry", select Yes
- When asked "Do you wish to load remote user profile(s) for scanning", select Yes
- Ensure the box "Automatically Load All Remaining Users" is checked and press OK
- OTL should now start.
- Press Run Scan to start the scan.
- When finished, the file will be saved in drive C:\OTL.txt
- Copy this file to your USB drive if you do not have internet connection on this system.
- Right click the file and select send to : select the USB drive.
- Confirm that it has copied to the USB drive by selecting it
- You can backup any files that you wish from this OS
- Please post the contents of the C:\OTL.txt file in your reply.
-
hi essexboy.
Got same problem as others. Cant boot in normal or safe mode. Used your usb boot disk. Can you help me pls?
FRST file in attachment. Tnx.
-
hi essexboy.
Got same problem as others. Cant boot in normal or safe mode. Used your usb boot disk. Can you help me pls?
FRST file in attachment. Tnx.
It would probably be best to start your own new topic, rather than join this very large one.
-
@essexboy
I made the FRST.txt file and like to send it to you to look at it.
How can I send the file?
-
@essexboy
I made the FRST.txt file and like to send it to you to look at it.
How can I send the file?
Essentially you can't assistance is through the forums.
As mentioned in my previous post you should start your own new topic:
- Please create your own new topic, here http://forum.avast.com/index.php?board=4.0 (http://forum.avast.com/index.php?board=4.0) in the viruses and worms forum (click the New topic button at the top of the page see image) and we will try and help you there.
You can attach the FRST.txt file 'Attachments and other options' link; you should also give an outline of the problem you are experiencing.
-
For 64bit systems
2. Windows 8 64bit RC (https://dl.dropbox.com/u/73555776/64win8RC.iso)
2. Windows Vista 64bit RC (https://dl.dropbox.com/u/73555776/Vista%2064bit%20rc.iso)
2. Windows 7 64bit RC (https://dl.dropbox.com/u/73555776/win7%2064bit%20rc.iso)
3. Farbar Recovery Scan Tool x64 (http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/)
@essexboy
thanks a lot for your assistance
trying to download the Win7 x64 ISO but am getting Dropbox Error #509 (bandwith exceeded daily limit) any alternative links?
UPDATE: I have since found what may be an alternative source (based on the file size) (via http://www.windowsreinstall.com/winre/createfromiso/ (http://www.windowsreinstall.com/winre/createfromiso/)
Direct Links:
Windows 7 64bit.ISO - http://probz.net/uploads/repairdiscs/RepairDiscWindows7-64-bit.iso (http://probz.net/uploads/repairdiscs/RepairDiscWindows7-64-bit.iso)
Windows 7 32bit.ISO - http://probz.net/uploads/repairdiscs/RepairDiscWindows7-32-bit.iso (http://probz.net/uploads/repairdiscs/RepairDiscWindows7-32-bit.iso)
Windows 8 64bit.ISO - http://www.probz.net/uploads/repairdiscs/64win8.iso (http://www.probz.net/uploads/repairdiscs/64win8.iso)
Windows 8 32bit.ISO - http://www.probz.net/uploads/repairdiscs/32win8.iso (http://www.probz.net/uploads/repairdiscs/32win8.iso)
Please confirm if this is indeed the same as the ones @essexboy posted earlier.
-
Yes those links are good... I have exceeded my bandwidth limit. So I need to do some tidying
-
Thanks for the reply.
Excuse me for not opening a new thread, since you're here let me ask you to please take a look at my FRST log and hopefully you could identify a possible remedy.
First the background. The machine is a 2 year old Lenovo ideapad Z360 with no known issues (besides for a semi damaged lcd that's been there for over a year). At first the PC began to hang in the startup screen after a couple of forced shutdowns it totally stopped working.
I took out the HD and connected to another PC, it was recognized but seemed to have hiccups so I'm suspecting the drive itself is faltering. First thing I did was copy the entire drive via Runtime ShadowCopy to an external drive, which allowed me to access all my user files, thank Gd.
