Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infection changing Malwarebytes - scan fail options disabled


  • Please log in to reply
30 replies to this topic

#1 JohnR0846

JohnR0846

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago / Milwaukee
  • Local time:06:49 AM

Posted 07 November 2014 - 09:42 AM

Laptop
Windows 7 service pack 1 64 bit .

Infected
Problems with Malwarebytes.
1.  Protection disabled:  Detection and Protection - I have enabled Malicious Website Protection.  When Malwarebytes starts the option is disabled.  Selecting “Fix Now” does not work.
2.  Update fails with message “Update Server unavailable”.
3.  Scans start and then message “Scan failed to run properly”.

A week ago - Worked problem with Malwarebytes Tech Support.
Ran a check of MB installation and a Farbar scan.
After reviewing logs had a MB clean program run followed by a new download and install.
Now the problems are back.
Zone Alarm full scan detects nothing.

Suggested course of action to remove infection.

Thanks;
john b



BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,261 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:49 AM

Posted 07 November 2014 - 10:25 AM

Try these steps....Scan using Rkill. Then scan using Eset Online Scanner.

If nothing is found, then use the All In One Windows Repair tools.....especially running the Option #4. 

 

RKill Download  (Do not reboot after using. Proceed to the Eset Online Scan)

Read what it does and does not do.

Post Rkill's log if it finds anything.

 

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

EDIT: Windows Repair (All In One) Download

  • Reset Registry Permissions
  • Reset File Permissions
  • Register System Files
  • Repair WMI
  • Repair Windows Firewall
  • Repair Internet Explorer
  • Repair MDAC & MS Jet
  • Repair Hosts File
  • Remove Policies Set By Infections
  • Repair Icons
  • Repair Winsock & DNS Cache
  • Remove Temp Files
  • Repair Proxy Settings
  • Unhide Non System Files
  • Repair Windows Updates

Edited by buddy215, 07 November 2014 - 10:29 AM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 JohnR0846

JohnR0846
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago / Milwaukee
  • Local time:06:49 AM

Posted 07 November 2014 - 09:23 PM

Hello Buddy215;

 

Thank you for the reply.

performed step one Rkill log attached.

Proceeding to EST scan

 

Thank you;

john b

 

Rkill 2.6.8 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/07/2014 08:13:54 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1       localhost

Program finished at: 11/07/2014 08:15:59 PM
Execution time: 0 hours(s), 2 minute(s), and 4 seconds(s)
 



#4 JohnR0846

JohnR0846
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago / Milwaukee
  • Local time:06:49 AM

Posted 07 November 2014 - 09:48 PM

Hello All;

 

EST scan incountered error.

asking for configur proxy server.

DO not use a proxy

 

john b



#5 buddy215

buddy215

  • Moderator
  • 13,261 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:49 AM

Posted 08 November 2014 - 05:04 AM

Which browser did you attempt to run Eset in? There are two downloads. One for IE and the second for

other browsers. Uninstall Eset.

If you think you chose the wrong download, download the correct Eset scanner. 

 

Before doing the above:

Make sure that MBAM is completely shut down. If you have an antivirus program or other security program running in

the background, shut it down....especially Spybot S&D.

 

Another question...When you were being helped at MBAM, did they ask you to use Revo Uninstaller to completely remove MBAM before

reinstalling?


Edited by buddy215, 08 November 2014 - 05:14 AM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#6 JohnR0846

JohnR0846
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago / Milwaukee
  • Local time:06:49 AM

Posted 08 November 2014 - 09:46 AM

Greeting  Buddy215;

Progress since last post.

Successfully ran ESET

I did shut MBAM   and Zone Alarm

results fourteen ( 14 ) items found and removed.

Scan results posted below.

 

Another question...When you were being helped at MBAM, did they ask you to use Revo Uninstaller to completely remove MBAM before

reinstalling?

I followed these instructions MBAM  tech support:

Then activated using my license keys.

 

Will run Windows Repair (All in one)  Saturday PM  unless new instruction are received ( on .the road till then ).

 

Thanks for the assistance

john b

 

ESET results posted below:

 

C:\AdwCleaner\Quarantine\C\Windows\System32\roboot64.exe.vir    a variant of Win64/Systweak.A potentially unwanted application    deleted - quarantined
C:\Program Files\Priform\CCupdates\ccsetup416.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
D:\SharedDocs-frmC7\Downloads-121119\111005-iLivid-TV-SetupV1.exe    a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application    deleted - quarantined
D:\SharedDocs-frmC7\MAINTENANCE\priform-info\CCupdates\ccsetup416.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
D:\SharedDocs-frmC7\MAINTENANCE\priform-info\CCupdates\ccsetup417.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
D:\SharedDocs-frmC7\MAINTENANCE\priform-info\SPECCY-info\spsetup126.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
D:\SharedDocs-frmC7\MAINTENANCE\REGISTER-CLEANERS-info\AdvRegOot-Trial_bt.exe    a variant of Win32/Systweak potentially unwanted application    deleted - quarantined
D:\SharedDocs-frmC7\MAINTENANCE\z-one-labs-files\REGSERVO_Installer.exe    a variant of Win32/AdWare.ErrorEND.A application    cleaned by deleting - quarantined
D:\Working-Files-100420\BRS\My Documents\MAINTENANCE\AdvRegOot-Trial_bt.exe    a variant of Win32/Systweak potentially unwanted application    deleted - quarantined
D:\Working-Files-100420\UnivHsSys\z-maintenance\111119-maintenance\AdvRegOot-Trial_bt.exe    a variant of Win32/Systweak potentially unwanted application    deleted - quarantined
D:\Working-Files-100420\UnivHsSys\z-maintenance\120807-maintenance\AdvRegOot-Trial_bt.exe    a variant of Win32/Systweak potentially unwanted application    deleted - quarantined
D:\Working-Files-100420\UnivHsSys\z-maintenance\120807-maintenance\MAINTENANCE\AdvRegOot-Trial_bt.exe    a variant of Win32/Systweak potentially unwanted application    deleted - quarantined
D:\Working-Files-100420\UnivHsSys\z-maintenance\120807-maintenance\SharedDocs\Downloads\111005-iLivid-TV-SetupV1.exe    a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application    deleted - quarantined
D:\Working-Files-100420\UnivHsSys\z-maintenance\120822-MAINTENANCE\AdvRegOot-Trial_bt.exe    a variant of Win32/Systweak potentially unwanted application    deleted - quarantined
 



#7 buddy215

buddy215

  • Moderator
  • 13,261 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:49 AM

Posted 08 November 2014 - 11:31 AM

If you haven't started the All In One repairs....run these two scans first and cleanup up the comp using CCleaner.

 

  • download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

 

Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the

Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of toolbars...especially Yahoo.

You may see Google Tool Bar being offered. You can choose to download and use the portable version and avoid any chance

of installing an unwanted toolbar.   (It appears you have CCleaner installed)

CCleaner - PC Optimization and Cleaning - Free Download

Piriform - How to run CCleaner from a USB drive

 

 

Download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

Edited by buddy215, 08 November 2014 - 11:58 AM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#8 JohnR0846

JohnR0846
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago / Milwaukee
  • Local time:06:49 AM

Posted 08 November 2014 - 11:35 PM

Hello;

Clean up  using:

Adwcleaner

Ccleaner

Junk Removal Tool.

