Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Java


  • Please log in to reply
22 replies to this topic

#1 jziggyp

jziggyp

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:39 PM

Posted 07 December 2013 - 11:01 PM

I am unable to updae JAVA from 6.0.450 version to any of the newer updated versions ..I  removed older versions and tried to install the several of the newer versions as the update became available ... They will not install or work so I end up re installing the 6.6.450 version  . Vista 64 bit is my system .. Is there a fix to this problem ?


Edited by hamluis, 12 December 2013 - 03:20 PM.
Moved from Vista to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:39 AM

Posted 07 December 2013 - 11:10 PM

 
 

G'day jziggyp, and welcome to BC !!

 

Please run the following for me::

 

Download Security Check by Screen317 from HERE
* Save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If a security program requests permission to access the Internet, allow it to do so.

 

 

Download  MiniToolBox MiniToolBox, Save it to your desktop and run it.
Close any Firefox browsers you may have open
Checkmark the following boxes:
•Flush DNS
•Report IE Proxy Settings
•Reset IE Proxy Settings
•Report FF Proxy Settings
•Reset FF Proxy Settings
•List content of Hosts
•List IP configuration
•List last 10 Event Viewer log
•List Installed Programs
•List Users, Partitions and Memory size.
•List Minidump Files
 
Click Go and copy / paste the result (Result.txt).

 

 

 

 

 

 

Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#3 jziggyp

jziggyp
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:39 PM

Posted 08 December 2013 - 10:46 AM

MiniToolBox by Farbar  Version: 13-07-2013
Ran by GLMS (ATTENTION: The logged in user is not administrator) on 08-12-2013 at 10:27:05
Running from "C:\Users\GLMS\Downloads"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================
The requested operation requires elevation.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1    localhost

========================= IP Configuration: ================================

avast! SecureLine TAP Adapter v3 = Local Area Connection 2 (Disconnected)
Broadcom 4322AG 802.11a/b/g/draft-n Wi-Fi Adapter = REMOVED (Connected)
Realtek RTL8102E Family PCI-E Fast Ethernet NIC (NDIS 6.0) = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : REMOVED
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : tampabay.rr.com

Wireless LAN adapter REMOVED:

   Connection-specific DNS Suffix  . : tampabay.rr.com
   Description . . . . . . . . . . . : Broadcom 4322AG 802.11a/b/g/draft-n Wi-Fi Adapter
   Physical Address. . . . . . . . . : 00-21-00-AA-48-2C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::c979:a137:a891:988d%13(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.114(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, December 08, 2013 9:50:18 AM
   Lease Expires . . . . . . . . . . : Monday, December 09, 2013 9:50:18 AM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 318775552
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-5E-35-10-00-23-8B-74-06-63
   DNS Servers . . . . . . . . . . . : 65.32.5.111
                                       65.32.5.112
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 00-24-7E-24-70-6E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek RTL8102E Family PCI-E Fast Ethernet NIC (NDIS 6.0)
   Physical Address. . . . . . . . . : 00-23-8B-74-06-63
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:4b7:2a89:3f57:fe8d(Preferred)
   Link-local IPv6 Address . . . . . : fe80::4b7:2a89:3f57:fe8d%14(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.{27823373-1DFC-484D-88B1-31F1C3CD32E1}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : tampabay.rr.com
   Description . . . . . . . . . . . : isatap.tampabay.rr.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 17:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.{1358D73E-0084-46AC-B86C-12C62C8923F5}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  dns-redir-lb-01.tampabay.rr.com
Address:  65.32.5.111

Name:    google.com
Addresses:  2607:f8b0:4002:c07::65
      74.125.137.101
      74.125.137.102
      74.125.137.113
      74.125.137.138
      74.125.137.139
      74.125.137.100



Pinging google.com [74.125.196.139] with 32 bytes of data:

Reply from 74.125.196.139: bytes=32 time=50ms TTL=40

Reply from 74.125.196.139: bytes=32 time=49ms TTL=40



Ping statistics for 74.125.196.139:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 49ms, Maximum = 50ms, Average = 49ms

Server:  dns-redir-lb-01.tampabay.rr.com
Address:  65.32.5.111

Name:    yahoo.com
Addresses:  98.139.183.24
      206.190.36.45
      98.138.253.109



Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=85ms TTL=43

Reply from 206.190.36.45: bytes=32 time=148ms TTL=43



Ping statistics for 206.190.36.45:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 85ms, Maximum = 148ms, Average = 116ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
 13 ...00 21 00 aa 48 2c ...... Broadcom 4322AG 802.11a/b/g/draft-n Wi-Fi Adapter
 12 ...00 24 7e 24 70 6e ...... Bluetooth Device (Personal Area Network)
 10 ...00 23 8b 74 06 63 ...... Realtek RTL8102E Family PCI-E Fast Ethernet NIC (NDIS 6.0)
  1 ........................... Software Loopback Interface 1
 14 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
 19 ...00 00 00 00 00 00 00 e0  isatap.{27823373-1DFC-484D-88B1-31F1C3CD32E1}
 17 ...00 00 00 00 00 00 00 e0  isatap.tampabay.rr.com
 22 ...00 00 00 00 00 00 00 e0  isatap.{1358D73E-0084-46AC-B86C-12C62C8923F5}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.114     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.114    281
    192.168.1.114  255.255.255.255         On-link     192.168.1.114    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.114    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.114    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.114    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 14     18 ::/0                     On-link
  1    306 ::1/128                  On-link
 14     18 2001::/32                On-link
 14    266 2001:0:9d38:6abd:4b7:2a89:3f57:fe8d/128
                                    On-link
 13    281 fe80::/64                On-link
 14    266 fe80::/64                On-link
 14    266 fe80::4b7:2a89:3f57:fe8d/128
                                    On-link
 13    281 fe80::c979:a137:a891:988d/128
                                    On-link
  1    306 ff00::/8                 On-link
 14    266 ff00::/8                 On-link
 13    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [61440] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [27648] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [62976] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/07/2013 05:26:09 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\GLMS\APPDATA\LOCAL\MICROSOFT\WINDOWS\EXPLORER\ZZZZZZZZZZZZZ.ZZ> in the hash map cannot be updated.

Context:  Application, SystemIndex Catalog


Details:
    A device attached to the system is not functioning.   (0x8007001f)

Error: (12/07/2013 05:26:08 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\GLMS\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\ZZZZZZZZ.ZZZ> in the hash map cannot be updated.

Context:  Application, SystemIndex Catalog


Details:
    A device attached to the system is not functioning.   (0x8007001f)

Error: (12/07/2013 05:26:07 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\GLMS\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\S22Y94AW\ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ.ZZZ> in the hash map cannot be updated.

Context:  Application, SystemIndex Catalog


Details:
    A device attached to the system is not functioning.   (0x8007001f)

Error: (12/07/2013 03:23:41 PM) (Source: Windows Search Service) (User: )
Description: The update cannot be started because the content sources cannot be accessed. Fix the errors and try the update again.

Context:  Application, SystemIndex Catalog

Error: (12/07/2013 00:54:50 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle

Error: (12/07/2013 00:54:50 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle

Error: (12/07/2013 00:54:50 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle

Error: (12/07/2013 00:54:50 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle

Error: (12/07/2013 00:54:19 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks Simple Start":
DMError Information:-6189 DB Specific Code:-816Additional Info:QuickBooks is unable to determine the cause of the -82 error on the local file
Unable to start specified database: Cannot access "C:\Users\GLMS\Gulf Landscape & Maintenance Service 2-10-113.QBW": another process may be using the file

Error: (12/07/2013 00:54:19 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks Simple Start":
InitSystem OpenDBSession[4] failed.  Error code code -6189, msg QuickBooks is unable to determine the cause of the -82 error on the local file


System errors:
=============
Error: (12/08/2013 10:22:30 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/08/2013 10:12:30 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/08/2013 10:02:30 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/08/2013 09:52:30 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/08/2013 09:51:44 AM) (Source: Service Control Manager) (User: )
Description: Beep
iswtwq
lhldjq
ovanvq
tcoifh

Error: (12/08/2013 09:50:20 AM) (Source: Microsoft-Windows-TaskScheduler) (User: NT AUTHORITY)
Description: 2147549183