Then I tried a myriad of other tools like testdisk etc. to rebuild the boot sector and MBR. At first I was getting a Bad_System_Config BSOD, so I decided to leave alone the original drive which was behaving erratically and switched to my Shadowcopy, booting from USB. Initially I was getting the same BSOD error, I then deleted the hiberfil.sys and pagefile.sys files and that's when I reached the aswrvrt.sys hang-up followed by a 0x7b BSOD, which brought me here.
I followed the logic of your previous replies and removed via FRST64 stepwise, first all Mcafee then, after no improvement, all of Avast, still no improvement, finally I removed the Bluecoat K9 web filter drivers. And here I am still looking for a cure (other than a clean re-install).
Attached are
1) the current FRST log - after the fixes below (I had to remove the Created-Last-Month section to reduce file size below 512KB)
2-4)the three fix logs.
Much appreciated.
-
The only possible problem is this :
S3 mfeavfk01; No ImagePath
However, I do not believe that would stop the boot.
On a side note though I have noticed an increased drive failure in Vista/7 systems that are 2 to 4 years old. I wonder if a bad batch of HDD's was released. Normally I would see one or two a year, now they are popping up nearly every week
-
Dear Essex,
I've read and checked all FRST.txt files and and didn't find any similar to my. Please find enclosed file.
kind regards
-
Dear Essex,
I've read and checked all FRST.txt files and and didn't find any similar to my. Please find enclosed file.
kind regards
Please start a new topic.
-
It seems that my wife's notebook has the same problem. She couldn't tell whether she installed any windows updates. She also uses Avast. Could anyone help?
I've run FRST and the log is attached.
-
From the repair my computer option is there a system restore option. If so try that first
-
I just tried that. It has completed successfully, but Windows won't start just the same.
-
I can disable Avast but there is no guarantee that it will cure the problem as this error appears to be windows related
Download the attached fixlist.txt to the same location as FRST
Run FRST as before and press Fix
On completion try a normal boot
-
I ran the fix, but no luck... Thanks anyway! It seems to be a Windows problem as you said.
-
Sorry about that, but what windows is reporting is that the last successfully loaded driver was aswrvrt, it does not tell you what failed to load
-
I really hope you're still out there. I'll describe what happened to the best of my ability.
My computer began to rapidly slow down and become unresponsive. Programs failed and froze one by one in a span of a few seconds. I remember firing up task manager quickly, seeing that nvidia.exe or whatever it is was using a massive amount of memory before that froze, as well. I powered off the computer, and it would not successfully boot, giving me the choice it's given most other people here, of starting normally or of using the system repair tools. Neither of them would work.
I had no breakthroughs for a while, until I changed the hard drive setting in the BIOS from... something with 4 letters, starting with A, to "Compatibility". Then, I could start up the system repair tools, but still could not start up windows. I ran it in safe mode, and the last driver to load was aswrvrt. I am aware that the one after is the real problem.
I tried the system restore points, I tried all sorts of other solutions. No such luck. Writing this in hope you can help me. Attached is my FSRT log.
Hope you're still out there...
-
Try to do a in-place-repair.
Windows XP (http://michaelstevenstech.com/XPrepairinstall.htm)
Windows 7 (http://www.maximumpc.com/article/how-tos/how_repair_faulty_windows_installation_without_reformatting)
-
Try to do a in-place-repair.
Windows XP (http://michaelstevenstech.com/XPrepairinstall.htm)
Windows 7 (http://www.maximumpc.com/article/how-tos/how_repair_faulty_windows_installation_without_reformatting)
Already did the first one, no errors. Second one is not available to me, no desktop access and no disk.
Is there a way to summon essexboy? Email, fax, carrier pigeon, anything?
-
Is there a way to summon essexboy?
He'll be around later today.
-
Is there a way to summon essexboy?
He'll be around later today.
Thank you, very good news. Not hopeless yet.
-
Thank you, very good news. Not hopeless yet.
