Finding the Avast Bootup Scan Log File

I wrote done the name of the following file as Avast was doing a bootup scan:

file:///C:/Documents%20and%20Settings/All%20Users/Application%20Data/AVAST%20Software/Avast/report/aswBoot.txt

Long name, isn't it? This file seems to contain all possible problems and errors found by the scheduled Avast bootup scan.

The Avast bootup scan came up with the following error on 3 files on my hard drive:

Error 42127 {CAB archive is corrupted

The Avast website has this to say about this particular error:

Boot-Time Scan Error 42127 {CAB archive is corrupted}

Sounds like it is no big deal. Since all 3 instances of error 42127 are Google Earth files, I'll assume that the problem is that Avast cannot interpret the files. This could be a common problem.

I suppose the way to fine out for sure is to install and uninstall Google Earth. Don't think I'll do this quite yet. I'm not that worried.

Here's another site that suggests that the only thing this is is a file format that Avast cannot read:

Avast boot time scan showing corrupt files

Maybe I should be more worried than I am. If Avast cannot interpret the file format, this could be an excellent place for malware to hide. At least, that's my theory. However, maybe I'm wrong. After all, the malware cannot really hide unless it itself understands the file format. How does malware hide its own signature unless it encrypts its own signature in some way? So, maybe its not such an ideal place to hide after all.

Update: June 19, 2014

I ran a boot-time scan overnight. Came up with errors 42125 and 42127. Here's what the Avast Forum says:

Error 42125 and Error 42127

Sounds like both these errors are zero big deal. I'm not going to worry about it.

Update: October 22, 2014

Wow! Computers get more complicated every year. It appears that now you have to explicitly request a log file:

No aswBoot.txt File Nor Folder Created to Store It

That's one reason why I have this blog. So many things to keep track of!

Ed Abbott

How to Remove AVG Anti-Virus

I'm looking to remove AVG from WinXp this morning. Here's the first link I see:

How to Uninstall AVG Completely?

The above link alerts us to the AVG Removal Tool. It is found here:

AVG Download Center

I just now downloaded the AVG removal tool and it does seem to remove AVG completely from my system. So, it seems, I need not fear installing AVG because I now know it can be easily and completely removed.

However, it will take me a few days to know whether or not it was completely removed. Right now, though, I see no signs of AVG on my computer.

I'm running AVG under Windows XP on an old AMD Athlon that dates from about 2003. So, my hardware is very very ancient.

AVG is a good product. I recommend it, though I don't necessarily recommend it over other products. Still, it is a very good start. I'm very grateful to AVG for their virus protection.

Ed Abbott

Four Free Anti-Virus Software Tools

I've been studying four free anti-virus software tools. Here they are listed in alphabetical order: Avast, Avira, AVG and Trend Micro Housecall.

So far, Avast is my favorite. It is my favorite for these reasons:

1. Easy to use interface.
2. When you click on scan, you are given many different scans to choose from.
3. You can do a quick scan or a full scan. The full scan takes me about 4 hours to complete.
4. Amongst the scan options is the option to scan upon booting up. This is advantageous as it seems to me that it is impossible for malware to move around and hide if it is not yet running. Therefore, being able to schedule a scan the next time you boot up your computer adds a nice little extra dimension to your virus protection.
5. One of the tools that Avast offers is a tool to update all the software on your system. In other words, it will scan your system for software that has known security holes and will then provide you a means to update this software. I'd call this tool a comprehensive software updater, just to give it a name.
6. You can easily disable Avast for 10 minutes or more by right-clicking on the little Avast icon in the lower right-hand corner of your screen. This is handy if you want to resolve a software conflict or you want your entire computer to yourself without your anti-virus protection running.

Overall, Avast is my favorite anti-virus tool, though the other Anti-Virus software tools seem quite good.

One thing worth noting is that your Anti-Virus tool will probably take hours to scan your computer, regardless of how you run it.

Ed Abbott

Examples of malicious javascript

Here's a blog a need to take a look at:

Examples of malicious javascript

Ed Abbott

Special Bob'sComprehensive Malware Removal Guide

 
The title of this article is a
funny one, Special Bob's
Comprehensive Malware Removal
Guide. However, when
you actually visit Special Bob's
web page, it makes sense:

Malware Removal

Here's a guy who clearly loves
computers. He would not have
compiled such a comprehensive
list of malware removal tools
if he did not.

No one would do what he has done
just for the money. It takes a
special kind of dedication to
learn how to fix computers and
remove malware. Furthermore, it
takes much time and energy
discovering all of these malware
removal resources and learning
how to use them.

Time put in and patience brings a
happy result. Clearly Bob has
put in the time and he has the
patience to work with all these
tools. No doubt that's why he
is called Special Bob.

Ed Abbott

Removing MalwareUsing Windows Safe Mode

 
Here's an article that describes
how to get into Windows Safe Mode:

Windows XP Safe Mode Explained

As the article explains, getting
into safe mode is a two-step
process:

1. Start Windows (boot it up)
2. Hold down the f-8 key

Why Safe mode? Why would you want
to boot up in safe mode to remove
viruses and spyware?

