BleepingComputer.com: Antivirus's not installing

I've tried all of these antiviruses, and they come up with an error, except Bitdefender which tells me that the services stopped functioning.

I've come to the conclusion that this is probably caused by a virus, sorry if this is in the wrong section, didn't know which section to post this in.

Can anyone help me?

I'm running Windows 7 Build 7601 SP1. If there's anything else you need, ask. I will post it.

This post has been edited by Litre: 08 December 2011 - 01:36 PM

What other anti-malware programs do you have installed?

Have you tried using trustworthy security tools like:

• Malwarebytes Anti-Malware: How to scan and remove malware from your computer
  
• SUPERAntiSpyware: How to use to scan and remove malware from your computer

Have you tried performing an Online Virus Scan?

• List of free online Anti virus scanners
  
• List of online Anti virus scanners
  
• Top Free Online Virus Scan Services

I have installed Malwarebytes, and I did a full scan. It found around 50 threats, and I removed them all. But AVG still isn't installing though.

Please post the complete results of your last MBAM scan for review (even if nothing was found).

To retrieve the Malwarebytes Anti-Malware scan log information, launch MBAM.

• Click the Logs Tab at the top.
  
• The log will be named by the date of scan in the following format: mbam-log-date(time).txt
  -- If you have previously used MBAM, there may be several logs showing in the list.
  
• Click on the log name to highlight it.
  
• Go to the bottom and click on Open.
  
• The log should automatically open in notepad as a text file.
  
• Go to Edit and choose Select all.
  
• Go back to Edit and choose Copy or right-click on the highlighted text and choose Copy from there.
  
• Come back to this thread, click Add Reply, then right-click and choose Paste.
  
• Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.

Logs are saved to the following locations:
-- XP: C:\Documents and Settings\<Username>\Application Data\Malwarebytes\Malwarebytes Anti-Malware\Logs\mbam-log-yyyy-mm-dd
-- Vista, Windows 7, 2008: C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs\mbam-log-yyyy-mm-dd


Please perform a scan with Eset Online Anti-virus Scanner.

• If using Mozilla Firefox, you will be prompted to download and use the ESET Smart Installer. Just double-click on esetsmartinstaller_enu.exe to install.
  
• Vista/Windows 7 users need to run Internet Explorer/Firefox as Administrator. To do this, right-click on the IE icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run As Administrator from the context menu.

• Click the green button.
  
• Read the End User License Agreement and check the box:
• Check .
  
• Click the button.
  
• Accept any security warnings from your browser and allow the download/installation of any require files.
  
• Under scan settings, check and make sure that the option Remove found threats is NOT checked.
  
• Click Advanced settings and select the following:
  • Scan potentially unwanted applications
    
  • Scan for potentially unsafe applications
    
  • Enable Anti-Stealth technology
  
  
• Click the Start button.
  
• ESET will install itself, download virus signature database updates, and begin scanning your computer.
  
• The scan will take a while so be patient and do NOT use the computer while the scan is running. Keep all other programs and windows closed.
  
• When the scan completes, push
  
• Push , and save the file to your desktop as ESETScan.txt.
  
• Push the button, then Finish.
  
• Copy and paste the contents of ESETScan.txt in your next reply. If no threats are found, there is no option to create a log.

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 7622

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

12/4/2011 10:13:01 PM
mbam-log-2011-12-04 (22-13-01).txt

Scan type: Full scan (C:\|)
Objects scanned: 563327
Time elapsed: 1 hour(s), 32 minute(s), 52 second(s)

Memory Processes Infected: 1
Memory Modules Infected: 0
Registry Keys Infected: 2
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 1
Files Infected: 53

Memory Processes Infected:
c:\Windows\kmservice.exe (RiskWare.Tool.CK) -> 1664 -> Unloaded process successfully.

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\Software\DC3_FEXEC (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\VB and VBA Program Settings\SrvID (Malware.Trace) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
c:\program files (x86)\POL (PUP.ArdamaxKeyLogger) -> Quarantined and deleted successfully.