You're welcome. (Be patient, it might take some hours.)
Edit: You forgot to attach your FRST log..!!
-
Already did the first one, no errors. Second one is not available to me, no desktop access and no disk.
Eh, you got a dual boot? If not, you should only do the one for your OS.
If the in-place-repair doesn't solve things, it is time for a clean install.
-
Programs failed and froze one by one in a span of a few seconds. I remember firing up task manager quickly, seeing that nvidia.exe or whatever it is was using a massive amount of memory before that froze, as well. I powered off the computer, and it would not successfully boot, giving me the choice it's given most other people here, of starting normally or of using the system repair tools. Neither of them would work.
This could indicate hardware problems. But until you attach the FRST log I will not know for sure
-
Programs failed and froze one by one in a span of a few seconds. I remember firing up task manager quickly, seeing that nvidia.exe or whatever it is was using a massive amount of memory before that froze, as well. I powered off the computer, and it would not successfully boot, giving me the choice it's given most other people here, of starting normally or of using the system repair tools. Neither of them would work.
This could indicate hardware problems. But until you attach the FRST log I will not know for sure
Heh, sorry, coulda sworn I attached it. Here you are.
-
I can see no indication of malware there. I could disable Avast but I do not feel that would achieve anything.
-
I can see no indication of malware there. I could disable Avast but I do not feel that would achieve anything.
Should I just try a full reinstall, then?
-
It would be worth a try but if it happens again then I would test the hard drive for faults
-
It would be worth a try but if it happens again then I would test the hard drive for faults
I can still access all of my files. How would I go about testing for hard drive faults?
-
What hard drive do you have (make and model)
-
What hard drive do you have (make and model)
The BIOS lists it as ST1000LM024 HN-M101MBB
Here's the page from Lenovo for the computer: http://shop.lenovo.com/us/en/laptops/ideapad/y-series/y580/index.html#techspecs
-
That is a SeaGate. Get and run the Seatools to test the drive.
-
Seatools for dos would be best to use http://lifehacker.com/5348638/five-best-disk-defragmenters
-
Seatools for dos would be best to use http://lifehacker.com/5348638/five-best-disk-defragmenters
Tried both the GUI and text versions of seatools, computer would not recognize it as a boot disk.
-
It would be worth a try but if it happens again then I would test the hard drive for faults
How would I go about re-installing windows 7 x64 without a CD? Is there an ISO to burn, or an USB to use?
-
You have a restore partition
Using the Product Recovery program on the hard disk
Note: All personal data in the computer will be lost during the recovery procedure.
Follow these steps:
1.Pressing F11 will start the Product Recovery program. When you see the Product Recovery Program Main Menu, select Full Recovery or Factory Contents and follow the instructions on the screen.
2.After the software has been reinstalled, copy your personal configuration and data files back into their original directories on the hard drive
-
You have a restore partition
Using the Product Recovery program on the hard disk
Note: All personal data in the computer will be lost during the recovery procedure.
Follow these steps:
1.Pressing F11 will start the Product Recovery program. When you see the Product Recovery Program Main Menu, select Full Recovery or Factory Contents and follow the instructions on the screen.
2.After the software has been reinstalled, copy your personal configuration and data files back into their original directories on the hard drive
F11 isn't doing anything for me
-
You have a restore partition
Using the Product Recovery program on the hard disk
Note: All personal data in the computer will be lost during the recovery procedure.
Follow these steps:
1.Pressing F11 will start the Product Recovery program. When you see the Product Recovery Program Main Menu, select Full Recovery or Factory Contents and follow the instructions on the screen.
2.After the software has been reinstalled, copy your personal configuration and data files back into their original directories on the hard drive
Never mind, I found the recovery system lenovo has built in. Has its own special key.
-
...I don't get it... I did a full system restore to factory settings, and it is still not working... hard drive problem, then?