 

logs posted below:

 

# AdwCleaner v4.100 - Report created 08/11/2014 at 21:19:35
# Updated 08/11/2014 by Xplode
# Database : 2014-11-07.1
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Owner - COPERNICUS-XI
# Running from : C:\Users\Owner\Favorites\Downloads\Desktop\adwcleaner_4.100.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17344


-\\ Mozilla Firefox v33.0.3 (x86 en-US)


-\\ Opera v25.0.1614.68


*************************

AdwCleaner[R0].txt - [3696 octets] - [18/09/2013 21:01:47]
AdwCleaner[R10].txt - [2075 octets] - [17/12/2013 22:08:57]
AdwCleaner[R11].txt - [2245 octets] - [21/12/2013 02:32:00]
AdwCleaner[R12].txt - [2319 octets] - [22/12/2013 17:13:52]
AdwCleaner[R13].txt - [2441 octets] - [31/12/2013 10:18:45]
AdwCleaner[R14].txt - [2540 octets] - [16/01/2014 10:21:44]
AdwCleaner[R15].txt - [2662 octets] - [17/01/2014 23:16:31]
AdwCleaner[R16].txt - [2832 octets] - [22/01/2014 20:01:51]
AdwCleaner[R17].txt - [2904 octets] - [04/02/2014 19:54:51]
AdwCleaner[R18].txt - [3026 octets] - [04/02/2014 21:42:52]
AdwCleaner[R19].txt - [3148 octets] - [06/02/2014 14:22:25]
AdwCleaner[R1].txt - [975 octets] - [24/09/2013 23:05:48]
AdwCleaner[R20].txt - [3485 octets] - [26/02/2014 14:25:19]
AdwCleaner[R21].txt - [3387 octets] - [27/02/2014 22:15:54]
AdwCleaner[R22].txt - [3562 octets] - [24/03/2014 13:34:44]
AdwCleaner[R23].txt - [3636 octets] - [02/04/2014 16:31:05]
AdwCleaner[R24].txt - [3976 octets] - [07/05/2014 18:12:30]
AdwCleaner[R25].txt - [4236 octets] - [09/05/2014 11:46:37]
AdwCleaner[R26].txt - [4010 octets] - [14/05/2014 20:08:08]
AdwCleaner[R27].txt - [4299 octets] - [04/06/2014 14:44:07]
AdwCleaner[R28].txt - [4686 octets] - [01/07/2014 17:25:18]
AdwCleaner[R29].txt - [4340 octets] - [13/07/2014 14:44:18]
AdwCleaner[R2].txt - [1095 octets] - [27/09/2013 21:38:55]
AdwCleaner[R30].txt - [4934 octets] - [10/09/2014 19:47:50]
AdwCleaner[R31].txt - [4668 octets] - [11/10/2014 23:29:31]
AdwCleaner[R32].txt - [4701 octets] - [14/10/2014 16:42:15]
AdwCleaner[R33].txt - [4954 octets] - [01/11/2014 01:54:44]
AdwCleaner[R34].txt - [2767 octets] - [08/11/2014 21:19:35]
AdwCleaner[R3].txt - [1216 octets] - [03/10/2013 21:57:13]
AdwCleaner[R4].txt - [2852 octets] - [22/11/2013 19:54:32]
AdwCleaner[R5].txt - [1474 octets] - [22/11/2013 20:02:44]
AdwCleaner[R6].txt - [1594 octets] - [23/11/2013 07:52:33]
AdwCleaner[R7].txt - [1714 octets] - [04/12/2013 14:02:53]
AdwCleaner[R8].txt - [1912 octets] - [08/12/2013 16:17:21]
AdwCleaner[R9].txt - [1956 octets] - [10/12/2013 15:08:03]
AdwCleaner[S0].txt - [3782 octets] - [18/09/2013 21:06:44]
AdwCleaner[S10].txt - [2138 octets] - [17/12/2013 22:09:42]
AdwCleaner[S11].txt - [2312 octets] - [21/12/2013 02:32:47]
AdwCleaner[S12].txt - [2382 octets] - [22/12/2013 17:14:29]
AdwCleaner[S13].txt - [2504 octets] - [31/12/2013 10:19:17]
AdwCleaner[S14].txt - [2602 octets] - [16/01/2014 10:43:19]
AdwCleaner[S15].txt - [2724 octets] - [17/01/2014 23:16:59]
AdwCleaner[S16].txt - [2898 octets] - [22/01/2014 20:02:30]
AdwCleaner[S17].txt - [2966 octets] - [04/02/2014 19:55:33]
AdwCleaner[S18].txt - [3088 octets] - [04/02/2014 21:43:11]
AdwCleaner[S19].txt - [3210 octets] - [06/02/2014 14:22:49]
AdwCleaner[S1].txt - [1035 octets] - [24/09/2013 23:06:53]
AdwCleaner[S20].txt - [3518 octets] - [26/02/2014 14:25:57]
AdwCleaner[S21].txt - [3449 octets] - [27/02/2014 22:16:35]
AdwCleaner[S22].txt - [3628 octets] - [24/03/2014 13:35:23]
AdwCleaner[S23].txt - [3698 octets] - [02/04/2014 16:31:48]
AdwCleaner[S24].txt - [4044 octets] - [07/05/2014 18:12:52]
AdwCleaner[S25].txt - [4268 octets] - [09/05/2014 11:47:27]
AdwCleaner[S26].txt - [4072 octets] - [14/05/2014 20:08:39]
AdwCleaner[S27].txt - [4367 octets] - [04/06/2014 14:44:39]
AdwCleaner[S28].txt - [4641 octets] - [01/07/2014 17:26:14]
AdwCleaner[S29].txt - [4402 octets] - [13/07/2014 14:45:19]
AdwCleaner[S2].txt - [1157 octets] - [27/09/2013 21:39:44]
AdwCleaner[S30].txt - [5006 octets] - [10/09/2014 19:48:53]
AdwCleaner[S31].txt - [4730 octets] - [11/10/2014 23:30:53]
AdwCleaner[S32].txt - [4756 octets] - [14/10/2014 16:43:54]
AdwCleaner[S33].txt - [5016 octets] - [01/11/2014 01:55:50]
AdwCleaner[S3].txt - [1278 octets] - [03/10/2013 21:58:00]
AdwCleaner[S4].txt - [2715 octets] - [22/11/2013 19:56:23]
AdwCleaner[S5].txt - [1535 octets] - [22/11/2013 20:03:51]
AdwCleaner[S6].txt - [1655 octets] - [23/11/2013 07:53:26]
AdwCleaner[S7].txt - [1775 octets] - [04/12/2013 14:03:44]
AdwCleaner[S8].txt - [1934 octets] - [08/12/2013 16:18:17]
AdwCleaner[S9].txt - [2017 octets] - [10/12/2013 15:08:34]

########## EOF - C:\AdwCleaner\AdwCleaner[R34].txt - [5312 octets] ##########
 

# AdwCleaner v4.100 - Report created 08/11/2014 at 21:22:15
# DB v2014-11-07.1
# Updated 08/11/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Owner - COPERNICUS-XI
# Running from : C:\Users\Owner\Favorites\Downloads\Desktop\adwcleaner_4.100.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17344


-\\ Mozilla Firefox v33.0.3 (x86 en-US)