Files Infected:
c:\Windows\kmservice.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\project neptune\project neptune\project neptune v1.32.exe (PUP.Keylogger) -> Quarantined and deleted successfully.
c:\english music\call_of_duty_4_crackfix_and_keygen-razor1911\rzr-cd4f\rzr-cod4.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
c:\framework\msf3\data\templates\template_x86_windows.exe (Trojan.Swrort) -> Quarantined and deleted successfully.
c:\framework\msf3\data\templates\.svn\text-base\template_x86_windows.exe.svn-base (Trojan.Swrort) -> Quarantined and deleted successfully.
c:\Administrator\windows 7 activator\windows7activator.exe (Riskware.Tool.CK) -> Quarantined and deleted successfully.
c:\program files (x86)\Cain\Abel.exe (HackTool.Cain) -> Quarantined and deleted successfully.
c:\program files (x86)\Cain\Abel64.exe (HackTool.Cain) -> Quarantined and deleted successfully.
c:\program files (x86)\Cain\Cain.exe (PUP.Passwordtool.Cain) -> Quarantined and deleted successfully.
c:\Sandbox\administrator\defaultbox\user\current\AppData\Local\Temp\operapassview.exe (PUP.OperaPasswordTool) -> Quarantined and deleted successfully.
c:\Users\administrator\Desktop\pzn-nsft\pzn-nfst.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\hash\3.0.9\natives images files\bb.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\hash\3.0.9\natives images files\cc.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\ownz crypter v3.0.9\natives images files\aa.exe (Backdoor.Agent.Gen) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\ownz crypter v3.0.9\natives images files\bb.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\ownz crypter v3.0.9\natives images files\cc.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\ownz crypter v3.0.9\natives images files\dd.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\predator 4.x.x software private version cracked + working source\predator pain logger 4.1.x - cracked.exe (Malware.Generic) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\predator 4.x.x software private version cracked + working source_2\predator pain logger 4.1.x - cracked.exe (Malware.Generic) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\usb password steal\usb password steal\iepv.exe (PUP.PSW.Passview) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\usb password steal\usb password steal\mailpv.exe (PUP.MailPassView) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\usb password steal\usb password steal\mspass.exe (PUP.PSW.MessenPass) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\usb password steal\usb password steal\ProduKey.exe (PUP.PSWTool.ProductKey) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\usb password steal\usb password steal\wirelesskeyview.exe (PUP.WirelessKeyView) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\vnc_scanner_gui\vnc_scanner_gui.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\wpepro09mod\wpe pro - modified.exe (HackTool.Sniffer.WpePro) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\compressed\wpepro09mod\WpeSpy.dll (HackTool.Sniffer.WpePro) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\Programs\proxychecker-1.0.0.28.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\Programs\smileycentralpfsetup2.3.78.2.nosa.nohp.znfox000.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\Programs\windows3.exe (Backdoor.Fynloski) -> Quarantined and deleted successfully.
c:\Users\administrator\documents\downloads\Programs\windowsapplication2.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\easyauths.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\4.4\4.4\Update.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\4.4\4.4\Crypters\res1.exe (Backdoor.Agent.H) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\4.4\4.4\data\station.bin (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\4.4\4.4\data\stub.bin (Spyware.Passwords) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\idm internet download manager 6.05 build 7 final + keygen and patch\internet download manager 6.05 build 7 final\internet download manager 6.05 build 7 final\PATCH.exe (PUP.Hacktool.Patcher) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\idm internet download manager 6.05 build 7 final + keygen and patch\internet download manager 6.05 build 7 final\internet download manager 6.05 build 7 final\keygen-snd\SnDk&p.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\internet.download.manager.v6.07.final.build.12.incl.keygen.and.patch-snd\SND\SnDk&p.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\kms activator for microsoft office 2010 applications x86 x64 multilingual-fixiso~dibya\mini-kms_activator_v1.053.exe (PUP.Hacktool.Office) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\pin generator v1.0\pin generator v1.0.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\program files (x86)\POL\qs.html (PUP.ArdamaxKeyLogger) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\project neptune v1.4\project neptune\project neptune v1.4.exe (PUP.Keylogger) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\project neptune(2)\project neptune\project neptune v1.45.exe (PUP.Keylogger) -> Quarantined and deleted successfully.
c:\Users\administrator\downloads\yoyopingen\yoyopingen\ieproxy.dll (Spyware.Passwords.Gen) -> Quarantined and deleted successfully.
c:\Users\administrator\AppData\Roaming\data.dat (Stolen.Data) -> Quarantined and deleted successfully.
c:\Users\administrator\AppData\Roaming\logs.dat (Bifrose.Trace) -> Quarantined and deleted successfully.
c:\Users\Public\winupdate.exe (Backdoor.Agent) -> Quarantined and deleted successfully.
c:\Users\administrator\templates\cdkeys.txt (Stolen.Data) -> Quarantined and deleted successfully.
c:\program files (x86)\POL\POL.chm (PUP.ArdamaxKeyLogger) -> Quarantined and deleted successfully.
c:\program files (x86)\POL\tray.gif (PUP.ArdamaxKeyLogger) -> Quarantined and deleted successfully.
c:\program files (x86)\POL\menu.gif (PUP.ArdamaxKeyLogger) -> Quarantined and deleted successfully.
c:\program files (x86)\POL\uninstall.exe (PUP.ArdamaxKeyLogger) -> Quarantined and deleted successfully.


Here you go.

Did you complete the ESET scan?


Your Malwarebytes Anti-Malware log indicates you are using an outdated database version.
The database shows 7622. Last I checked it was 8335.

Please update it through the program's interface <- preferable method. If malware is blocking you from updating, then manually download the database definitions from one of the following locations (they may not be the most current as manual updates are behind in version level compared to updates from within the program) and just double-click on mbam-rules.exe to install:

• download link 1
  
• download link 2

Then perform a new Quick Scan in normal mode and check all items found for removal. Don't forgot to reboot afterwards. Failure to reboot normally will prevent Malwarebytes from removing all the malware. When done, click the Logs tab and copy/paste the contents of the new report in your next reply.


IMPORTANT NOTE: Your scan log results indicate you are using keygens/crack tools.

The practice of using cracking tools, keygens, warez or any pirated software is not only considered illegal activity but it is a serious security risk.

Quote

trendmicro.com/vinfo

Quote

Keygen and Crack Sites Distribute VIRUX and FakeAV

Quote

University of Washington spyware study

Quote

Bad Web Sites: Malware

When you use these kind of programs, be forewarned that some of the worst types of malware infections can be contracted and spread by visiting crack, keygen, warez and other pirated software sites. In many cases, those sites are infested with a smörgåsbord of malware and an increasing source of system infection. Those who attempt to get software for free can end up with a computer system so badly damaged that recovery is not possible and it cannot be repaired. When that happens there is nothing you can do besides reformatting and reinstalling the OS.

I strongly recommend that you remove all cracks and keygens immediately to reduce the risk of infection/reinfection. If not, then we are just wasting time trying to clean your system. Further, other tools used during the disinfection process may detect crack and keygens so they need to be removed.

Using these types of programs or the websites visited to get them is very likely how your computer got infected!!