-
Yep that would be my assessment
Time for a new hard drive
-
Yep that would be my assessment
Time for a new hard drive
Ha! Not Quite! (Posting from the laptop, figured it out)
One of the many things I did to try to fix things was to change the hard drive mode from A??? to Compatibility. That let me get into the system repair menu, for some reason, so I assumed it was good.
I switched back to A??? after the factory reset, and it worked! Thank you for your help.
-
Glad all is well :)
-
Hello,
I've had a problem starting my dell E4300 last week after cleaning the inside of the machine. It would not reboot with Windows 7.
I thought at first I had forgotten to plug something inside the computer but the interesting thing about this computer is I have both Ubunto 12.04 LTS and Windows 7 installed, with a booting system with Grub. And the compuer is running allright with Ubuntu (I was able to save all my windows files). Win 7 is running with last version of Avast
Symptoms : when selected windows 7 starts loading and freeze in the middle of the logo.
I run the recovery mode with the option that shows the list of drivers loading and get "Stuck" on aswrvrt.sys
that brought me to this forum.
I've run FRST. Please find it attached. I noticed a suspect file : AlexaNSISPlugin.3208.dll
thanks for your feedback and advice
Regards,
Nikopol75
-
There is no malware present, the reported dll is part of a BHO and does not affect the boot.
Is the BIOS set up for the correct Hard drive type ?
Does system restore work
-
Yes I would think so.
I've changed parameters a few time without success.
It's funny it is booting on ubuntu though
I just tried restoration of the system
System replied :
an unexpected error occured
the file cannot be found (0x80070002)
-
earlier in the week I've had :
Problem Event Name: Startup Repair offline
Problem Signature 01: 6.1.7600.16385
Problem Signature 02: 6.1.7600.16385
Problem Signature 03: UnKnown
Problem Signature 04: 21200309
Problem Signature 05: AutoFailover
Problem Signature 06: 2 (then 3)
Problem Signature 07: NoRootcause
OS Version: 6.1.7601.2.1.0.256.1
Locale ID: 1036
-
That error code points to a windows update mess up I am afraid and all the options suggested by MS will not work as you are unable to achieve safe mode
-
Windows was updated a few days before it started (so to say.. :))
What would you suggest ? Is there anyway to fix it without reinstalling windows 7 ?
Thanks
-
What is strange though is I re-installed the older HDD (I changed it begining of july to install a larger HDD) and this "old" system behaved like the new one.
It was not updated. So I wonder wether it comes from a windows update ..?
-
In that case I am a tad baffled. Is Linux on the same drive ?
-
Hi, essexboy, can you help me create fixlist.txt?
I have stuck with avast.
I attached frst.txt
Thanks
-
Yes Linux is on the same HDD..
-
@szu605 there is no guarantee that this will fix your problem
Download the attached fixlist.txt to the same location as FRST
Run FRST as before and press fix
Now try a normal boot
-
Hello essexboy
Thanks for all your help here.
I am experiencing a problem booting. I can boot to safemode no problem.
Here is the FRST log.
-
Download the attached fixlist.txt to the same location as FRST
Run FRST as before and press fix
Once done try a normal boot
-
Thankyou
One problem though, FRST responds with a message box when I click FIX.
'Error: Looks you dont know what to do. Program will close to prevent damage....'
Something to that affect.
-
Hmmm
Try this fixlist, I have whittled it down a bit
-
It ran the fix that time.
I am currently stuck on a black screen with an unusable cursor. I had control of the cursor on the welcome screen to choose which user to login with. Then, after logging in I get the black screen. Cursor still worked for a few seconds then ceased to move.
I will reboot and post FIXLOG
I found this forum because it appeared that the last loaded file in my bootlog was aswrvrt.sys. Since, I have downloaded and used the avast uninstall utility.
-
Please find attached FIXLOG
-
Essexboy, I really appreciate you trying to help me.
I am leaving to go to work now so I will be idle for a while.
If there is anything you can think of that I can try please inform me.
I will be checking back when I return.
Thanks again.
-
What happened prior to the non booting ?