-\\ Opera v25.0.1614.68


*************************

AdwCleaner[R0].txt - [3696 octets] - [18/09/2013 21:01:47]
AdwCleaner[R10].txt - [2075 octets] - [17/12/2013 22:08:57]
AdwCleaner[R11].txt - [2245 octets] - [21/12/2013 02:32:00]
AdwCleaner[R12].txt - [2319 octets] - [22/12/2013 17:13:52]
AdwCleaner[R13].txt - [2441 octets] - [31/12/2013 10:18:45]
AdwCleaner[R14].txt - [2540 octets] - [16/01/2014 10:21:44]
AdwCleaner[R15].txt - [2662 octets] - [17/01/2014 23:16:31]
AdwCleaner[R16].txt - [2832 octets] - [22/01/2014 20:01:51]
AdwCleaner[R17].txt - [2904 octets] - [04/02/2014 19:54:51]
AdwCleaner[R18].txt - [3026 octets] - [04/02/2014 21:42:52]
AdwCleaner[R19].txt - [3148 octets] - [06/02/2014 14:22:25]
AdwCleaner[R1].txt - [975 octets] - [24/09/2013 23:05:48]
AdwCleaner[R20].txt - [3485 octets] - [26/02/2014 14:25:19]
AdwCleaner[R21].txt - [3387 octets] - [27/02/2014 22:15:54]
AdwCleaner[R22].txt - [3562 octets] - [24/03/2014 13:34:44]
AdwCleaner[R23].txt - [3636 octets] - [02/04/2014 16:31:05]
AdwCleaner[R24].txt - [3976 octets] - [07/05/2014 18:12:30]
AdwCleaner[R25].txt - [4236 octets] - [09/05/2014 11:46:37]
AdwCleaner[R26].txt - [4010 octets] - [14/05/2014 20:08:08]
AdwCleaner[R27].txt - [4299 octets] - [04/06/2014 14:44:07]
AdwCleaner[R28].txt - [4686 octets] - [01/07/2014 17:25:18]
AdwCleaner[R29].txt - [4340 octets] - [13/07/2014 14:44:18]
AdwCleaner[R2].txt - [1095 octets] - [27/09/2013 21:38:55]
AdwCleaner[R30].txt - [4934 octets] - [10/09/2014 19:47:50]
AdwCleaner[R31].txt - [4668 octets] - [11/10/2014 23:29:31]
AdwCleaner[R32].txt - [4701 octets] - [14/10/2014 16:42:15]
AdwCleaner[R33].txt - [4954 octets] - [01/11/2014 01:54:44]
AdwCleaner[R34].txt - [5401 octets] - [08/11/2014 21:19:35]
AdwCleaner[R3].txt - [1216 octets] - [03/10/2013 21:57:13]
AdwCleaner[R4].txt - [2852 octets] - [22/11/2013 19:54:32]
AdwCleaner[R5].txt - [1474 octets] - [22/11/2013 20:02:44]
AdwCleaner[R6].txt - [1594 octets] - [23/11/2013 07:52:33]
AdwCleaner[R7].txt - [1714 octets] - [04/12/2013 14:02:53]
AdwCleaner[R8].txt - [1912 octets] - [08/12/2013 16:17:21]
AdwCleaner[R9].txt - [1956 octets] - [10/12/2013 15:08:03]
AdwCleaner[S0].txt - [3782 octets] - [18/09/2013 21:06:44]
AdwCleaner[S10].txt - [2138 octets] - [17/12/2013 22:09:42]
AdwCleaner[S11].txt - [2312 octets] - [21/12/2013 02:32:47]
AdwCleaner[S12].txt - [2382 octets] - [22/12/2013 17:14:29]
AdwCleaner[S13].txt - [2504 octets] - [31/12/2013 10:19:17]
AdwCleaner[S14].txt - [2602 octets] - [16/01/2014 10:43:19]
AdwCleaner[S15].txt - [2724 octets] - [17/01/2014 23:16:59]
AdwCleaner[S16].txt - [2898 octets] - [22/01/2014 20:02:30]
AdwCleaner[S17].txt - [2966 octets] - [04/02/2014 19:55:33]
AdwCleaner[S18].txt - [3088 octets] - [04/02/2014 21:43:11]
AdwCleaner[S19].txt - [3210 octets] - [06/02/2014 14:22:49]
AdwCleaner[S1].txt - [1035 octets] - [24/09/2013 23:06:53]
AdwCleaner[S20].txt - [3518 octets] - [26/02/2014 14:25:57]
AdwCleaner[S21].txt - [3449 octets] - [27/02/2014 22:16:35]
AdwCleaner[S22].txt - [3628 octets] - [24/03/2014 13:35:23]
AdwCleaner[S23].txt - [3698 octets] - [02/04/2014 16:31:48]
AdwCleaner[S24].txt - [4044 octets] - [07/05/2014 18:12:52]
AdwCleaner[S25].txt - [4268 octets] - [09/05/2014 11:47:27]
AdwCleaner[S26].txt - [4072 octets] - [14/05/2014 20:08:39]
AdwCleaner[S27].txt - [4367 octets] - [04/06/2014 14:44:39]
AdwCleaner[S28].txt - [4641 octets] - [01/07/2014 17:26:14]
AdwCleaner[S29].txt - [4402 octets] - [13/07/2014 14:45:19]
AdwCleaner[S2].txt - [1157 octets] - [27/09/2013 21:39:44]
AdwCleaner[S30].txt - [5006 octets] - [10/09/2014 19:48:53]
AdwCleaner[S31].txt - [4730 octets] - [11/10/2014 23:30:53]
AdwCleaner[S32].txt - [4756 octets] - [14/10/2014 16:43:54]
AdwCleaner[S33].txt - [5016 octets] - [01/11/2014 01:55:50]
AdwCleaner[S34].txt - [4894 octets] - [08/11/2014 21:22:15]
AdwCleaner[S3].txt - [1278 octets] - [03/10/2013 21:58:00]
AdwCleaner[S4].txt - [2715 octets] - [22/11/2013 19:56:23]
AdwCleaner[S5].txt - [1535 octets] - [22/11/2013 20:03:51]
AdwCleaner[S6].txt - [1655 octets] - [23/11/2013 07:53:26]
AdwCleaner[S7].txt - [1775 octets] - [04/12/2013 14:03:44]
AdwCleaner[S8].txt - [1934 octets] - [08/12/2013 16:18:17]
AdwCleaner[S9].txt - [2017 octets] - [10/12/2013 15:08:34]

########## EOF - C:\AdwCleaner\AdwCleaner[S34].txt - [5375 octets] ##########
 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.7 (11.08.2014:1)
OS: Windows 7 Home Premium x64
Ran by Owner on 14/11/08 at 22:06:25.06
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 14/11/08 at 22:10:06.39
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#9 buddy215

buddy215

  • Moderator
  • 13,261 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:49 AM

Posted 09 November 2014 - 06:57 AM

Go ahead with the All In One Repair. Be sure to perform the repair shown in Option #4.

 

Open CCleaner and click on Tools. Then click on Uninstall. At the bottom right corner of that page you will see a button

that when clicked will allow you to copy and paste the list of programs installed on your computer. Please post that list. 


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#10 JohnR0846

JohnR0846
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago / Milwaukee
  • Local time:06:49 AM

Posted 09 November 2014 - 03:58 PM

Hello All;

Posted is the CCleaner installed program list.

 

Start the Windows Repair ( all in one ).

 

Thanks;