In some cases, you can prevent malware
from running by booting up into safe
mode. If you can do this, you stop
the malware from running and thus taking
steps to protect itself.

Malware is famous for protecting itself.
Try to remove it and it will try to protect
itself from removal. Of course, the malware
has to be running in order for it to
practice self-protection.

You might say that Windows Safe Mode
is the middle path. It is the middle path
between two extremes.

Running your copy of Windows in Windows
Normal Mode is one end of the extreme.
This is the mode that will almost surely
allow your malware problem to be running
concurrently to you running something that
is trying to remove your malware problem.
If this happens, you will likely have two
pieces of software doing battle.

One piece of software is the evil piece
of software, the malware that has infected
your computer. The other piece of software
is the good software, the malware removal
tool that is trying to fix your computer.
Both do battle with each other if both
are allowed to run at the same time.

Sometimes the battle is over before it
begins. Try to visit a website that has
a malware removal tool on it and you
are prevented from visiting that website
by the offending malware itself. I call
this phenonema malware redirection.

With maleware redirection any attempts
to visit a website that will help you to
remove malware are redirected to another
website. Often this redirection is to
a site that runs advertising of some kind.

I don't have enough experience to know
whether or not running your computer in
safe mode will solve this problem for you.
However, I'd at least give safe mode a try
if I had this problem.

Here's my hierarchy of good, better and
best when it comes to removing malware:

1. It is good to try to remove malware
   while running your copy of Windows in
   mormal mode. This often does some good,
   especially if your computer is not too
   badly infected. This has worked for me
   for years as of this writing.
2. Better yet is to run Windows in
   Safe Mode as this may knock
   out some malware temporarily. Of course,
   I can't guarantee this. However, it
   is worth a try.
3. For profound malware infections,
   it is best to run Windows off of a
   separate boot disk. For example, a
   copy of Windows on a CD or a DVD.

Of the three ways to run malware removal
tools, the bootable disk option
is the best in terms of effectiveness.
While I've not tried this mywelf, because
I've never had to, I can see that doing
this has a great advantage:

The advantage of a boot disk is that your
infected copy of Windows becomes a passive
entity that is asleep and totally dormant.
In other words, the infected copy of Windows
has no way to defend itself against malware
disinfection.

Here's a post that I've written that gives more
information about running Windows off of a
stand-alone disk for malware disinfection
purposes:

Michael Horowitz on Removing Spyware

Here's something to keep in mind when trying
to remove malware from your infected copy
of Windows: A good decision represents
a balance of interests.

Here's the two interets you want to consider
when trying to remove malware from your system:

1. Convenience
2. Effectiveness

Balancing these two interests might lead
me to try to remove malware in this order of
preference:

1. Try removing the malware in Safe Mode
   first using an online malware scanner.
2. If Safe Mode fails, use your credit card
   to order a bootable disk that has malware
   removal utilities on it.
3. If your problems are very minor,
   or you are very lazy about discovering Windows
   Safe Mode, then you might as well try running
   a malware removal tool in Windows Normal
   Mode first. Normal mode is better than
   nothing and hey, it might work.

Here's a broad outline of how to remove
malware in safe mode:

1. Boot up in safe mode
   by holding down the
   f-8 key on the
   top row of your keyboard.
2. Go to a website that has
   a malware removal tool that
   comes highly remcommended by
   more than one reputable source
   of information
3. Run the malware removal
   tool

It is important that you read
about your malware removal tool
first. Make sure it does malware
removal, not malware installation.

Your read this right. Some tools
that purport to remove malware
actually install it instead. Be
sure to seek out independent reviews
to make sure that your so-called
malware removal tool is not in fact
evil software masquerading as your
friend.

Ed Abbott

Michael Horowitz on Removing Spyware

 
Here's a page I've just discovered
while doing research on removing
maleware in safe mode on
a Windows machine:

Removing Spyware

The above link references 3 articles
written by Michael Horowitz. Seems
that some of the best things in life
come in a series of 3. These articles
are no exception.

In article number 1, Michael Horowitz
goes over two things:

1. Removing malware from inside of
   Windows
2. Removing malware from outside of
   Windows

In article number 2, Michael Horowitz
assumes that you will be removing
malware from a bootable CD. In this
second article he discusses two choices:

1. Running the boot CD in the infected
   machine
2. Running the boot CD over a network

Note that however you run the boot CD,
you are running the CD outside the infected
machine in the sense that the infected hard
drive is a passive entity only.

In article number 3, Michael Horowitz describes
what is essentially a two-step process.

1. Run a series of anti-malware programs on
   the ultimate boot CD to clear your computer
   of the worst of the infections
2. Boot the newly disinfected machine and
   run a series of online scanners to further
   correct anomalies.

In a world of misdirection and wasted time,
Michael Horowitz gets right to the point.
He tells you how to remove malware from
your infected machine in the most effective
way possible.

Ed Abbott