-
OK, i have NO IDEA how it worked, but I did the trick:
- I started my PC up with Linux build (doesn't care which, it just needs some sort of file manager)
- I browsed to my C:\Windows\System32\drivers
- I moved every file which name started from "asw" and had a .sys extension somewhere else (like C:\avast)
- I restarted my PC in normal mode (it should work already, but likely Avast won't start by itself, and when launched, it will act like unregistered)
- I copied back those files I deleted previously to "drivers"
- Again I restarted my PC
There can be some problems with autostarting Avast, but adding it to autostart again can fix this.
(and sorry for my poor english)
-
Thanks for your help. I do not believe Avast had anything to do with my problem but I reinstalled windows and all is well now.
-
There have been a lot of these just lately and I have seen some that had AVG, Kaspersky and bitdefender on
-
Was trying to start a new thread but it would not let me for some reason
Hey Essex,
I am having the aswrvrt.sys hang issue
I have been reading some of the others you have helped in here and figured I would see if you could assist me
I have a good laptop in front of me, a flash drive, and the broken desktop next to me
thanks in advance
-
Essex lives in the UK. I'll ask him to help you since you've asked for him.
-
Either Way Alan I just noticed he was the main support for this issue
driving me nuts.
machine has been down for over 8 hrs
-
for a little background.
I was trying over the last few days to update avast with the updated and it would not work. Just hung at the progress bar.
today I downloaded the latest version and installed.
During the download there were some windows updates that needed to install so I let them
after it finished I tried to uninstall avast in the windows uninstaller tool and it was failing.
so I downloaded the avast uninstaller.
ran said uninstaller and it said I had to be in safe mode would you like to reboot into safemode.
I clicked yes and have not gotten back to windows yet.
I tried to do a startup repair with no luck.
also tried this http://www.sevenforums.com/tutorials/139576-startup-repair-infinite-loop-recovery.html
with no luck
now I am here
-
one more interesting thing.
I am running win 7 ultimate with latest SP x64 and when I try to run FRST64 it says "is not compatible with the version of windows you're running"
-
Finally got it to run frst64.
here is my file
-
There are no Avast files or services on this system
The system is set to boot to safe mode so I will fix that initially, if it fails then from the command prompt run a chkdsk c: /r
Download the attached Fixlist.txt to the same location as FRST
Run FRST and press fix
On completion try a normal boot
-
Thats interesting Essex.
I did go in with a linux live and delete the avast folder but I think that was after the frst64 file was run.
it was trying to boot into safe mode for the uninstaller to finish.
Trying the fix now
-
ok.
I can now login but I am unable to get into safe mode to run the uninstaller.
I get a blue screen that says unmountable boot drive
-
Downloaded avast cleanup tool from Rejzor and that seems to have cleared out all of the old avast.
I must have some sort of windows issue causing the safe mode fail.
-
before the tool I ran regedit and deleted anything that had avast in it
-
Go here and run this small programme http://www.majorgeeks.com/files/details/tweaking_com_repair_windows_safe_mode.html
Let me know if you can now get into safe mode
-
ran utillity
reboot
safe mode with networking
logon screen
started to type password and then it rebooted
-
however I am not getting the blue screen anymore :)
so thats a plus.
thanks for helping me out by the way.
I kinda think I need to do a fresh install.
running windows on a 256SSD and have a raptor 600gig as my files drive but when I set up windows I told it to have all my user files over on the raptor and to install programes there too and for some reason programes have never really installed properly.
I did registry tweeks to get it to kinda work but more often than not there is some sort of drama with it
-
Avast will need to be installed on the SSD to function correctly
-
that is where it was installed.
but I may have it partially installed on the raptor as well..
either way we are up and running.
will give me a chance to move stuff around and reinstall windows on just the ssd with stock settings.
I think we are good for now.
thanks again for your help
Cheers Mate
-
My pleasure, anything further than just shout
-
will do, thanks
-
Having a 'aswrvrt.sys' issue,laptop was working fine lastnight after windows updates. woke up today to a blue screen... can you help me essex?
