Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trying to get rid of Chrome!


  • Please log in to reply
10 replies to this topic

#1 OldPhil

OldPhil

    Doppleganger


  • Members
  • 4,401 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Long Island New York
  • Local time:01:45 PM

Posted 16 June 2015 - 03:13 PM

A friend asked for help updating his TomTom, his laptop was dead.  I brought my mini and down loaded the TomTom software carefully declining all the add on junk, when done updating his GPS I went into Revo to get rid of the TomTom software.  Everything looked like it went as usual, NOT!!!  I have a Chrome button in the task bar, it loads Chrome when clicked on.  Now the interesting part, Chrome does not show in Control Panel programs to uninstall nor does it show in Revo.  Looking for a way to Dump it all ideas appreciated.

 

Phil


Honesty & Integrity Above All!


BC AdBot (Login to Remove)

 


#2 OldPhil

OldPhil

    Doppleganger

  • Topic Starter

  • Members
  • 4,401 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Long Island New York
  • Local time:01:45 PM

Posted 16 June 2015 - 07:39 PM

Did a little more poking around, I am now wondering if it actually Chrome.  Though it has a Chrome button a Yahoo search page opens.  I can not find any thing Chrome in either Add & Remove programs or in Revo.


Honesty & Integrity Above All!


#3 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,697 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:45 PM

Posted 16 June 2015 - 07:45 PM

Hi OldPhil :)

It might not be Chrome, you're right. It's funny since I had an infected computer at work today that at the same kind of "Chrome" issue. Follow the instructions below.

3Al62Pm.pngMiniToolBox
  • Download MiniToolBox and move the executable file to your Desktop;
  • Right-click on MiniToolBox.exe and select Spcusrh.pngRun as Administrator;
  • Check the following options:
    • List Installed Programs;
    • List Last 10 Event Viewer Errors;
    • List Devices - Only Problems;
    • List Users, Partitions and Memory size;
      wNeKMCX.png
  • Once this is done, click on Go and wait for the scan to complete;
  • Once the scan is complete, a log will open. Please copy/paste the content of the output log in your next reply;

animinionsmalltext.gif
unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#4 softeyes

softeyes

  • Members
  • 1,626 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:45 AM

Posted 16 June 2015 - 07:50 PM

Gents//what do you think about attempting this (since Chrome is opening, it can't hurt to try?)

 

http://science.opposingviews.com/remove-google-chrome-browser-registry-10397.html



#5 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,697 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:45 PM

Posted 16 June 2015 - 07:51 PM

We need to make sure wether it is or it's not Google Chrome first.

Edited by Aura., 16 June 2015 - 07:51 PM.

animinionsmalltext.gif
unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#6 OldPhil

OldPhil

    Doppleganger

  • Topic Starter

  • Members
  • 4,401 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Long Island New York
  • Local time:01:45 PM

Posted 17 June 2015 - 09:10 AM

MiniToolBox by Farbar  Version: 11-05-2015 01
Ran by MOP (administrator) on 17-06-2015 at 07:03:07
Running from "C:\Users\MOP\Desktop"
Microsoft Windows 7 Starter  Service Pack 1 (X86)
Model: AOD255 Manufacturer: Acer
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/17/2015 06:29:53 AM) (Source: ESENT) (User: )
Description: WinMail (3216) WindowsMail0: The backup has been stopped because it was halted by the client or the connection with the client failed.

Error: (06/16/2015 00:18:27 PM) (Source: MsiInstaller) (User: MOP-PC)
Description: Product: TomTom HOME -- Error 1730. You must be an Administrator to remove this application. To remove this application, you can log on as an administrator, or contact your technical support group for assistance.

Error: (06/16/2015 10:30:33 AM) (Source: Application Hang) (User: )
Description: The program TomTomHomeSetup.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: e14

Start Time: 01d0a859d9d1283d

Termination Time: 110

Application Path: C:\Users\MOP\Downloads\TomTomHomeSetup.exe

Report Id: 5ccd527a-144d-11e5-983b-1c7508472f54

Error: (06/16/2015 10:22:24 AM) (Source: Application Hang) (User: )
Description: The program TomTomHomeSetup.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: a0c

Start Time: 01d0a8588fba9ee9

Termination Time: 219

Application Path: C:\Users\MOP\Downloads\TomTomHomeSetup.exe

Report Id: 384ec8cd-144c-11e5-983b-1c7508472f54

Error: (06/03/2015 05:09:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/01/2015 02:18:40 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/01/2015 02:18:40 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/01/2015 02:18:40 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/01/2015 02:18:40 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
    Element not found.  (HRESULT : 0x80070490) (0x80070490)

Error: (06/01/2015 02:18:37 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (06/17/2015 06:25:47 AM) (Source: Service Control Manager) (User: )
Description: The Norton Online Backup service failed to start due to the following error:
%%2

Error: (06/17/2015 06:17:01 AM) (Source: DCOM) (User: )
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (06/17/2015 06:11:51 AM) (Source: Service Control Manager) (User: )
Description: The Norton Online Backup service failed to start due to the following error:
%%2

Error: (06/17/2015 06:11:52 AM) (Source: Microsoft Antimalware) (User: )
Description: %%860 Real-Time Protection feature has encountered an error and failed.

