windows antivirus pro virus help

August 1, 2009 at 10:25:39
Specs: Windows Vista
I was trying to get the windows antivirus pro off my son's computer again (it popped up a few weeks ago as different name but does same thing). I was finally able to get to the point of updating the AVG and the blue system failure screen came up. Since then, can't open up most programs-such as AVG MALWARE. I can't get windows programs such as restore, etc. to open up. When I click onto the program, a dos window screen opens up saying " program too big to fit window" then instantly closes and program won't open. Strangely, Internet explorer works though and so does word 97. I think he also has the google redirect virus too. I am stuck, can't get anything to work now that I need to get rid of the virus. Help...Any suggestions???

See More: windows antivirus pro virus help

Report •

August 1, 2009 at 12:52:06
1) Install, update database and run full scan with Malwarebytes' Anti-Malware. Attach malwarebyte full scan log, fix anything detected.

2) Run full Scan with SuperAntispyware : . Fix what it detects and post summary scan log.

If I'm helping you and I don't reply within 24 hours send me a PM.

Report •

August 1, 2009 at 13:11:39
It wouldn't help because I can't open programs-such as Malware's Anti-Malware on my computer. I

My biggest worry right now the window screen opens up saying " program too big to fit window" whenever I try to open up almost every program I have... even in safe mode...

Until I get that fixed, no antivirus will work...

Report •

August 1, 2009 at 13:42:50
See if you can generate these logs.

Note: I can help you remove malware manually. Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible. First Track this topic. Then follow:

1) Can you please post your AVZ log:
Note: Run AVZ in windows normal mode and make sure you are connected to internet. If avz.exe doesn't start, then try to rename the file avz.exe to game.pif and try to run it again. Pause/Stop your antivirus, firewall software (if any), close games, text editors and all other programs; leave Internet Explorer/Firefox running, before following the steps below.

i) To create the log file, download AVZ by clicking HERE. Please save this file to your desktop or "My Documents" folder.

ii) Next, unpack the file to a new folder using the Compressed (zipped) folders wizard built into Windows XP/Vista, or a zip utility of your choice.

iii) Once you have unpacked the contents of the zip archive, please launch the file AVZ.exe by double clicking on it or right clicking and selecting Open.
Note: If you are running Windows vista launch AVZ.exe by right clicking and selecting Run as Administrator.

You should now see the main window of the AVZ utility.

--> Please navigate to "File" => "Custom Scripts". Copy the script below by using the keyboard shortcut CTRL+C or the corresponding option via right click.


Paste the script into the execution window by using CTRL+V keyboard shortcut, or the "paste" option via the right click menu. Click on Run to run the script.

--> Choose from the menu "File" => "Standard scripts" and mark the "Healing/Quarantine and Advanced System Investigation" check box. Click on the "Execute selected scripts" button.
Automatic scanning, healing and system check will be executed. A logfile (avz_sysinfo.htm) will be created and saved in the LOG folder in the AVZ directory as Upload to and paste the link here.
* It is necessary now to reboot your machine, because AVZ might disturb some program operations (like antiviruses and firewall) during the system scan. All applications will work properly after the system restart.

Image Tutorial

2) Download and Run DDS which will create a Pseudo HJT Report as part of its log: DDS Tool Download Link. When done, DDS will open two (2) logs

   1. DDS.txt
   2. Attach.txt

Upload the logs to and paste download link in your next reply.
Note: Disable any script-blocking programs and then double-click on the DDS.scr icon to start the program. If you did not disable a script-blocker that may be part of your antimalware program, you may receive a warning from your antimalware product asking if you would like DDS.scr to run. Please allow it to do so.

In your next reply, please include download links to the following:
[*] DDS Logs

If I'm helping you and I don't reply within 24 hours send me a PM.