-
Are you able to create an FRST log via the recovery console ?
http://forum.avast.com/index.php?topic=53253.0
Start here If you cannot Boot the computer
-
OK so here is where I'm at. I downloaded a windows 7 disc and ran the repair your computer. It helped.. Now my question is...Do i have a virus, should I uninstall avast?.. My laptop seems to be working ok, am i done or is there more steps i should take?
-
Probably no malware as this is usually a system problem. The computer is booting OK now ?
-
well i have shut it off and on 20 times or so now. it does seem to take a bit longer to load when it 1st boots up and shows the windows logo.
-
Lets have a look
Download OTL (http://oldtimer.geekstogo.com/OTL.exe) to your Desktop
Secondary link (http://www.itxassociates.com/OT-Tools/OTL.exe)
- Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
(https://dl.dropboxusercontent.com/u/73555776/OTL_Main_Tutorial.gif)
- Select All Users
- Select LOP and Purity
- Under the Custom Scan box paste this in
netsvcs
BASESERVICES
%SYSTEMDRIVE%\*.exe
c:\program files (x86)\Google\Desktop
c:\program files\Google\Desktop
dir "%systemdrive%\*" /S /A:L /C
CREATERESTOREPOINT
- Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
- When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
- Attach both logs
-
I had the settings wrong for run 1. If you wonder why this is scan 2
-
Hallo, I've having the same problem with boot windows XP. Could you help me?
Thanks
-
@jozjo please start your own thread as this one is now becoming congested
@omfgwork1111
Looks like you have had a bit of adware recently, so we will clear that and empty the temporary files. If you could follow this with a defragment it should improve the start up
Warning This fix is only relevant for this system and no other, using on another computer may cause problems
Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot
Run OTL
- Under the Custom Scans/Fixes box at the bottom, paste in the following
(https://dl.dropbox.com/u/73555776/OTL_Fix.GIF)
:Commands
[CREATERESTOREPOINT]
:OTL
IE - HKU\S-1-5-21-360967719-374184634-245292821-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-360967719-374184634-245292821-1000\..\URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - No CLSID value found
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O3 - HKU\S-1-5-21-360967719-374184634-245292821-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [20131121] C:\Program Files\AVAST Software\Avast\setup\emupdate\35829f45-2106-4ab8-8d4b-9e866b6657a7.exe (AVAST Software)
O4 - HKLM..\Run: [SMessaging] C:\Users\hearse\AppData\Local\Strongvault Online Backup\SMessaging.exe File not found
O20:64bit: - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll) - File not found
[2013/01/30 15:27:06 | 000,000,000 | ---D | M] -- C:\Users\hearse\AppData\Roaming\Strongvault
:Files
C:\Users\hearse\AppData\Local\Strongvault Online Backup
:Commands
[resethosts]
[emptytemp]
[Reboot]- Then click the Run Fix button at the top
- Let the program run unhindered, reboot the PC when it is done
- Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
THEN
Please download AdwCleaner (http://www.bleepingcomputer.com/download/adwcleaner/) by Xplode onto your desktop.
- Close all open programs and internet browsers.
- Double click on AdwCleaner.exe to run the tool.
- Click on Scan.
- After the scan is complete click on "Clean"
- Confirm each time with Ok.
- Your computer will be rebooted automatically. A text file will open after the restart.
- Please post the content of that logfile with your next answer.
- You can find the logfile at C:\AdwCleaner[S1].txt as well.
-
ok.. so I don't see a C:\AdwCleaner[S1].txt .. I see a adwclearer[S0] and adwcleaner[R0].
-
Has the startup time improved now ?
-
I am having the same issue can some one help me with a fix txt
-
@erickirchey could you start your own thread please
-
I did opic: NEED HELP ASAP aswrvrt.sys have Farbar Recovery log (Read 5 times)
-
That is in the business section, I do not monitor that ... Looking now
-
yes. back to normal. thanks :D
-
Glad to hear, if all is still good tomorrow then let me know and I will tidy up
-
Hey Essex,
so that stuff we did seemed to fix all the boot issues but now I have not media player
when I try to open a file it gives me a server execution failed message.
if I go to the setup for media player it gives me there is a more recent version of media player 12.0.7601.18150 already installed not possible to use older install package 12.0.7601.17514 to install or repair..