Error: (12/08/2013 00:10:00 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/08/2013 00:00:00 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/07/2013 11:50:00 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/07/2013 11:40:00 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2013-12-07 10:40:15.387
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_0fbe86f737e6a8d6\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-07 10:40:15.137
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_0fbe86f737e6a8d6\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-07 10:40:14.883
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_0fbe86f737e6a8d6\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-07 10:40:14.633
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_0fbe86f737e6a8d6\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-07 10:40:14.386
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_0fbe86f737e6a8d6\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-07 10:40:14.136
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_0fbe86f737e6a8d6\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-07 10:40:13.783
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22665_none_0f8a7609380d6a12\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-07 10:40:13.533
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22665_none_0f8a7609380d6a12\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-07 10:40:13.283
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22665_none_0f8a7609380d6a12\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-07 10:40:13.034
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22665_none_0f8a7609380d6a12\tcpip.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Agere Systems HDA Modem
Broadcom 802.11 Wireless LAN Adapter (Version: 5.10.38.14)
CCleaner (Version: 4.08)
HitmanPro 3.7 (Version: 3.7.8.208)
HP Deskjet 3510 series Basic Device Software (Version: 28.0.989.0)
HP Deskjet 3510 series Product Improvement Study (Version: 28.0.989.0)
HP Integrated Module with Bluetooth wireless technology 6.0.1.6204 (Version: 6.0.1.6204)
HP MediaSmart SmartMenu (Version: 2.0.8)
Intel® Graphics Media Accelerator Driver
Java™ 6 Update 45 (64-bit) (Version: 6.0.450)
Lexmark 4200 Series
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Opera Stable 18.0.1284.63 (Version: 18.0.1284.63)
ProtectSmart Hard Drive Protection (Version: 3.10.1.7)
SUPERAntiSpyware (Version: 5.6.1040)
Synaptics Pointing Device Driver (Version: 11.2.1.0)
Windows Driver Package - ENE (enecir) HIDClass  (09/04/2008 2.6.0.0) (Version: 09/04/2008 2.6.0.0)

========================= Devices: ================================

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


========================= Memory info: ===================================

Percentage of memory in use: 53%
Total physical RAM: 3998.25 MB
Available physical RAM: 1867.71 MB
Total Pagefile: 8223.75 MB
Available Pagefile: 6051.56 MB
Total Virtual: 4095.88 MB
Available Virtual: 3996.66 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:285.62 GB) (Free:189.74 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:12.47 GB) (Free:1.96 GB) NTFS

========================= Users: ========================================

User accounts for \\REMOVED

Administrator            GLMS                     Guest                    
JZIGGYP                  

========================= Minidump Files ==================================

No minidump file found


**** End of log ****

 

 

 

 

 

 

 

 

 

 

 

 

 Results of screen317's Security Check version 0.99.77  
 Windows Vista Service Pack 2 x64 (UAC is enabled)  
 Internet Explorer 9  
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Microsoft Security Essentials   
avast! Antivirus                
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java™ 6 Update 45  
 Java™ SE Development Kit 6 Update 45
 Java version out of Date!
 Adobe Flash Player     11.9.900.152  
 Mozilla Firefox (25.0.1)
 Google Chrome 31.0.1650.57  
 Google Chrome 31.0.1650.63  
````````Process Check: objlist.exe by Laurent````````  
 Microsoft Security Essentials MSMpEng.exe
 Microsoft Security Essentials msseces.exe
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast AvastUI.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 1 %
````````````````````End of Log``````````````````````
 

 

 

 

 

 

 

 

 


Edited by jziggyp, 08 December 2013 - 10:55 AM.


#4 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:39 AM

Posted 08 December 2013 - 05:45 PM

 
 

You have TWO Anti Virus programs running.

Please Uninstall ONE of them......either Microsoft Security Essentials or Avast!

(Avast has some errors occurring.....I would probably uninstall it)

if you have any problems uninstalling Avast in the normal fashion.....go HERE

 

 

Then, set up Admin privileges.

 

  • 1. Go to your Start menu and right-click on the My Computer icon.

  • 2. Choosing Manage from the list will prompt a User Account Control (UAC).

  • 3. When you have finished, the Computer Management console will appear. Expand the Local Users and Groups option with the use of the arrow next to it and select the Users folder.

  • 4. Select Administrator Account and go to the Actions panel, then select More Actions.

  • 5. Choose Properties to open the Administrator Properties dialogue box and untick the option labeled Account is Disabled.