john b

14:57 14/11/09  produced

Adobe Acrobat  9 Standard - English, Français, Deutsch    Adobe Systems    13/05/16        9.5.5
Adobe Flash Player 15 ActiveX    Adobe Systems Incorporated    14/11/01    16.5 MB    15.0.0.189
Adobe Flash Player 15 Plugin    Adobe Systems Incorporated    14/10/21        15.0.0.189
Adobe Reader XI (11.0.09)    Adobe Systems Incorporated    14/09/18    183 MB    11.0.09
AIMP3    AIMP DevTeam    13/05/03        v3.50.1224 Beta 1, 31.01.2013
Alcor Micro USB Card Reader    Alcor Micro Corp.    11/02/21        1.8.17.26026
Apple Application Support    Apple Inc.    13/11/22    64.7 MB    2.3.4
Apple Software Update    Apple Inc.    12/12/04    2.38 MB    2.1.3.127
Asterisk Key 9.7        14/07/13        
ASUS AI Recovery    ASUS    12/11/29    9.10 MB    1.0.24
ASUS FaceLogon    ASUS    12/11/29    11.6 MB    1.0.0013
ASUS FancyStart    ASUSTeK Computer Inc.    11/06/11    12.0 MB    1.1.0
ASUS LifeFrame3    ASUS    12/11/29    37.6 MB    3.0.28
ASUS Live Update    ASUS    12/11/29    5.25 MB    3.1.2
ASUS Power4Gear Hybrid    ASUS    12/11/29    15.7 MB    1.1.50
ASUS Splendid Video Enhancement Technology    ASUS    12/11/29    20.4 MB    1.02.0037
ASUS Virtual Camera    asus    12/11/29    3.12 MB    1.0.24
ASUS WebStorage    eCareme Technologies, Inc.    11/02/22        2.0.46.1429
AsusVibe2.0    ASUSTEK    11/02/22        2.0.3.585
ATK Package    ASUS    11/02/21    12.0 MB    1.0.0007
Avanquest update    Avanquest Software    14/08/07        1.34
Belarc Advisor 8.4    Belarc Inc.    14/05/15        8.4.0.0
Bing Bar    Microsoft Corporation    11/02/22        6.0.2282.0
Bookworm Deluxe    Oberon Media Inc.    11/02/22        
CCleaner    Piriform            4.19
Control ActiveX de Windows Live Mesh para conexiones remotas    Microsoft Corporation    11/02/21    5.37 MB    15.4.5722.2
Controlo ActiveX do Windows Live Mesh para Ligações Remotas    Microsoft Corporation    11/02/21    5.38 MB    15.4.5722.2
Contrôle ActiveX Windows Live Mesh pour connexions à distance    Microsoft Corporation    11/02/21    5.57 MB    15.4.5722.2
Cooking Dash    Oberon Media Inc.    11/02/22        
CyberLink LabelPrint    CyberLink Corp.    11/02/21        2.5.1908
CyberLink Power2Go    CyberLink Corp.    11/02/21        6.1.3602c
ESET Online Scanner v3                
ETDWare PS/2-X64 8.0.5.0_WHQL    ELAN Microelectronic Corp.    11/02/22        8.0.5.0
Fast Boot    ASUS    11/02/21    1.46 MB    1.0.8
FileASSASSIN    Malwarebytes    13/05/03        1.06
Game Park Console    Oberon Media, Inc.    11/02/21        6.2.1.1
Glary Utilities PRO 5.11    Glarysoft Ltd    14/10/14        5.11.0.23
Governor of Poker    Oberon Media Inc.    11/02/22        
herdProtect Anti-Malware Scanner    Reason Company Software Inc.    14/01/03        1.0
Hotel Dash Suite Success    Oberon Media Inc.    11/02/22        
HP Update    Hewlett-Packard    14/07/23    3.71 MB    4.000.006.002
Intel® Control Center    Intel Corporation    11/02/22        1.2.1.1007
Intel® Management Engine Components    Intel Corporation    11/02/22        7.0.0.1118
Intel® Processor Graphics    Intel Corporation    13/11/27        9.17.10.3347
Intel® Turbo Boost Technology Monitor    Intel    11/02/21    2.15 MB    1.0.400.4
Jewel Quest 3    Oberon Media Inc.    11/02/22        
Luxor 3    Oberon Media Inc.    11/02/22        
Mahjongg dimensions    Oberon Media Inc.    11/02/22        
Malwarebytes Anti-Malware version 2.0.3.1025    Malwarebytes Corporation    14/10/30        2.0.3.1025
Microsoft .NET Framework 4.5.1    Microsoft Corporation    13/11/27        4.5.50938
Microsoft Mouse and Keyboard Center    Microsoft Corporation    12/08/17        1.1.500.0
Microsoft Office 2010    Microsoft Corporation    11/02/21    6.31 MB    14.0.4763.1000
Microsoft Office Enterprise 2007    Microsoft Corporation    12/08/26        12.0.4518.1014
Microsoft Silverlight    Microsoft Corporation    11/02/21    20.4 MB    4.0.50401.0
Microsoft SQL Server 2005 Compact Edition [ENU]    Microsoft Corporation    11/02/21    1.69 MB    3.1.0000
Microsoft SQL Server Compact 3.5 SP2 ENU    Microsoft Corporation    12/12/11    3.39 MB    3.5.8080.0
Microsoft SQL Server Compact 3.5 SP2 x64 ENU    Microsoft Corporation    12/12/11    4.51 MB    3.5.8080.0
Microsoft Visual C++ 2005 Redistributable (x64)    Microsoft Corporation    12/12/11    832 KB    8.0.50727.42
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17    Microsoft Corporation    14/05/06    248 KB    9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161    Microsoft Corporation    13/05/13    788 KB    9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17    Microsoft Corporation    13/05/02    592 KB    9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161    Microsoft Corporation    13/05/13    600 KB    9.0.30729.6161
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106    Microsoft Corporation    14/07/17        11.0.51106.1
Mozilla Firefox 33.0.3 (x86 en-US)    Mozilla            33.0.3
Mozilla Maintenance Service    Mozilla    14/05/02        29.0
MSXML 4.0 SP3 Parser (KB2721691)    Microsoft Corporation    12/08/08    1.53 MB    4.30.2114.0
MSXML 4.0 SP3 Parser (KB2758694)    Microsoft Corporation    13/01/10    1.54 MB    4.30.2117.0
MSXML 4.0 SP3 Parser (KB973685)    Microsoft Corporation    11/02/21    1.53 MB    4.30.2107.0
MyInvoices & Estimates Deluxe    Avanquest North America Inc.    14/08/07    87.6 MB    10.0.0.2
Neat    The Neat Company    14/09/22        5.4.1.273
Neat ADF Scanner 2008 Driver    The Neat Company    13/09/03    6.41 MB    2.0.1.5
Neat ADF Scanner Driver    The Neat Company    12/12/12    11.0 MB    2.0.2.1
Neat Mobile Scanner (Silver) Driver    The Neat Company    13/09/03    7.85 MB    2.0.1.5
Neat Mobile Scanner 2008 Driver    The Neat Company    13/09/03    5.72 MB    2.0.1.4
Neat Mobile Scanner Driver    The Neat Company    12/12/12    7.49 MB    2.0.1.2
NeatConnect Scanner Driver    The Neat Company    14/09/21    9.49 MB    2.0.2.26
Nuance PDF Reader    Nuance Communications, Inc.    11/02/21    47.8 MB    6.00.0041
OpenOffice.org 3.4.1    Apache Software Foundation    13/05/13    314 MB    3.41.9593
Opera Stable 25.0.1614.68    Opera Software ASA            25.0.1614.68
PC Tune-Up        13/07/21        
Plants vs Zombies    Oberon Media Inc.    11/02/22        
PrivaZer    Goversoft LLC    13/10/10        2.4.0.0
QuickTime    Apple Inc.    13/11/22    74.6 MB    7.74.80.86
RealPlayer    RealNetworks    13/01/19        16.0.0
Realtek High Definition Audio Driver    Realtek Semiconductor Corp.    11/02/21        6.0.1.6273
Recuva    Piriform    13/07/22        1.47
RegAlyzer    Safer-Networking Ltd.    14/10/22        1.6.2.16
Samsung Kies    Samsung Electronics Co., Ltd.    13/04/23        2.5.2.13021_10
Samsung Story Album Viewer    Samsung Electronics Co., Ltd.    13/07/25        1.0.0.13054_1
SAP Crystal Reports runtime engine for .NET Framework 4 (32-bit)    SAP    12/09/16    193 MB    13.0.1.220
SeaTools for Windows    Seagate Technology    14/07/17        
Secunia PSI (3.0.0.9016)    Secunia            3.0.0.9016
Send To Neat    The Neat Company    12/12/12    1.22 MB    1.1.0.0
Sonic Focus    Virage Logic, Corp.    11/02/21    4.44 MB    1.00.0000
Speccy    Piriform    14/07/19        1.26
Spybot - Search & Destroy    Safer-Networking Ltd.    14/11/01        2.0.12
syncables desktop SE    syncables    11/02/21    163 MB    5.5.746.11492
TimePilot Central    TimePilot Corporation    12/11/15    24.9 MB    4.0.2064
TimePilot Extreme    TimePilot Corporation    12/09/23    6.03 MB    4.0.1115
TimePilot Paychex Preview Export    TimePilot Corporation    12/09/16    3.27 MB    4.0.1006
TimePilot Standard    TimePilot Corporation    12/09/23    5.78 MB    4.0.1110
Tweaking.com - Windows Repair (All in One)    Tweaking.com    14/10/22        2.10.0
USB2.0 UVC VGA WebCam    Sonix    11/02/22        5.8.55133.208
Vetro Data Manager    TimePilot Corporation    12/09/23    13.7 MB    4.0.1048
Windows Live Essentials    Microsoft Corporation    11/02/22        15.4.3502.0922
Windows Live Mesh ActiveX Control for Remote Connections    Microsoft Corporation    11/02/21    5.37 MB    15.4.5722.2
WinFlash    ASUS    12/11/29    856 KB    2.32.3
Wireless Console 3    ASUS    12/11/29    9.11 MB    3.0.25
WordPerfect IFilter 64 bit    Corel Corporation    12/08/09    174 KB    1.2
WordPerfect Office X5    Corel Corporation    12/10/20        15.0.0.528
World of Goo    Oberon Media Inc.    11/02/22        
XML Notepad 2007    Microsoft Corporation    13/05/13    2.04 MB    2.3.0.0
ZoneAlarm Extreme Security    Check Point    14/05/26        13.1.211.000
ZoneAlarm Security Toolbar    Check Point Software Technologies LTD    14/07/18        
用于远程连接的 Windows Live Mesh ActiveX 控件(简体中文)    Microsoft Corporation    11/02/21    5.37 MB    15.4.5722.2
適用遠端連線的 Windows Live Mesh ActiveX 控制項    Microsoft Corporation    11/02/21    5.37 MB    15.4.5722.2

 



#11 buddy215

buddy215

  • Moderator
  • 13,261 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:49 AM