I and deselected and re-selected media player in windows addons a few times and done the command line things I could find on the web.
Could this be related or a coincidence?
-
one more thing.
if I go to realtek HD Audio manager on the task bar, right click and select media player it opens
-
Did you try this :
Method 1.
Now you have to stop the Windows Media Player Network Sharing Service and check for the issue, to do that you need to follow the steps provided below.
1. Control Panel -- Administrative Tools -- Services. Find the Windows Media Player Network Sharing Service, open it, click on Stop to stop the service.
2. Close Windows Media Player 12 if it is started.
3. input %USERPROFILE%\Local Settings\Application Data\Microsoft\Media Player\ to Windows Explorer to find the folder.
4. Move all files in the folder to another place as a backup.
Note: Move files in the specific folder will reset database.
5. Restart Windows Media Player to see if we can add files to Library now.
-
I had tried that but just did it again and same thing
-
Glad to hear, if all is still good tomorrow then let me know and I will tidy up
im good.
-
In that case methinks I will send you on your merry way :)
Subject to no further problems :)
I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems
Now the best part of the day ----- Your log now appears clean :thumbsup:
A good workman always cleans up after himself so..The following will implement some cleanup procedures as well as reset System Restore points:
Run AdwCleaner and select Uninstall
Run OTL and hit the cleanup button. It will remove all the programmes we have used plus itself.
Clear Restore Points
Go Start > All Programmes > Accessories > System tools
Right click Disc Cleanup and select run as administrator
When it pops up at the first prompt select OK after it has done some calculations the tabs will appear
Select More Options tab
Press Sytem Restore and Shadow Copies Cleanup button
: Keep Java Updated :
WARNING: Java is the #1 exploited program at this time. The Department of Homeland Security recommends that computer users disable Java
See this article (http://www.forbes.com/sites/eliseackerman/2013/01/11/us-department-of-homeland-security-calls-on-computer-users-to-disable-java/) and this article (http://www.nbcnews.com/technology/technolog/us-warns-java-software-security-concerns-escalate-1B7938755).
I would recommend that you completely uninstall Java unless you need it to run an important software.
In that instance I would recommend that you disable Java in your browsers until you need it for that software and then enable it. (See How to diasble Java in your web browser (http://www.geekstogo.com/2600/how-to-disable-java-in-your-web-browser/) and How to unplug Java from the browser (http://krebsonsecurity.com/how-to-unplug-java-from-the-browser/))
Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:
CryptoPrevent (http://www.foolishit.com/vb6-projects/cryptoprevent/) install this programme to lock down and prevent crypto ransome ware
(https://dl.dropboxusercontent.com/u/73555776/CryptoPrevent.JPG)
Malwarebytes (http://www.malwarebytes.org/mbam-download.php).
Update and run weekly to keep your system clean
It is critical to have both a firewall and anti virus to protect your system and to keep them updated.
To learn more about how to protect yourself while on the internet read our little guide How did I get infected in the first place ? (http://www.geekstogo.com/forum/topic/225044-preventing-malware-and-safe-computing/)Keep safe :wave:
-
Hi, i have same problem as described on the 1st page.
Im using Acer aspire 5732Z with win 7 32bit (not sure of ver).
I tried to follow instructions but the win7 link is dead.
Can You reupload iso, please?
-
I have this problem too, I´ve just create my txt file with frst tool.
I hope it helps to solve my problem.
Thanks in advance!
