« previous next »
Pages: [1]   Go Down

Author Topic: Avast Server 4.8 not updating or working correctly after finding the following..  (Read 4533 times)

0 Members and 1 Guest are viewing this topic.

Petetech888

  • Guest
Avast Server 4.8 not updating or working correctly after finding the following..
« on: May 15, 2012, 08:11:10 AM »
The first is the last of many instances before it, all similar only folder location is different.
Any help or advice would be appreciated.

9/05/2012 11:26:40 p.m.   SYSTEM   348   Sign of "Win32:SmokeLoader-PQ [Trj]" has been found in "C:\Program Files (x86)\hMailServer\Data\*********\techinfo\A4\{A421A513-5CC9-43C9-9AA5-5D9894978E47}.eml\EPS00872.zip#2579382907\EPS00872.exe" file. 
10/05/2012 7:39:10 p.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
11/05/2012 1:44:37 a.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
11/05/2012 3:48:36 a.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
11/05/2012 5:51:29 a.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
11/05/2012 7:53:18 a.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
11/05/2012 9:55:06 a.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
11/05/2012 11:56:52 a.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
11/05/2012 1:58:35 p.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
11/05/2012 4:00:18 p.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
11/05/2012 6:02:01 p.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
11/05/2012 8:03:48 p.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
11/05/2012 10:05:35 p.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
12/05/2012 12:07:35 a.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
12/05/2012 2:10:50 a.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
12/05/2012 4:13:25 a.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
12/05/2012 6:14:40 a.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
12/05/2012 8:15:47 a.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
12/05/2012 10:16:51 a.m.   SYSTEM   340   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
14/05/2012 10:10:22 a.m.   SYSTEM   292   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
14/05/2012 11:34:12 a.m.   Administrator   4088   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
14/05/2012 11:35:05 a.m.   Administrator   3392   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
14/05/2012 11:35:16 a.m.   Administrator   4012   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
14/05/2012 12:12:45 p.m.   SYSTEM   292   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
14/05/2012 2:01:16 p.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
14/05/2012 2:26:08 p.m.   Administrator   3140   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
14/05/2012 4:02:48 p.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
14/05/2012 6:03:51 p.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
14/05/2012 8:04:54 p.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
14/05/2012 10:05:58 p.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
15/05/2012 12:07:33 a.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
15/05/2012 2:10:12 a.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
15/05/2012 4:13:00 a.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
15/05/2012 6:15:00 a.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
15/05/2012 8:16:07 a.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
15/05/2012 10:17:12 a.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
15/05/2012 12:18:15 p.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 
15/05/2012 2:19:18 p.m.   SYSTEM   508   Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A. 

I run a website and an email server of this system, it also stores data for the business on it, not particularly sensitive but nonetheless important to us.

Also of interest the previous logs from days before show:

8/05/2012 11:27:27 p.m.   SYSTEM   348   Sign of "Win32:Dropper-gen [Drp]" has been found in "C:\Program Files...
4/05/2012 11:28:28 p.m.   SYSTEM   348   Sign of "Win32:Karagany-GA [Trj]" has been found in "C:\Program Files...
3/05/2012 11:26:22 p.m.   SYSTEM   348   Sign of "Win32:Dropper-gen [Drp]" has been found in "C:\Program Files ...
3/05/2012 11:26:19 p.m.   SYSTEM   348   Sign of "Win32:Malware-gen" has been found in "C:\Program Files ...
24/04/2012 11:28:25 p.m.   SYSTEM   284   Sign of "Win32:Kryptik-INJ [Trj]" has been found in "C:\Program Files ...
22/04/2012 11:28:41 p.m.   SYSTEM   284   Sign of "Win32:Malware-gen" has been found in "C:\Program Files ...
21/04/2012 11:28:09 p.m.   SYSTEM   284   Sign of "Win32:FakeAV-DDW [Trj]" has been found in "C:\Program Files ...
19/04/2012 11:27:36 p.m.   SYSTEM   284   Sign of "Win32:Downloader-OAO [Trj]" has been found in "C:\Program Files (x86)...
29/01/2012 10:47:58 p.m.   SYSTEM   336   Sign of "Win32:Trojan-gen" has been found in "C:\Program Files ...
9/11/2011 10:45:03 p.m.   SYSTEM   276   Sign of "Win32:Konar [Trj]" has been found in "C:\Program Files ...
10/04/2011 1:52:24 p.m.   SYSTEM   280   Function setifaceUpdatePackages() has failed. Return code is 0x20000004, dwRes is 20000004. 
10/04/2011 10:08:58 p.m.   SYSTEM   280   Sign of "Win32:Malware-gen" has been found in "C:\Program Files (x86)\hMailServer...

Others we know in our field have also had their servers attacked this weekend, we are the only ones who use Avast.
Logged

Petetech888

  • Guest
Re: Avast Server 4.8 not updating or working correctly after finding the following..
« Reply #1 on: May 15, 2012, 09:02:31 AM »
OK here is an update, although I have been an avid fan of Avast now for years and believe it is second to none, I also believe that support for this amazing product has been neglected because of new corporate interests, sad but I am grasping for reasons as to why so many common errors sit with support ticket numbers and go unanswered.

I am downing the server and running other products over it to attempt to remove the infection that may have gotten past Avast for the first ever time.

I have downloaded another version of Avast 4.8 Server and have that ready to reinstall after the scans hoping that the updates that I cannot access from my infected system will be in the new package.

Will post an update for those behind me sick of waiting who are attempting to fix this issue themselves rather than wait for the invisible support to appear.
« Last Edit: May 15, 2012, 11:29:37 AM by Petetech888 »
Logged

Petetech888

  • Guest
Re: Avast Server 4.8 not updating or working correctly after finding the following..
« Reply #2 on: May 15, 2012, 11:19:54 AM »
OK, this is where I eat some humble pie.
I ran a seep for viruses and malware and found none, completely 100% clean.
What I have found so far is that the email server program has vulnerabilities not associated with the Avast Server Protection I was using.
It's interesting to see how easy it is to jump to conclusions, although I do think that some of the more troublesome support questions should, if not answered here forwarded to higher level techs.
I uninstalled Avast Server but when trying to re-install licence said it expired 5 days ago. I am wondering if that was the message I got relating to " Function setifaceUpdatePackages() has failed. Return code is 0x2000001A, dwRes is 2000001A"and it means licence expired?

This in itself is interesting as the licence is not meant to expire yet.

Any ideas anyone?

As penance I have decided to answer a few questions on the forum :)
« Last Edit: May 16, 2012, 10:18:39 AM by Petetech888 »
Logged
Pages: [1]   Go Up
« previous next »