  • 6. When done, click OK to confirm the changes.
  • 7. The administrator account should now be present on your log in-screen.


Rerun Security Check (HERE )

Post the result.

 

Then.....Update Java from HERE

Please uninstall old versions....they are a security risk.

 

 

Finally...

 

 

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the finish of the installation, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version. <<< most important )
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
Be sure that everything is checked and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here in your next Reply

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

 

 

(ESET will take a long time to run....2 hours is not unusual)

 

Please scan your computer with ESET Online Scanner
Disable active Antivirus and Antimalware programs How To Temporarily Disable Your Anti-virusHow To Temporarily Disable Your Anti-virus
This scan is best performed with Internet Explorer, as it uses ActiveX
If you will not use Internet Explorer, then please read item 3 in this post
1 - Open Internet Explorer and hold down Control (Ctrl) key and click on This Link  to open ESET OnlineScan in a new window.
2 - Click the ESET Online Scanner button.
3 - For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
a - Click on eset.exe  to download the ESET Smart Installer. Save it to your desktop.
b - Double click on the  icon on your desktop.
4 - Check "YES, I accept the Terms of Use."
5 - Click the Start button.
6 - Accept any security warnings from your browser.
7 - Under scan settings, check "Scan Archives" and "Remove found threats"
8 - Click Advanced settings and select the following:
* Scan potentially unwanted applications
* Scan for potentially unsafe applications
* Enable Anti-Stealth technology
9 - ESET will then download updates for itself, install itself, and begin scanning your computer.
10 - Please be patient as this will take some time (first time scans are always longer).
11 - When the scan completes, click List Threats
12 - Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
13 - Click the Back button and then Click the Finish button.
NOTE:Sometimes if ESET finds no infections it will not create a log.
If you lose the log it can be found at C:\Program Files\ESET\EsetOnlineScanner\log.txt
If no infections are found then please tell me -
You can ignore any ESET detection of AdwCleaner...it is a false positive detection.

 

Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#5 jziggyp

jziggyp
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:39 PM

Posted 08 December 2013 - 08:07 PM

I followowed the the second step and hit a dead end at computer management console ... No local user or groups , no admin. account ???? It does have more actions but nothing like what the instructions say are on it ???? I'm not sure but is there another way to get there ????   UAC is on since I have to use a password to acess computer files and log on ..

 

I do have the ADMIN ACCOUNT on my log on screen ... It had a name change though .. All the accounts I use to log on to the computer need a password to load .. Is this what the above steps are for ??

 

 

I did remove AVAST ..

 

I went ahead and re ran security check and posted ... I'm waiting for a reply on the above before I do anymore .


Edited by jziggyp, 08 December 2013 - 09:00 PM.


#6 jziggyp

jziggyp
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:39 PM

Posted 08 December 2013 - 08:56 PM

Results of screen317's Security Check version 0.99.77  
 Windows Vista Service Pack 2 x64 (UAC is enabled)  
 Internet Explorer 9  
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Microsoft Security Essentials   
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java™ 6 Update 45  
 Java™ SE Development Kit 6 Update 45
 Java version out of Date!
 Adobe Flash Player     11.9.900.152  
 Mozilla Firefox (25.0.1)
 Google Chrome 31.0.1650.57  
 Google Chrome 31.0.1650.63  
````````Process Check: objlist.exe by Laurent````````  
 Microsoft Security Essentials MSMpEng.exe
 Microsoft Security Essentials msseces.exe
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 1 %
````````````````````End of Log``````````````````````



#7 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:39 AM

Posted 08 December 2013 - 10:16 PM

I am pursuing this because of this from MiniToolBox

MiniToolBox by Farbar  Version: 13-07-2013
Ran by GLMS (ATTENTION
: The logged in user is not administrator) on 08-12-2013 at 10:27:05

 

So, read the following guide by Lawrence Abrams, and follow the instructions there.

 

http://www.bleepingcomputer.com/tutorials/enable-disable-windows-administrator-account/

 

If this is successful, then continue on to update java etc etc, following instructions in the previous post of mine.(Post No.4 )


Edited by Condobloke, 08 December 2013 - 10:17 PM.

Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#8 jziggyp

jziggyp
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:39 PM

Posted 09 December 2013 - 01:58 PM

 

 Results of screen317's Security Check version 0.99.77  
 Windows Vista Service Pack 2 x64 (UAC is enabled)  
 Internet Explorer 9  
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Microsoft Security Essentials   
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java 7 Update 45  
 Adobe Flash Player     11.9.900.152  
 Mozilla Firefox (25.0.1)
 Google Chrome 31.0.1650.57  
 Google Chrome 31.0.1650.63  
````````Process Check: objlist.exe by Laurent````````  
 Microsoft Security Essentials MSMpEng.exe
 Microsoft Security Essentials msseces.exe
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 1 %
````````````````````End of Log``````````````````````

 

 

 

 

 

 

 

I had to use the CMD to get the Admin account and I think it worked

 

I uninstalled all Java and reinstalled  java 7 45 update   ---  for 64 bit   do I need to also install the 32 bit version ...

 

Log for security check is above !

 

I am running malwarebytes now !

 

I did run ESET last night before I did the above and It came up clean .

 

What do I need to do to run the computer without using the admin account ... GLMS I know is not the admin. and is the one I use 99% of the time ? I also now have 2 admin accounts on my start up screen !
 


Edited by jziggyp, 09 December 2013 - 02:00 PM.


#9 jziggyp

jziggyp
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:39 PM

Posted 09 December 2013 - 02:13 PM

 

 

 Results of screen317's Security Check version 0.99.77  
 Windows Vista Service Pack 2 x64 (UAC is enabled)  
 Internet Explorer 9  
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Microsoft Security Essentials   
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java 7 Update 45  
 Adobe Flash Player     11.9.900.152  
 Mozilla Firefox (25.0.1)
 Google Chrome 31.0.1650.57  
 Google Chrome 31.0.1650.63  
````````Process Check: objlist.exe by Laurent````````  
 Microsoft Security Essentials MSMpEng.exe
 Microsoft Security Essentials msseces.exe
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 1 %
````````````````````End of Log``````````````````````

 

 

 

 

 

 

 

I had to use the CMD to get the Admin account and I think it worked

 

I uninstalled all Java and reinstalled  java 7 45 update   ---  for 64 bit   do I need to also install the 32 bit version ...

 

Log for security check is above !

 

I am running malwarebytes now !

 

I did run ESET last night before I did the above and It came up clean .

 

What do I need to do to run the computer without using the admin account ... GLMS I know is not the admin. and is the one I use 99% of the time ? I also now have 2 admin accounts on my start up screen !
 

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.12.09.07

Windows Vista Service Pack 2 x64 NTFS
Internet Explorer 9.0.8112.16421
Administrator :: REMOVED [administrator]

12/9/2013 2:00:33 PM
mbam-log-2013-12-09 (14-00-33).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 268567
Time elapsed: 8 minute(s), 11 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 



#10 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:39 AM

Posted 09 December 2013 - 03:15 PM

 
 

Good Work !

 

Yes Install the 32 bit version as well.

 

 

I also now have 2 admin accounts on my start up screen !

 

Is one of these your original accounts ?....the 'GLMS a/c...?

 

As i understand it your 'glms account is not capable of full admin privileges...(you were unable to update java using this a/c)

...whereas the a/c you just established with the CMD prompt is a FULL admin a/c.....which is why you were able to Update Java successfully.

 

Just to clean up...

 

Please download TFC, or Temp File CleanerTFC, by Old Timer
Usage Instructions:

Download TFC from the download link above and save the file on your desktop.
Close ALL running applications as TFC will terminate them before attempting to clean up the temporary files.
Double-click on the TFC icon.
When the program opens, click on the Start button. TFC will terminate the Explorer process and all running applications and then begin the process of cleaning out all of your temp folders.
When done, press OK and reboot your computer and finish the cleanup.

 

Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#11 jziggyp

jziggyp
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:39 PM

Posted 09 December 2013 - 03:53 PM

GLMS is a standard user account and JZIGGYP is the admin account that were on the computer start up before we started this process.....  Can I remove/delete those accounts ans set up another standard user account without affecting anything?  The new admin account will stay.... all accounts were and are pasword protected .

 

I just ran TCF.

JAVA 32 and 64 bits are installed .  

 

I have been tring to figure that out for a long time . I really appreciate your help .. I can only rate you as FANTASTIC :)  Thanks .