-
Hi guys, was looking around and found this thread on my first try, my cousins sent me his laptop hoping that i could fix it, unfortunately all my attempts at repair have failed, it won't boot not even in safe mode, ran "chkdsk /r /f /b" multiple times nothing, then safe boot pointed to this asvRvrt.sys problem found out it was because of avast loaded my linux liveUSB and deleted aswRvrt.sys along with the Avast program file and the aswVmm.sys, after that safe mode tells me that CLASSPNP.sys is the problem now, tried chkdsk again nothing and then i even tried sfc /scannow /bootdir=.... it found the errors but couldn't repair anything.
And now here i am hoping that essexboy could help me with this, i really don't want to re-install windows.
The laptop is a VAIO VPCEL running windows7 32bit.
Here's FRST.txt file.
-
Hey guys,
Had the same problem as everyone else. PC BSOD-d and when tried to restart it was stuck on "starting windows" screen. When I tried safe mode it got stuck on the aswrvrt.sys like everyone else. Adding FRST txt file.
-
I use a really old comp as an internet/television interface. It runs Windows XP SP3. It never rebooted from an Avast update and SAFEMODE hangs and reboots at the aswrvrt.sys driver.
I am currently on a new(ish) laptop. I tried the RUFUS program mentioned on the first page, but there is no ISO file on the desktop. When I click the icon in the blue square, it shows my DOWNLOADS file with no files to select. Same on the new H: drive.
I can follow directions well from the page, but am fairly computer illiterate. My instincts are poor. I'd love to post a similar text file, but I can not seem to navigate around Step 1.
-
Billy Corman could you start your own thread please as I am no longer monitoring this one as it is rather full
Did you download OTLPE and follow the instructions details near the bottom of the first post here http://forum.avast.com/index.php?topic=53253.0
-
Billy Corman could you start your own thread please as I am no longer monitoring this one as it is rather full
Did you download OTLPE and follow the instructions details near the bottom of the first post here http://forum.avast.com/index.php?topic=53253.0
DLing OTLPE now.
I'll start a new thread, thanks.
-
essex, can u give me the windows RC for 64 bits dropbox link by private?? I need this solution, but i can't get the RC >.<
Thanks a lot ^^
-
Hi. I have the same problem with boot loop and aswRvrt.sys. I did as essexboy said and I attached the frst.txt.
Thank you in advance for your help.
-
@raywebmedianet
From the reatogo desktop run the command prompt and enter the following :
chkdsk c: /r
On completion reboot
-
WORKED GREAT!
THANK YOU THANK YOU THANK YOU :) :) :)
-
Glad to help :)
-
I'm currently having the same problem as the first post. Only difference is I'm using Vista 64. Can I basically follow the same process?
-
I'm currently having the same problem as the first post. Only difference is I'm using Vista 64. Can I basically follow the same process?
For help, start your own topic with problem info
-
Hi I am almost ready to try this fix on my lap top but was wondering if there is other types of files that could replace the Windows 7 64bit RC? I can't find it anywhere, but will keep looking.
-
Hello all,
I was getting desperate but am very grateful i found this thread!
I'm having the same issue, getting stuck on windows 7 x64 loading after the avast sys driver.
Have run a CHKDSK /F, all fixed but no luck.
I ran SFC and i got the following message:
Windows Resource Protection found corrupt files but was unable to fix some of them.
Details are included in the CBS.Log windir\Logs\CBS\CBS.log.
I tried restarting but nothing...
I ran the diag tool and this is the txt report: http://christianpires.com/FRST.txt (http://christianpires.com/FRST.txt)
Can anyone help me, please?
EDIT: SOLVED, BIOS had been reset to default configs, changed the SATA HDD AHCI from enabled back to disabled and solved the problem.
-
Hi,
Please help me with problem. Please find my FRST.txt. http://data.hu/get/9020804/FRST.txt (http://data.hu/get/9020804/FRST.txt)
Thanks!
-
Hi,
Please help me with problem. Please find my FRST.txt. http://data.hu/get/9020804/FRST.txt (http://data.hu/get/9020804/FRST.txt)
Thanks!
As previously mentioned start your own topic and attach your log to it. Otherwise it just gets buried in this already massive topic.