Posted 09 November 2014 - 05:29 PM

Uninstall Avanquest update    Avanquest Software    14/08/07        1.34

Uninstall Bing Bar    Microsoft Corporation    11/02/22        6.0.2282.0

Uninstall Bookworm Deluxe    Oberon Media Inc.    11/02/22  

Pick one to keep...Unistall other two..(Unless there is a reason to have all three that I am not aware of)

   Control ActiveX de Windows Live Mesh para conexiones remotas    Microsoft Corporation    11/02/21    5.37 MB    15.4.5722.2
Controlo ActiveX do Windows Live Mesh para Ligações Remotas    Microsoft Corporation    11/02/21    5.38 MB    15.4.5722.2
Contrôle ActiveX Windows Live Mesh pour connexions à distance    Microsoft Corporation    11/02/21    5.57 MB    15.4.5722.2

Uninstall Cooking Dash    Oberon Media Inc.    11/02/22  

Uninstall Game Park Console    Oberon Media, Inc.    11/02/21        6.2.1.1

Uninstall Glary Utilities PRO 5.11    Glarysoft Ltd    14/10/14        5.11.0.23
Uninstall Governor of Poker    Oberon Media Inc.    11/02/22  

Uninstall    herdProtect Anti-Malware Scanner    Reason Company Software Inc.    14/01/03        1.0 (this is a beta...there are later versions)

Uninstall Hotel Dash Suite Success    Oberon Media Inc.    11/02/22      

Uninstall Jewel Quest 3    Oberon Media Inc.    11/02/22        
Uninstall Luxor 3    Oberon Media Inc.    11/02/22        
Uninstall Mahjongg dimensions    Oberon Media Inc.    11/02/22 

Uninstall Nuance PDF Reader    Nuance Communications, Inc.    11/02/21    47.8 MB    6.00.0041 (Much later version is available...but if you

only need it to read PDF files then Firefox has its own PDF reader)

Uninstall OpenOffice.org 3.4.1    Apache Software Foundation    13/05/13    314 MB    3.41.9593 (Newer version is available)

Uninstall PC Tune-Up        13/07/21      

Uninstall Plants vs Zombies    Oberon Media Inc.    11/02/22       
Uninstall PrivaZer    Goversoft LLC    13/10/10        2.4.0.0
Uninstall QuickTime    Apple Inc.    13/11/22    74.6 MB    7.74.80.86  (Or Update)

Uninstall RegAlyzer    Safer-Networking Ltd.    14/10/22        1.6.2.16

Uninstall Spybot - Search & Destroy    Safer-Networking Ltd.    14/11/01        2.0.12  (Crappy, hard to use and no longer recommended)

Uninstall World of Goo    Oberon Media Inc.    11/02/22     

Uninstall ZoneAlarm Security Toolbar    Check Point Software Technologies LTD    14/07/18   

 


Edited by buddy215, 09 November 2014 - 05:29 PM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#12 JohnR0846

JohnR0846
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago / Milwaukee
  • Local time:06:49 AM

Posted 09 November 2014 - 10:42 PM

Hello all;

 

Ok proceding with uninstalls.

 

john b



#13 JohnR0846

JohnR0846
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago / Milwaukee
  • Local time:06:49 AM

Posted 10 November 2014 - 01:00 PM

Hello All;

Completed the uninstalls without incident.

Ran Windows Repair ( All in  One )  

Logs posted  below.

 

* * * * * * * * * * * *

Colatteral damage !

COREL  Office does not work

      error  " ConFigDir"  not found in register

Adobe Acrobat  9 Standard   does not work.

      error   "Licensing  for this product has stopped workking"

 

Logs  from Windows Repair Posted below 

Logs   1  through  9

 

Awaiting next instructions

 

john b

 

* * * * *

Tweaking.com - Windows Repair v2.10.1
--------------------------------------------------------------------------------

System Variables
--------------------------------------------------------------------------------
OS: Windows 7 Home Premium
OS Architecture: 64-bit
OS Version: 6.1.7601
OS Service Pack: Service Pack 1
Computer Name: COPERNICUS-XI
Windows Drive: C:\
Windows Path: C:\Windows
Program Files: C:\Program Files
Program Files (x86): C:\Program Files (x86)
Current Profile: C:\Users\Owner
Current Profile SID: S-1-5-21-4032646289-1790232083-2583211033-1001
Current Profile Classes: S-1-5-21-4032646289-1790232083-2583211033-1001_Classes
Profiles Location: C:\Users
Profiles Location 2: C:\Windows\ServiceProfiles
Local Settings AppData: C:\Users\Owner\AppData\Local
--------------------------------------------------------------------------------

System Information
--------------------------------------------------------------------------------
System Up Time: 0 Days 00:25:15

Process Count: 41
Commit Total: 1.43 GB
Commit Limit: 11.57 GB
Commit Peak: 1.52 GB
Handle Count: 12983
Kernel Total: 653.36 MB
Kernel Paged: 481.96 MB
Kernel Non Paged: 171.39 MB
System Cache: 4.40 GB
Thread Count: 560
--------------------------------------------------------------------------------

Memory Before Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 5.78 GB
Memory Used: 1.45 GB(25.1286%)
Memory Avail.: 4.33 GB
--------------------------------------------------------------------------------

Cleaning Memory Before Starting Repairs...

Memory After Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 5.78 GB
Memory Used: 1.26 GB(21.8108%)
Memory Avail.: 4.52 GB
--------------------------------------------------------------------------------

Starting Repairs...
   Started at (14/11/10 00:03:56)

Setting Any Missing 'InstallDate' From Uninstall Sections Before Running Repair...
Total Missing 'InstallDate' Fixed: 15
 
01 - Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (14/11/10 00:03:57)
   Running Repair Under Current User Account
   Done (14/11/10 00:04:11)

01 - Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (14/11/10 00:04:11)
   Running Repair Under System Account
   Done (14/11/10 00:13:57)

01 - Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (14/11/10 00:13:57)
   Running Repair Under System Account
   Done (14/11/10 00:16:19)

02 - Reset File Permissions: C:
   C: & Sub Folders
   Start (14/11/10 00:16:19)
   Trying To Run Repair As Trusted Installer.
   This Repair Is Hidden By Windows Itself.
   You Can See The Repair Working In The Task Manager.
   Running Repair As Trusted Installer
   Done (14/11/10 00:29:37)

02 - Reset File Permissions: D:
   D: & Sub Folders
   Start (14/11/10 00:29:37)
   Trying To Run Repair As Trusted Installer.
   This Repair Is Hidden By Windows Itself.
   You Can See The Repair Working In The Task Manager.
   Running Repair As Trusted Installer
   Done (14/11/10 00:34:05)

02 - Reset File Permissions: All Profiles
   C:\Users & Sub Folders
   Start (14/11/10 00:34:05)
   Running Repair Under System Account
   Done (14/11/10 00:35:43)

02 - Reset File Permissions: Current Profile
   C:\Users\Owner & Sub Folders
   Start (14/11/10 00:35:43)
   Running Repair Under System Account
   Done (14/11/10 00:36:53)

02 - Reset File Permissions: Cleanup
   Repairing Restricted Folders Permissions To Avoid Infinite Loops
   Start (14/11/10 00:36:53)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:36:56)

03 - Reset Service Permissions
   Start (14/11/10 00:36:56)
   Running Repair Under System Account
   Done (14/11/10 00:37:08)

04 - Register System Files
   Start (14/11/10 00:37:08)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:37:43)

05 - Repair WMI
   Start (14/11/10 00:37:43)

   Starting Security Center So We Can Export The Security Info.

   Exporting Antivirus Info...
   ZoneAlarm Extreme Security Antivirus Exported.

   Exporting AntiSpyware Info...
   Windows Defender Exported.
   ZoneAlarm Extreme Security Anti-Spyware Exported.

   Exporting 3rd Party Firewall Info...
   ZoneAlarm Extreme Security Firewall Exported.

