Please help, Im out of options

[dennisjeb]

Alrighty, so a few days ago when i booted my pc it crahed. I started trying to fix it and it worked (disabled some services) after that i saw my antivirusses and firewall, everything was off. Now when i wanted it to turn on it didnt work. I downloaded like 10 diff. Antivirusses. They all had the same problem.
I really need help cuz i use this laptop for school.
(Sorry for bad english im dutch)

I really need help

[essexboy]

Hi could you follow this thread http://forum.avast.com/index.php?topic=53253.0

[dennisjeb]

ok thank you,

When im done, Shall i post the logs in this topic?

[essexboy]

Yes could you attach them please

[dennisjeb]

Alright here are the first logs...

the log from aswMBR didnt make it.
When the scan is like half way, an error comes up with something about Avast rootkit.

[essexboy]

Could you uninstall Spybot please and then run this programme

• Download RogueKiller  and save it on your desktop.
   
  NOTE: If using IE8 or better Smartscreen Filter will need to be disabled
  
  
• Quit all programs
• Start RogueKiller.exe.
  
• Wait until Prescan has finished ... 
•     Click on Scan

   
 

• Wait for the end of the scan. 
• The report has been created on the desktop. 
• Click on the Delete button.

     

• The report has been created on the desktop.

• Next click on the ShortcutsFix   
  
  
• The report has been created on the desktop.

Please post:    All RKreport.txt text files located on your desktop.

[dennisjeb]

roguekiller reports:

[dennisjeb]

sorry for double upload

[essexboy]

OK MBR is good, lets now look at the services

Download and run farbar service scanner



Tick "All" options.
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.

Please copy and paste the log to your reply.

[dennisjeb]

Farbar Service Scanner Version: 03-03-2013
Ran by Dennis (administrator) on 09-04-2013 at 21:32:42
Running from "C:\Users\Dennis\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Attempt to access Yahoo IP returned error. Yahoo IP is offline
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

[essexboy]

When you try to start avast what error do you get ?

[dennisjeb]

when i do it from the avast UI i dont get anything, All the shields just stay off. But when I do it from the services list. i get error 5 acces denied

[dennisjeb]

and i have tried messing with the options of the avast service in the service list. that also gives me the same error: acces denied

[essexboy]

OK first option will be to reinstall Avast.  Although some of the services you stopped may be required

Download aswClear to your Desktop.
Download the correct version of Avast 
http://files.avast.com/iavs5x/avast_free_antivirus_setup.exe
http://files.avast.com/iavs5x/avast_pro_antivirus_setup.exe
http://files.avast.com/iavs5x/avast_internet_security_setup.exe
Disconnect from the net
Uninstall Avast via control panel

• Boot to Safe Mode.
  
  • Restart the computer.
  • As soon as BIOS is loaded begin tapping the F8 key until the Advanced Options menu appears.
  • Use the arrow keys to select the Safe mode with Networking menu item
  • Press Enter.
• Run aswClear
• In the Select Product to Uninstall dropdown choose the version of Avast that is on your system.
  
  
• Press Uninstall
  
• Once complete reboot your system to Normal Mode
  
• Reinstall Avast

----------

[dennisjeb]

ok thank you, avast is now up and running. BUT NOW: when i restarted my laptop after uninstalling avast. My laptop suddenly was veeeeeeeery slow, very ugly looking windows version. (black/white.) and again super slow. those were the simptomps (they were more bad then) in the beginning of the virus.