Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Issues with RegistryBooster2009 from Uniblue


  • Please log in to reply
29 replies to this topic

#1 kzb

kzb

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:05:12 AM

Posted 10 May 2009 - 01:59 AM

Dear All,

I came across a recommendation from BC that RegistryBooster2009 is a good software application.
Seeing the recommendation from BC, I jumped at it without giving much thoughts (as I was a bit fed-up to see so many registry errors and my Laptop HP Pavillion, running so slow...moreover my AVG 8.5 showing update failed..).
I bought the software application yesterday.
However after running it I was disappointed due to following reason:
1. The application ran the scanning and told me that there were some 1500 odd errors in the registry that needed cleanup.
2. System asks user to choose between 'Full Backup' and 'Partial Backup' of registry items.
3. When I pressed YES for full backup, it said 'Pl. wait while the registry backup is taking place...it may take a few minutes' ...
4. Just after a minute or so, the application is terminated...I thought that it is doing something in the background...but none.
5. When the scanning was redone, with the same no. of errors, I tried the partial backup...it was getting terminated the next moment...
6. I tried and retried n no. of times...but met with the same result...
7. I wrote to their customer support...reply came within a few minutes...to retry with the activation code ...which I had already done in the first attempt...
8. Then the support person forwarded the query to their technical support...from whom support is still awaited...

It is indeed, otherwise very sleek and user-friendly application...

Question is, do the BC Gurus have any clue as to why the application gets terminated just during/after the registry backup and before the registry cleanup?

With my best regards
kzb

BC AdBot (Login to Remove)

 


#2 KoanYorel

KoanYorel

    Bleepin' Conundrum


  • Staff Emeritus
  • 19,461 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:65 miles due East of the "Logic Free Zone", in Md, USA
  • Local time:11:12 PM

Posted 10 May 2009 - 11:56 AM

Moved from HJT to more appropriate.
The only easy day was yesterday.

...some do, some don't; some will, some won't (WR)

#3 buddy215

buddy215

  • Moderator
  • 13,096 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:10:12 PM

Posted 10 May 2009 - 02:31 PM

It is a policy of Bleeping Computer to not recommend the usage of a registry cleaner. It is possible you may
have seen an ad placed on the site, though.

Some of what you describe such as unable to update security programs is often the result of malware blocking.

Suggest you run a scan with Super Antispyware free. Directions for use and download link in the link below.
Post back with its scan log and for further instructions if needed.
http://www.bleepingcomputer.com/forums/ind...t&p=1040160
“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#4 kzb

kzb
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:05:12 AM

Posted 11 May 2009 - 02:48 AM

Thanks for your response.
I guess I was duped by the site who had used the name of BC.
Anyway what I wanted to still tell you that I am unable to run the scan in safe mode...as in safe mode, the PC switcjes off after about 30 mins...in spite of the fact that I had removed any power-saving options...I left it last night to scan and found that the laptop was off.. Tried again this morning and yet again after about 30 mins, it switched off on its own with a click sound.

Is it ok if I run the scan in normal mode (and not safe mode) and then send u the scan report ?

I will act accordingly based on your response.

Thanks again and with my best regards
kzb

#5 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,981 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:06:12 AM

Posted 11 May 2009 - 03:12 AM

If you are talking about registry booster from uniblue, I have used it for some time, but uninstalled it recently, because of what is stated also earlier in this topic. A reg cleaner does not improve anything on your system and can be quite harmful. Personally, I have had no problems at all with registry booster, but I never saw a difference in performance either.
Knowing about the dangers of messing with the registry, I decided it was wiser to just uninstall it.

But the problems you encountered are definitely not normal for the program. I suggest you uninstall it using add/remove programs and see if you have any problems with your computer after that. If you have, I recommend you start a topic in the Am I Infected forum to receive help with possible malware on your system.

Edited by elise025, 11 May 2009 - 03:12 AM.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#6 buddy215

buddy215

  • Moderator
  • 13,096 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:10:12 PM

Posted 11 May 2009 - 06:47 AM

Yes, if you can, run the Super Antispyware scan in regular mode.

Another good program to try if SAS will not complete the scan, is MalwareBytes AntiMalware.
Directions and link to download are in the link below.
http://www.bleepingcomputer.com/forums/ind...t&p=1100727

Edited by buddy215, 11 May 2009 - 06:50 AM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#7 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,277 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:12 PM

Posted 11 May 2009 - 08:33 AM

Bleeping Computer DOES NOT recommend the use of registry cleaners/optimizers for several reasons:

• Registry cleaners are extremely powerful applications that can damage the registry by using aggressive cleaning routines and cause your computer to become unbootable.

The Windows registry is a central repository (database) for storing configuration data, user settings and machine-dependent settings, and options for the operating system. It contains information and settings for all hardware, software, users, and preferences. Whenever a user makes changes to settings, file associations, system policies, or installed software, the changes are reflected and stored in this repository. The registry is a crucial component because it is where Windows "remembers" all this information, how it works together, how Windows boots the system and what files it uses when it does. The registry is also a vulnerable subsystem, in that relatively small changes done incorrectly can render the system inoperable. For a more detailed explanation, read Understanding The Registry.

• Not all registry cleaners are created equal. There are a number of them available but they do not all work entirely the same way. Each vendor uses different criteria as to what constitutes a "bad entry". One cleaner may find entries on your system that will not cause problems when removed, another may not find the same entries, and still another may want to remove entries required for a program to work.

• Not all registry cleaners create a backup of the registry before making changes. If the changes prevent the system from booting up, then there is no backup available to restore it in order to regain functionality. A backup of the registry is essential BEFORE making any changes to the registry.