   Running Repair Under Current User Account
   Done (14/11/10 00:40:11)

06 - Repair Windows Firewall
   Start (14/11/10 00:40:11)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:40:46)

07 - Repair Internet Explorer
   Start (14/11/10 00:40:46)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:41:15)

08 - Repair MDAC/MS Jet
   Start (14/11/10 00:41:15)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:41:25)

09 - Repair Hosts File
   Start (14/11/10 00:41:25)
   Running Repair Under System Account
   Done (14/11/10 00:41:26)

10 - Remove Policies Set By Infections
   Start (14/11/10 00:41:26)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:41:28)

11 - Repair Start Menu Icons Removed By Infections
   Start (14/11/10 00:41:28)
   Running Repair Under System Account
   Done (14/11/10 00:41:29)

12 - Repair Icons
   Start (14/11/10 00:41:29)
   Running Repair Under Current User Account
   Done (14/11/10 00:41:30)

13 - Repair Winsock & DNS Cache
   Start (14/11/10 00:41:31)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:41:49)

14 - Remove Temp Files
   Start (14/11/10 00:41:49)
   Running Repair Under System Account
   Done (14/11/10 00:41:50)

15 - Repair Proxy Settings
   Start (14/11/10 00:41:50)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:41:52)

16 - Unhide Non System Files
   Start (14/11/10 00:41:53)
   C:\ - Total Files Unhidden: 34 - Check Unhidden_Files.txt for list of files unhidden
   D:\ - Total Files Unhidden: 0 - Check Unhidden_Files.txt for list of files unhidden
   Done (14/11/10 00:43:09)

17 - Repair Windows Updates
   Start (14/11/10 00:43:09)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Setting Windows Updates Files That Are In Use To Be Removed At Next Boot.
   Done (14/11/10 00:43:34)

18 - Repair CD/DVD Missing/Not Working
   Start (14/11/10 00:43:34)
   iTunes not found, not applying UpperFilters iTunes Reg Key
   Done (14/11/10 00:43:34)

19 - Repair Volume Shadow Copy Service
   Start (14/11/10 00:43:34)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:00)

20 - Repair Windows Sidebar/Gadgets
   Start (14/11/10 00:44:00)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:04)

21 - Repair MSI (Windows Installer)
   Start (14/11/10 00:44:04)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:23)

22 - Repair Windows Snipping Tool
   Start (14/11/10 00:44:23)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:25)

23.01 - Repair bat Association
   Start (14/11/10 00:44:25)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:27)

23.02 - Repair cmd Association
   Start (14/11/10 00:44:27)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:29)

23.03 - Repair com Association
   Start (14/11/10 00:44:29)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:32)

23.04 - Repair Directory Association
   Start (14/11/10 00:44:32)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:34)

23.05 - Repair Drive Association
   Start (14/11/10 00:44:34)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:36)

23.06 - Repair exe Association
   Start (14/11/10 00:44:36)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:38)

23.07 - Repair Folder Association
   Start (14/11/10 00:44:38)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:41)

23.08 - Repair inf Association
   Start (14/11/10 00:44:41)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:43)

23.09 - Repair lnk (Shortcuts) Association
   Start (14/11/10 00:44:43)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:45)

23.10 - Repair msc Association
   Start (14/11/10 00:44:45)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:47)

23.11 - Repair reg Association
   Start (14/11/10 00:44:47)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:49)

23.12 - Repair scr Association
   Start (14/11/10 00:44:49)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:52)

24 - Repair Windows Safe Mode
   Start (14/11/10 00:44:52)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:44:54)

25 - Repair Print Spooler
   Start (14/11/10 00:44:54)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:45:12)

26 - Restore Important Windows Services
   Start (14/11/10 00:45:12)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:45:24)

27 - Set Windows Services To Default Startup
   Start (14/11/10 00:45:24)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:45:29)

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1

31 - Repair Windows 'New' Submenu
   Start (14/11/10 00:45:30)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (14/11/10 00:45:32)

Cleaning up empty logs...

All Selected Repairs Done.
   Done at (14/11/10 00:45:32)
   Total Repair Time: 00:41:38


...YOU MUST RESTART YOUR SYSTEM...
 

* * * * * 2

Deleted file - C:\Users\Owner\AppData\Local\Temp\alm.log
Deleted file - C:\Users\Owner\AppData\Local\Temp\amt.log
C:\Users\Owner\AppData\Local\Temp\FXSAPIDebugLogFile.txt
The process cannot access the file because it is being used by another process.
Deleted file - C:\Users\Owner\AppData\Local\Temp\isw_acc_80100000
Deleted file - C:\Users\Owner\AppData\Local\Temp\MSI374d2.LOG
Deleted file - C:\Users\Owner\AppData\Local\Temp\MSI374d3.LOG
Deleted file - C:\Users\Owner\AppData\Local\Temp\MSI374d4.LOG
Deleted file - C:\Users\Owner\AppData\Local\Temp\MSI374d5.LOG
Deleted file - C:\Users\Owner\AppData\Local\Temp\MSI374d6.LOG
Deleted file - C:\Users\Owner\AppData\Local\Temp\MSI98343.LOG
Deleted file - C:\Users\Owner\AppData\Local\Temp\MSIa29ce.LOG
Deleted file - C:\Users\Owner\AppData\Local\Temp\MSIaa746.LOG
Deleted file - C:\Users\Owner\AppData\Local\Temp\MSNDB05.exe
Deleted file - C:\Users\Owner\AppData\Local\Temp\MSNDB05.tmp
Deleted file - C:\Users\Owner\AppData\Local\Temp\QTInstallCode.log
Deleted file - C:\Users\Owner\AppData\Local\Temp\swtag.log
Deleted file - C:\Users\Owner\AppData\Local\Temp\wmsetup.log
Deleted file - C:\Users\Owner\AppData\Local\Temp\~DF02011FC38C09EF91.TMP
Deleted file - C:\Users\Owner\AppData\Local\Temp\~DF138037C31D157375.TMP
Deleted file - C:\Users\Owner\AppData\Local\Temp\~DF38E856102ECD501F.TMP
Deleted file - C:\Users\Owner\AppData\Local\Temp\~DFD0196E17BCC30C92.TMP
C:\Users\Owner\AppData\Local\Temp\~DFE27653934A1778B6.TMP
The process cannot access the file because it is being used by another process.
Deleted file - C:\Users\Owner\AppData\Local\Temp\BingBarInstallerLogs\iDD82.tmp
Deleted file - C:\Users\Owner\AppData\Local\Temp\BingBarInstallerLogs\iDD83.tmp
Deleted file - C:\Users\Owner\AppData\Local\Temp\BingBarInstallerLogs\un30EF.tmp
Deleted file - C:\Users\Owner\AppData\Local\Temp\BingBarInstallerLogs\un30F0.tmp
Deleted file - C:\Users\Owner\AppData\Local\Temp\IswTmp\isw_acc_10100000
Deleted file - C:\Users\Owner\AppData\Local\Temp\IswTmp\Logs\CPLic.swl
Deleted file - C:\Users\Owner\AppData\Local\Temp\IswTmp\Logs\CPLic.swl.old
Deleted file - C:\Users\Owner\AppData\Local\Temp\IswTmp\Logs\ISWAK.swl
Deleted file - C:\Users\Owner\AppData\Local\Temp\IswTmp\Logs\ISWAK.swl.old
Deleted file - C:\Users\Owner\AppData\Local\Temp\IswTmp\Logs\ISWGUI.swl
Deleted file - C:\Users\Owner\AppData\Local\Temp\IswTmp\Logs\ISWGUI.swl.old
Deleted file - C:\Users\Owner\AppData\Local\Temp\IswTmp\Logs\ISWUL_MIN.swl
Deleted file - C:\Users\Owner\AppData\Local\Temp\IswTmp\Logs\ISWUL_MIN.swl.old
Deleted file - C:\Users\Owner\AppData\Local\Temp\mtcmn\sqlite3.dll
Deleted file - C:\Windows\Temp\appcat.xml
Deleted file - C:\Windows\Temp\CProgram Files (x86)Opera25.0.1614.68opera_autoupdate.download.lock
Deleted file - C:\Windows\Temp\fwtsqmfile00.sqm
Deleted file - C:\Windows\Temp\lpksetup-20141109-215626-0.log
Deleted file - C:\Windows\Temp\lpksetup-20141109-225232-0.log
Deleted file - C:\Windows\Temp\lpksetup-20141109-232359-0.log
Deleted file - C:\Windows\Temp\lpksetup-20141109-233953-0.log
Deleted file - C:\Windows\Temp\MpCmdRun.log
Deleted file - C:\Windows\Temp\opera_autoupdate.log
Deleted file - C:\Windows\Temp\temp25145.bat
Deleted file - C:\Windows\Temp\ZLT03745.TMP
Deleted file - C:\Windows\Temp\ZLT06224.TMP
Deleted file - C:\Windows\Temp\ZLT06e29.TMP
 

* * * * * 3

Could Not Find C:\Users\Owner\AppData\Local\Microsoft\Windows\Explorer\iconcache*.db
Deleted file - C:\Users\Owner\AppData\Local\Microsoft\Windows\Explorer\thumbcache_1024.db
Deleted file - C:\Users\Owner\AppData\Local\Microsoft\Windows\Explorer\thumbcache_256.db
Deleted file - C:\Users\Owner\AppData\Local\Microsoft\Windows\Explorer\thumbcache_32.db
Deleted file - C:\Users\Owner\AppData\Local\Microsoft\Windows\Explorer\thumbcache_96.db
Deleted file - C:\Users\Owner\AppData\Local\Microsoft\Windows\Explorer\thumbcache_idx.db
Deleted file - C:\Users\Owner\AppData\Local\Microsoft\Windows\Explorer\thumbcache_sr.db
 

* * * * * 4

[SC] ChangeServiceConfig SUCCESS
The Windows Installer service is not started.