 

Was also wondering about a file called LEVELQUALITYWATCHER that I beleive came with a browser download from CNET . It appeared with SCORPIONSAVER.EXE. and some  ADPEAK FILES .... I removed them all , but about a week later they were picked up by Malewarebytes again and deleted.... I read grinlers post on here and I can not find any traces left of this again .... I do have a thread that has been moved to the AM I INFECTED SECTION . I am just wondering if you have any addtional info to share on it ... I think I have run every program from Bleeping downloads ... I hope it's gone for good after adware and malwarebytes , superantispyware and all the others I have tried LOL...



#12 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:39 AM

Posted 09 December 2013 - 05:20 PM

 
 

I would set up the 'new' standard user account first.....give it a run...make sure there are no 'gremlins' .

 

Level quality watcher, ad peak, scorpion,national zoom, wsys control,  (and anything else that is unknown to you) etc.........When you uninstall them from Control panel (add/remove), do they uninstall properly??

 

If they Don't.......run this.....http://support.microsoft.com/Mats/Program_Install_and_Uninstall/

then uninstall again.

http://www.bleepingcomputer.com/tutorials/uninstall-a-program-in-windows/ worth a read

 

Let me know how that goes......if they persist, we will clean them  up for you.

 

Edit: I note that DC3 has suggested a move to AII forum....If the above steps don't get rid of them, that will be a wise move
 

 

 

 

 

Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#13 jziggyp

jziggyp
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:39 PM

Posted 09 December 2013 - 06:35 PM

Yes they uninstalled properly in control panel , I also did a advance search and deleted anything I could find that related to them ... About a week later it seemed to come back but was caught and deleted by malwarebyes .. ... I will check out the read ... Thanks again ...



#14 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,107 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:39 AM

Posted 10 December 2013 - 07:47 PM

 
 

Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool,  If you get a message that RKill is an infection, do not be concerned. This message is just a fake warning given by the infection when it terminates programs that may potentially remove it. If you run into these infections warnings that close RKill, a trick is to leave the warning on the screen and then run RKill again. By not closing the warning, this typically will allow you to bypass the malware trying to protect itself so that RKill can terminate the Infection that we are attempting to get rid of. So, please try running RKill until the malware is no longer running. You will then be able to proceed with the rest of the guide. Do not reboot your computer after running RKill as the malware programs will start again.


rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

* Double-click on the Rkill desktop icon to run the tool.
* A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
* If not, delete the file, then download and use the one provided in Link 2.
* Do not reboot until instructed.
* If the tool does not run from any of the links provided, please let me know.

 

 

Please Download  AdwCleaner
* Close all open programs and internet browsers.
* Double click on adwcleaner.exe to run the tool.
* Click on the Scan button.
* When the scan has finished click on the
Clean button.
* NOTE : Your computer will be
rebooted automatically. A text file will open after the restart.
* Please post the contents of that logfile with your next reply.
* You can find the logfile at C:\AdwCleaner.txt as well.
Once I OK the log, please click the Uninstall button to fully remove all

 

 

Please download Junkware Removal Tool to your desktop.

Shut down your protection software now to avoid potential conflicts.
Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
The tool will open and start scanning your system.
Please be patient as this can take a while to complete depending on your system's specifications.
On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
Post the contents of JRT.txt into your next message.

 

 

 

 

 

 

Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#15 jziggyp

jziggyp
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:39 PM

Posted 10 December 2013 - 11:07 PM

 

Rkill 2.6.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 12/10/2013 10:10:11 PM in x64 mode.
Windows Version: Windows Vista ™ Home Premium Service Pack 2

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1    localhost

Program finished at: 12/10/2013 10:15:46 PM
Execution time: 0 hours(s), 5 minute(s), and 35 seconds(s)
 

 

 

 

 

I lost the adware log and it does not find it with the link ??

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows ™ Vista Home Premium x64
Ran by Administrator on Tue 12/10/2013 at 22:55:12.82
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-3875403947-1774344829-4266933158-500\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{5E477761-E090-4E26-A398-B893144C3E69}



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 12/10/2013 at 23:02:19.45
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

 

 

Have to call it quits tonight .. I'll be bac tomorrow ... Thanks


Edited by jziggyp, 10 December 2013 - 11:15 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users