• Improperly removing registry entries can hamper malware disinfection and make the removal process more difficult if your computer becomes infected. For example, removing malware related registry entries before the infection is properly identified can contribute to system instability and even make the malware undetectable to removal tools.

• The usefulness of cleaning the registry is highly overrated and can be dangerous. In most cases, using a cleaner to remove obsolete, invalid, and erroneous entries does not affect system performance but it can result in "unpredictable results".

Unless you have a particular problem that requires a registry edit to correct it, I would suggest you leave the registry alone. Using registry cleaning tools unnecessarily or incorrectly could lead to disastrous effects on your operating system such as preventing it from ever starting again. For routine use, the benefits to your computer are negligible while the potential risks are great.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#8 kzb

kzb
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:05:12 AM

Posted 11 May 2009 - 01:01 PM

Buddy215,

Many thanks for your advice. Appended at the end is the result of the SAS scan in NORMAL MODE.
I tried the quick scan of the Malwarebytes Antimalware (MBAM) (had read the tip to another user in BC).
However, there the 'Update' did not run saying that I should enable the program to access the internet or allow in firewall.
I tried disabling the firewall too. However the message was the same. I still ran the 'Quick Scan' from MBAM. The quick scan record was clean.
Appending herewith the SAS log for your inputs pls.

Best regards
kzb

******************************************
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 05/11/2009 at 06:27 PM

Application Version : 4.26.1002

Core Rules Database Version : 3885
Trace Rules Database Version: 1833

Scan type : Complete Scan
Total Scan Time : 04:26:46

Memory items scanned : 474
Memory threats detected : 0
Registry items scanned : 5829
Registry threats detected : 0
File items scanned : 92378
File threats detected : 0
******************************************

#9 kzb

kzb
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:05:12 AM

Posted 11 May 2009 - 01:05 PM

Queitman7,

Many thanks for enlightening me on the registry cleanup...still going through the pearls of wisdom.

Thanks again,

Best regards
kzb

#10 buddy215

buddy215

  • Moderator
  • 13,096 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:10:12 PM

Posted 11 May 2009 - 02:10 PM

See if you can download the manual update for MBAM from the link below. Once on your computer, double click it to install.
http://www.malwarebytes.org/mbam/database/mbam-rules.exe

Try cleaning up your computer with ATF Cleaner in the link below.
http://www.atribune.org/ccount/click.php?id=1
Double-click ATF-Cleaner.exe to run the program.

* Under Main "Select Files to Delete" choose: Select All.
* Click the Empty Selected button.
* If you use Firefox browser click Firefox at the top and choose: Select All
* Click the Empty Selected button.
If you would like to keep your saved passwords, please click No at the prompt.
* If you use Opera browser click Opera at the top and choose: Select All
* Click the Empty Selected button.
If you would like to keep your saved passwords, please click No at the prompt.
* Click Exit on the Main menu to close the program.

Note: On Vista, "Windows Temp" is disabled. To empty "Windows Temp" ATF-Cleaner must be "Run as an Administrator".

If MBAM does not update or find any malware, run a scan with Kaspersky online scanner. Directions and download link:
http://www.bleepingcomputer.com/forums/ind...t&p=1045589
“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#11 kzb

kzb
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:05:12 AM

Posted 11 May 2009 - 04:15 PM

Buddy215,

Tried with the rules MBAM too. Did not get success. Prepared a pdf containing the screenshots...but unable to find out how to send it across to you.

However, Kaspersky is running and scanning is in progress. Will send the scan report after its run fully..I guess it will take about 2-3 hours at least.

Tried the other cleaning software...its nice, but still it could not delete obstinate items from temp.

Best regards
kzb

#12 kzb

kzb
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:05:12 AM

Posted 11 May 2009 - 11:44 PM

Buddy215,

Here is the scan report from Kaspersky. There are 2 infections. Pls. advise. Thanks....kzb
**********************************************
--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7.0 REPORT
Tuesday, May 12, 2009
Operating System: Microsoft Windows XP Home Edition Service Pack 3 (build 2600)
Kaspersky Online Scanner version: 7.0.26.13
Program database last update: Monday, May 11, 2009 22:51:30
Records in database: 2163071
--------------------------------------------------------------------------------

Scan settings:
Scan using the following database: extended
Scan archives: yes
Scan mail databases: yes

Scan area - My Computer:
C:\
D:\

Scan statistics:
Files scanned: 92433
Threat name: 2
Infected objects: 51
Suspicious objects: 0
Duration of the scan: 03:08:23


File name / Threat name / Threats count
C:\WINDOWS\system32\USER32.dll/C:\WINDOWS\system32\USER32.dll Infected: Trojan.Win32.Patched.dr 50
C:\WINDOWS\psh.nce Infected: Trojan.Win32.Small.aarn 1

The selected area was scanned.
*********************************************

#13 buddy215

buddy215

  • Moderator
  • 13,096 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:10:12 PM

Posted 12 May 2009 - 06:15 AM

C:\WINDOWS\psh.nce Infected: Trojan.Win32.Small.aarn 1 is a "backdoor trojan". See info in link below.
http://www.dslreports.com/faq/10063
“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#14 kzb

kzb
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:05:12 AM

Posted 12 May 2009 - 06:29 AM

Buddy215,

Many thanks for your response. I am now slightly confused and greatly worried.
Do I need to format and re-install ?
For your info. I had my firewall disabled...because when it was enabled, the net was extremely sluggish.
Pls. help.

Best regards
kzb

#15 kzb

kzb
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:05:12 AM

Posted 12 May 2009 - 06:30 AM

Buddy215,

While responding, kindly consider if there was an alternative to disinfect the two without formatting.

Best regards
kzb




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users