More help is available by typing NET HELPMSG 3521.

The Windows Installer service is starting.
The Windows Installer service was started successfully.

[SC] ChangeServiceConfig SUCCESS
The Windows Installer service is stopping..
The Windows Installer service was stopped successfully.

The Windows Installer service is starting.
The Windows Installer service was started successfully.
 

* * * * 5

Deleted file - C:\Windows\System32\spool\PRINTERS\00002.SHD
Deleted file - C:\Windows\System32\spool\PRINTERS\00002.SPL
 

* * * * * 6

The Volume Shadow Copy service is not started.

More help is available by typing NET HELPMSG 3521.

The Microsoft Software Shadow Copy Provider service is not started.

More help is available by typing NET HELPMSG 3521.

The Volume Shadow Copy service is stopping.
The Volume Shadow Copy service was stopped successfully.

The Microsoft Software Shadow Copy Provider service is stopping.
The Microsoft Software Shadow Copy Provider service was stopped successfully.
 

* * * * * 7

The Windows Firewall service is stopping.
The Windows Firewall service was stopped successfully.

The Internet Connection Sharing (ICS) service is not started.

More help is available by typing NET HELPMSG 3521.

The Base Filtering Engine service is stopping.
The Base Filtering Engine service was stopped successfully.

[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
The Windows Firewall service is stopping.
The Windows Firewall service was stopped successfully.

The Internet Connection Sharing (ICS) service is not started.

More help is available by typing NET HELPMSG 3521.

The Base Filtering Engine service is stopping.
The Base Filtering Engine service was stopped successfully.

[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
 

* * * * * 8

[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
The Cryptographic Services service is stopping..
The Cryptographic Services service was stopped successfully.

The Background Intelligent Transfer Service service is stopping..
The Background Intelligent Transfer Service service was stopped successfully.

The Windows Update service is not started.

More help is available by typing NET HELPMSG 3521.

The Windows Modules Installer service is not started.

More help is available by typing NET HELPMSG 3521.

The system cannot find the file specified.
Deleted file - C:\Windows\SoftwareDistribution\ReportingEvents.log
Deleted file - C:\Windows\SoftwareDistribution\DataStore\DataStore.edb
Deleted file - C:\Windows\SoftwareDistribution\DataStore\Logs\edb.chk
Deleted file - C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log
Deleted file - C:\Windows\SoftwareDistribution\DataStore\Logs\edbres00001.jrs
Deleted file - C:\Windows\SoftwareDistribution\DataStore\Logs\edbres00002.jrs
Deleted file - C:\Windows\SoftwareDistribution\Download\14d19c27b28cc3990260d7191f6e0ff6c7483623
Deleted file - C:\Windows\SoftwareDistribution\Download\bacd1413e93b4a6362d9a2ca653c869f1c02f6f7
Deleted file - C:\Windows\SoftwareDistribution\Download\7e0c8fbb8f030c5fc19bc1cc98474679\BIT1704.tmp
Deleted file - C:\Windows\SoftwareDistribution\SelfUpdate\wsus3setup.cab
Deleted file - C:\Windows\SoftwareDistribution\SelfUpdate\WUClient-SelfUpdate-ActiveX~31bf3856ad364e35~amd64~~7.6.7600.320.mum
Deleted file - C:\Windows\SoftwareDistribution\SelfUpdate\WUClient-SelfUpdate-Aux-TopLevel~31bf3856ad364e35~amd64~~7.6.7600.320.mum
Deleted file - C:\Windows\SoftwareDistribution\SelfUpdate\WUClient-SelfUpdate-Core-TopLevel~31bf3856ad364e35~amd64~~7.6.7600.320.mum
Deleted file - C:\Windows\SoftwareDistribution\SelfUpdate\wuident.cab
Deleted file - C:\Windows\SoftwareDistribution\SelfUpdate\wuident.txt
Deleted file - C:\Windows\SoftwareDistribution\SelfUpdate\WuPackages.xml
Deleted file - C:\Windows\SoftwareDistribution\WuRedir\9482F4B4-E343-43B6-B170-9A65BC822C77\v6-win7sp1-wuredir.cab
Deleted file - C:\Windows\SoftwareDistribution\WuRedir\9482F4B4-E343-43B6-B170-9A65BC822C77\wuredir.cab
Deleted file - C:\Windows\system32\catroot2\dberr.txt
Deleted file - C:\Windows\system32\catroot2\edb.chk
Deleted file - C:\Windows\system32\catroot2\edb.log
Deleted file - C:\Windows\system32\catroot2\edb00342.log
Deleted file - C:\Windows\system32\catroot2\edb00343.log
Deleted file - C:\Windows\system32\catroot2\edb00344.log
Deleted file - C:\Windows\system32\catroot2\edb00345.log
Deleted file - C:\Windows\system32\catroot2\edb00346.log
Deleted file - C:\Windows\system32\catroot2\edbres00001.jrs
Deleted file - C:\Windows\system32\catroot2\edbres00002.jrs
Deleted file - C:\Windows\system32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
Deleted file - C:\Windows\system32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
C:\Windows\system32\config\txr\{a432c482-0e29-11e4-9195-806e6f6e6963}.TxR.0.regtrans-ms
The process cannot access the file because it is being used by another process.
Deleted file - C:\Windows\system32\config\txr\{a432c482-0e29-11e4-9195-806e6f6e6963}.TxR.0.regtrans-ms.old
C:\Windows\system32\config\txr\{a432c482-0e29-11e4-9195-806e6f6e6963}.TxR.1.regtrans-ms
The process cannot access the file because it is being used by another process.
Deleted file - C:\Windows\system32\config\txr\{a432c482-0e29-11e4-9195-806e6f6e6963}.TxR.1.regtrans-ms.old
C:\Windows\system32\config\txr\{a432c482-0e29-11e4-9195-806e6f6e6963}.TxR.2.regtrans-ms
The process cannot access the file because it is being used by another process.
Deleted file - C:\Windows\system32\config\txr\{a432c482-0e29-11e4-9195-806e6f6e6963}.TxR.2.regtrans-ms.old
C:\Windows\system32\config\txr\{a432c482-0e29-11e4-9195-806e6f6e6963}.TxR.blf
The process cannot access the file because it is being used by another process.
Deleted file - C:\Windows\system32\config\txr\{a432c482-0e29-11e4-9195-806e6f6e6963}.TxR.blf.old
C:\Windows\system32\config\txr\{a432c483-0e29-11e4-9195-806e6f6e6963}.TM.blf
The process cannot access the file because it is being used by another process.
Deleted file - C:\Windows\system32\config\txr\{a432c483-0e29-11e4-9195-806e6f6e6963}.TM.blf.old
C:\Windows\system32\config\txr\{a432c483-0e29-11e4-9195-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
The process cannot access the file because it is being used by another process.
Deleted file - C:\Windows\system32\config\txr\{a432c483-0e29-11e4-9195-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms.old
C:\Windows\system32\config\txr\{a432c483-0e29-11e4-9195-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
The process cannot access the file because it is being used by another process.
Deleted file - C:\Windows\system32\config\txr\{a432c483-0e29-11e4-9195-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms.old
Deleted file - C:\Windows\system32\SMI\Store\Machine\schema.dat{9b888501-9ee7-11e3-84a9-bcaec56452bb}.TM.blf
Deleted file - C:\Windows\system32\SMI\Store\Machine\schema.dat{9b888501-9ee7-11e3-84a9-bcaec56452bb}.TMContainer00000000000000000001.regtrans-ms
Deleted file - C:\Windows\system32\SMI\Store\Machine\schema.dat{9b888501-9ee7-11e3-84a9-bcaec56452bb}.TMContainer00000000000000000002.regtrans-ms
Could Not Find C:\Windows\system32\SMI\Store\Machine\*.blf
Could Not Find C:\Windows\system32\SMI\Store\Machine\*.regtrans-ms
[SC] SetServiceObjectSecurity SUCCESS
[SC] SetServiceObjectSecurity SUCCESS
Path not found - C:\Windows\SysWoW64\catroot2
The system cannot find the file specified.
The system cannot find the file specified.

Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.

[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
The Cryptographic Services service is not started.

More help is available by typing NET HELPMSG 3521.

The Background Intelligent Transfer Service service is not started.

More help is available by typing NET HELPMSG 3521.

The Windows Update service is not started.

More help is available by typing NET HELPMSG 3521.

The Windows Modules Installer service is not started.

More help is available by typing NET HELPMSG 3521.

The system cannot find the file specified.
Could Not Find C:\ProgramData\Application Data\Microsoft\Network\Downloader\qmgr*.dat
Path not found - C:\Windows\SoftwareDistribution
The system cannot find the file specified.
The system cannot find the file specified.
Path not found - C:\Windows\system32\catroot2
The system cannot find the file specified.
The system cannot find the file specified.
C:\Windows\system32\config\txr\{a432c482-0e29-11e4-9195-806e6f6e6963}.TxR.0.regtrans-ms
The process cannot access the file because it is being used by another process.
C:\Windows\system32\config\txr\{a432c482-0e29-11e4-9195-806e6f6e6963}.TxR.1.regtrans-ms
The process cannot access the file because it is being used by another process.
C:\Windows\system32\config\txr\{a432c482-0e29-11e4-9195-806e6f6e6963}.TxR.2.regtrans-ms
The process cannot access the file because it is being used by another process.
C:\Windows\system32\config\txr\{a432c482-0e29-11e4-9195-806e6f6e6963}.TxR.blf
The process cannot access the file because it is being used by another process.
C:\Windows\system32\config\txr\{a432c483-0e29-11e4-9195-806e6f6e6963}.TM.blf
The process cannot access the file because it is being used by another process.
C:\Windows\system32\config\txr\{a432c483-0e29-11e4-9195-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
The process cannot access the file because it is being used by another process.
C:\Windows\system32\config\txr\{a432c483-0e29-11e4-9195-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
The process cannot access the file because it is being used by another process.
File not found - C:\Windows\system32\SMI\Store\Machine\*.TM*
File not found - C:\Windows\system32\SMI\Store\Machine\*.blf
File not found - C:\Windows\system32\SMI\Store\Machine\*.regtrans-ms
Could Not Find C:\Windows\system32\SMI\Store\Machine\*.TM*
Could Not Find C:\Windows\system32\SMI\Store\Machine\*.blf
Could Not Find C:\Windows\system32\SMI\Store\Machine\*.regtrans-ms
[SC] SetServiceObjectSecurity SUCCESS
[SC] SetServiceObjectSecurity SUCCESS
Path not found - C:\Windows\SysWoW64\catroot2
The system cannot find the file specified.
The system cannot find the file specified.

Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.

[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
[SC] ChangeServiceConfig SUCCESS
 

* * * * * 9

Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.

Ok.

Reseting Interface, OK!
Restart the computer to complete this action.


Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.

The following command was not found: int 6to4 reset all.
There's no user specified settings to be reset.

Reseting Interface, OK!
Restart the computer to complete this action.


The following command was not found: int isatap reset all.


Reset of all TCP parameters OK!
Ok.

The following command was not found: int teredo reset all.

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

Windows IP Configuration

Registration of the DNS resource records for all adapters of this computer has been initiated. Any errors will be reported in the Event Viewer in 15 minutes.

Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.

Ok.

Reseting Interface, OK!
Restart the computer to complete this action.


Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.

The following command was not found: int 6to4 reset all.
There's no user specified settings to be reset.

There's no user specified settings to be reset.


The following command was not found: int isatap reset all.


Reset of all TCP parameters OK!
Ok.

The following command was not found: int teredo reset all.

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

Windows IP Configuration

Registration of the DNS resource records for all adapters of this computer has been initiated. Any errors will be reported in the Event Viewer in 15 minutes.
 

 



#14 buddy215

buddy215

  • Moderator
  • 13,261 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:49 AM

Posted 10 November 2014 - 02:43 PM

Are you able to perform Windows Updates? Check manually to see if you have any security updates pending.

 

Try updating MBAM


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#15 JohnR0846

JohnR0846
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago / Milwaukee
  • Local time:06:49 AM

Posted 10 November 2014 - 08:40 PM

Hello all;

Thanks for the reply Buddy215

Question 2

Have set MBAM to start with windows and so far no problems.

Logs fromlast three days show successful updates  and a few unable to connect with update server.

no selected options have been changed.

log for today up to  now posted below

 

john b

 

Malwarebytes Anti-Malware
www.malwarebytes.org


Protection, 14/11/10 01:04:44, SYSTEM, COPERNICUS-XI, Protection, Malware Protection, Starting,
Protection, 14/11/10 01:04:44, SYSTEM, COPERNICUS-XI, Protection, Malware Protection, Started,
Protection, 14/11/10 01:04:44, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Starting,
Protection, 14/11/10 01:04:46, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Started,
Update, 14/11/10 01:05:22, SYSTEM, COPERNICUS-XI, Manual, Malware Database, 2014.11.9.7, 2014.11.10.3,
Protection, 14/11/10 01:05:22, SYSTEM, COPERNICUS-XI, Protection, Refresh, Starting,
Protection, 14/11/10 01:05:22, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Stopping,
Protection, 14/11/10 01:05:22, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Stopped,
Protection, 14/11/10 01:05:26, SYSTEM, COPERNICUS-XI, Protection, Refresh, Success,
Protection, 14/11/10 01:05:26, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Starting,
Protection, 14/11/10 01:05:26, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Started,
Protection, 14/11/10 08:57:55, SYSTEM, COPERNICUS-XI, Protection, Malware Protection, Starting,
Protection, 14/11/10 08:57:55, SYSTEM, COPERNICUS-XI, Protection, Malware Protection, Started,
Protection, 14/11/10 08:57:55, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Starting,
Protection, 14/11/10 08:59:51, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Started,
Protection, 14/11/10 12:43:50, SYSTEM, COPERNICUS-XI, Protection, Malware Protection, Starting,
Protection, 14/11/10 12:43:50, SYSTEM, COPERNICUS-XI, Protection, Malware Protection, Started,
Protection, 14/11/10 12:43:50, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Starting,
Protection, 14/11/10 12:44:19, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Started,
Protection, 14/11/10 18:56:56, SYSTEM, COPERNICUS-XI, Protection, Malware Protection, Starting,
Protection, 14/11/10 18:56:57, SYSTEM, COPERNICUS-XI, Protection, Malware Protection, Started,
Protection, 14/11/10 18:56:57, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Starting,
Protection, 14/11/10 18:58:07, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Started,
Update, 14/11/10 19:20:30, SYSTEM, COPERNICUS-XI, Manual, Rootkit Database, 2014.11.8.1, 2014.11.10.1,
Update, 14/11/10 19:20:37, SYSTEM, COPERNICUS-XI, Manual, Malware Database, 2014.11.10.3, 2014.11.11.1,
Protection, 14/11/10 19:20:37, SYSTEM, COPERNICUS-XI, Protection, Refresh, Starting,
Protection, 14/11/10 19:20:37, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Stopping,
Protection, 14/11/10 19:20:37, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Stopped,
Protection, 14/11/10 19:20:41, SYSTEM, COPERNICUS-XI, Protection, Refresh, Success,
Protection, 14/11/10 19:20:41, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Starting,
Protection, 14/11/10 19:20:42, SYSTEM, COPERNICUS-XI, Protection, Malicious Website Protection, Started,

(end)






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users