AAVM subsystem has detected the RCP error.First of all, there is no solution in this FAQ for Microsoft Windows Vista Business. Anyway I've tried to apply proposed solution considering known differences between those operating systems.
The operation could not be completed.
See FAQ (http://www.avast.com/eng/faq-red-circle.html) for more info...
ServicesI have also tried to repair avast installation using Change/Remove and even tried uninstalling the antivirus completely and installing it from a fresh setup file downloaded from avast.com (and digitally signed by ALWIL Software).
The Windows system can not start avast! Antivirus service at the localhost.
Error 1068: Starting the service of dependence or group has failed.
Event[46508]:Anyone knows what is the name of aswMonFlt service??
Log Name: System
Source: Service Control Manager
Date: 2009-02-07T11:43:21.000
Event ID: 7000
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: zeeet9
Description:
Unable to run aswMonFlt service with the following error:
Access denied.
Event[46509]:
Log Name: System
Source: Service Control Manager
Date: 2009-02-07T11:43:21.000
Event ID: 7001
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: zeeet9
Description:
The avast! Antivirus service depends on the aswMonFlt service, which failed to start because the following error:
Access denied.
MMC can not create the snap in.Fortunately I still can list the events using windows shell command:
The snap in could be not installed correctly.
Class ID:
FX:{b05566ad-fe9c-4363-be05-7a4cbb7cb510}
c:\Windows\system32> wevtutil qe ...
I've got Windows Vista Business 32bit and restarting the avast! Antivirus service does not cleared anything.The most common seems to be the existence of a file "eventvwr.exe.config" in the :\WINDOWS\System32 directory.There is no such file or any similar.
Another possibility could be with the registry permissions for HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MMC\SnapIns\FX:{b05566ad-fe9c-4363-be05-7a4cbb7cb510}, might want to try resetting it, or make sure you have full control with Domain User and System.The permissions for that registry key and all subkeys and values are inherited from HKEY_LOCAL_MACHINE\SOFTWARE and set to:
Users: | Code: [Select] Query Value; | This key and subkeys |
Administrators: | Code: [Select] Full Control; | This key and subkeys |
SYSTEM: | Code: [Select] Full Control; | This key and subkeys |
CREATOR-OWNER: | Code: [Select] Full Control; | Subkeys |
And yet another possibility could be related file or files being corrupted, eventcls.dll, eventvwr.exe, eventvwr.msc ... In this case using the System file checker tool would correct this - http://support.microsoft.com/kb/936212I've run System file checker and it has detected some corrupted files but none of those you've listed.
Microsoft Windows [Version 6.0.6000]
Copyright (c) 2006 Microsoft Corporation. All rights reserved.
C:\Windows\system32>sfc /scannow
Starting to scan the system. This process may take some time.
Beginning verification phase of the scanning system.
Verification completed in 100%. The function of the Windows Protection has found corrupted files but can not fix some of them.
Details can be found in the CBS.Log file windir\Logs\CBS\CBS.log. For example
C:\Windows\Logs\CBS\CBS.log
C:\Windows\system32>
Anyway I can't even find a clear list of the corrupted files in the CBS.log file but I've searched its content for 'event' phrase and there was no such with current timestamp.2009-02-06 15:03:30, Info CSI 0000245c Performing 1 operations; 1 are not lock/unlock and follow:
StageFile (2): flags: 8 app: (null) comp: Microsoft-Windows-WCFCoreComp.Resources, Version = 6.0.6000.16730, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture = [l:10{5}]"pl-pl", VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral file: [ml:54{27},l:52{26}]"ServiceModelEvents.dll.mui" srcfile: @0x61569c4
Anyway 2009-02-06 seems to be a few days ago ;)