Report •

Related Solutions

August 1, 2009 at 16:10:35
not having much luck running anything....
after now trying to open files by right clicking run as, I was able to get the avg to open up. When I tried the malware program, it gave me the error '481's invalid picture. When I tried to remove the win 32 cryptor virus, it told me the threat cannot be removed by standard user rights . Do you want to remove the treat as a power user. I believe that is part of the virus, there is no power user.. thus can't remove the virus. Here is the virus scan I just was able to do from avg... I see that avg is corrupt as well... when I tried to reload malware, it said unable to crate directory (a is-g04kh.tmp file error 5: access denied). Now when I double click a program, it often doesn't recognize it, thus have to open as the right click "run as" instead. The fatal blue window came on the computer 2 more times... doesn't look good...

"Scan ""Scan whole computer"" was finished."
Folders selected for scanning:;"Scan whole computer"
Scan started:;"Saturday, August 01, 2009, 6:49:08 PM"
Scan finished:;"Saturday, August 01, 2009, 6:50:41 PM (1 minute(s) 33 second(s))"
Total object scanned:;"151834"
User who launched the scan:;"Wesly Warren"

C:\WINDOWS\system32\svchost.exe (904);"Virus identified Win32/Cryptor";"Infected"
C:\WINDOWS\system32\svchost.exe (520);"Virus identified Win32/Cryptor";"Infected"
C:\WINDOWS\system32\ctfmon.exe (3436);"Virus identified Win32/Cryptor";"Infected"
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (3676);"Virus identified Win32/Cryptor";"Infected"
C:\Program Files\AVG\AVG8\avgui.exe (3340);"Virus identified Win32/Cryptor";"Infected"
C:\Program Files\AVG\AVG8\avgscanx.exe (3884);"Virus identified Win32/Cryptor";"Infected"
C:\Program Files\AVG\AVG8\avgcsrvx.exe (3912);"Virus identified Win32/Cryptor";"Infected"
\\?\globalroot\systemroot\system32\hjgruinjdodvrx.dll;"Virus identified Win32/Cryptor";"Infected"
\\?\globalroot\systemroot\system32\hjgruinjdodvrx.dll;"Virus identified Win32/Cryptor";"Infected"
\\?\globalroot\systemroot\system32\hjgruinjdodvrx.dll;"Virus identified Win32/Cryptor";"Infected"
\\?\globalroot\systemroot\system32\hjgruinjdodvrx.dll;"Virus identified Win32/Cryptor";"Infected"
\\?\globalroot\systemroot\system32\hjgruinjdodvrx.dll;"Virus identified Win32/Cryptor";"Infected"
\\?\globalroot\systemroot\system32\hjgruinjdodvrx.dll;"Virus identified Win32/Cryptor";"Infected"
\\?\globalroot\systemroot\system32\hjgruinjdodvrx.dll;"Virus identified Win32/Cryptor";"Infected"

Report •

August 1, 2009 at 16:12:54
by the way, I had done a scan a few minutes before that, it was much more files corrupt, many of the dll files were involved. I tried to change my user info (the sign in info)--no luck, dll errors there too....

Report •

August 1, 2009 at 17:16:21
Try to get Response Number 3 to work or burn a anti virus boot disc and scan your computer with it.

If I'm helping you and I don't reply within 24 hours send me a PM.

Report •

August 9, 2009 at 16:27:17
It seem they helped the guy to remove Windows Antivirus Pro here:

About Google Redirect issue i can say that Google is blameless in this case – all you can do is to make a complaint for computer technician or try getting some help on the internet by yourself (there's plenty of tutorials about removing Google redirect virus)


Report •

August 9, 2009 at 17:33:30
I think I've gotten the Windows Antivirus Software finally off. There still is some issues I'm working on - media issues which is watching internet movement and making many cookies. The scans show then reoccuring even though I've taken off several times.

I basically renamed my Malware program by putting a 2 at the end of the name then could get it to run; Got the worse of it off then, enough to get computer to run again. Then reloaded avg again and spybot--all which are free.

Thanks for your help.

Report •

Ask Question