    Feature: %%886

    Error Code: 0x8007042c

    Error description: The dependency service or group failed to start.

    Reason: %%892

Error: (06/17/2015 05:38:20 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MBAMScheduler service.

Error: (06/17/2015 04:39:41 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MBAMScheduler service.

Error: (06/17/2015 04:39:11 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MBAMScheduler service.

Error: (06/16/2015 01:24:05 PM) (Source: Service Control Manager) (User: )
Description: The Norton Online Backup service failed to start due to the following error:
%%2

Error: (06/16/2015 00:22:54 PM) (Source: Service Control Manager) (User: )
Description: The TomTomHOMEService service terminated unexpectedly.  It has done this 3 time(s).

Error: (06/16/2015 11:51:23 AM) (Source: Service Control Manager) (User: )
Description: The TomTomHOMEService service terminated unexpectedly.  It has done this 2 time(s).


Microsoft Office Sessions:
=========================
Error: (06/17/2015 06:29:53 AM) (Source: ESENT)(User: )
Description: WinMail3216WindowsMail0:

Error: (06/16/2015 00:18:27 PM) (Source: MsiInstaller)(User: MOP-PC)
Description: Product: TomTom HOME -- Error 1730. You must be an Administrator to remove this application. To remove this application, you can log on as an administrator, or contact your technical support group for assistance.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/16/2015 10:30:33 AM) (Source: Application Hang)(User: )
Description: TomTomHomeSetup.exe0.0.0.0e1401d0a859d9d1283d110C:\Users\MOP\Downloads\TomTomHomeSetup.exe5ccd527a-144d-11e5-983b-1c7508472f54

Error: (06/16/2015 10:22:24 AM) (Source: Application Hang)(User: )
Description: TomTomHomeSetup.exe0.0.0.0a0c01d0a8588fba9ee9219C:\Users\MOP\Downloads\TomTomHomeSetup.exe384ec8cd-144c-11e5-983b-1c7508472f54

Error: (06/03/2015 05:09:00 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Users\MOP\Downloads\spsetup126\Speccy64.exe

Error: (06/01/2015 02:18:40 PM) (Source: Windows Search Service)(User: )
Description:
Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/01/2015 02:18:40 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/01/2015 02:18:40 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/01/2015 02:18:40 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
    Element not found.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (06/01/2015 02:18:37 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore


=========================== Installed Programs ============================

Acer Crystal Eye webcam (HKLM\...\{51F026FA-5146-4232-A8BA-1364740BD053}) (Version: 4.0.2.9 - Liteon)
Acer ePower Management (HKLM\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3005 - Acer Incorporated)
Acer eRecovery Management (HKLM\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated)
Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}) (Version: 2.0.2.12610 - Adobe Systems Inc.) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.0.2.12610 - Adobe Systems Inc.)
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.1.82.76 - Adobe Systems Incorporated)
Adobe Reader 9.1 MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.35 - Atheros Communications Inc.)
ENE USB Card Reader Driver (HKLM\...\3B29FD3CCF1F5B855DA0C521597413EBABE97DFB) (Version: 5.89.0.70 - ENE)
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.2117 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.4.1002 - Intel Corporation)
Junk Mail filter update (HKLM\...\{8E5233E1-7495-44FB-8DEB-4BE906D59619}) (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Malwarebytes Anti-Exploit version 1.06.1.1019 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.06.1.1019 - Malwarebytes)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Office 2010 (HKLM\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 en-US) (HKLM\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla)
Network Activity Indicator for Windows 7 (HKLM\...\NetworkIndicator_is1) (Version: 1.6 - IT Samples)
Optimum (HKCU\...\1570302899.optimumapp.iptv.optimum.net) (Version:  - optimumapp.iptv.optimum.net)
Optimum App for Laptop 4.11 (HKLM\...\{6082AB31-92B1-4832-AC89-3B2E6D8C14FE}) (Version: 4.11 - Cablevision)
Puran Utilities 3.0 (HKLM\...\Puran Utilities_is1) (Version:  - Puran Software)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6171 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SIW 2013 Home Edition (HKLM\...\{AB67580-257C-45FF-B8F4-C8C30682091A}_is1) (Version: 2013.05.14 - Topala Software Solutions)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1194 - SUPERAntiSpyware.com)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.7.0 - Synaptics Incorporated)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Sign-in Assistant (HKLM\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 56%
Total physical RAM: 2037.09 MB
Available physical RAM: 892.59 MB
Total Pagefile: 4074.19 MB
Available Pagefile: 2626.98 MB
Total Virtual: 2047.88 MB
Available Virtual: 1953.16 MB

========================= Partitions: =====================================

1 Drive c: (Acer) (Fixed) (Total:219.79 GB) (Free:174.63 GB) NTFS

========================= Users: ========================================

User accounts for \\MOP-PC

Administrator            Guest                    MOP                      


**** End of log ****


Honesty & Integrity Above All!


#7 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,697 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:45 PM

Posted 17 June 2015 - 09:27 AM

These programs are outdated and vulnerable, and should be uninstalled and reinstalled (if needed):
  • Adobe AIR;
  • Adobe Flash Player 10 ActiveX:
  • Adobe Reader 9.1 MUI;
Get rid of Puran Utilities 3.0, useless PC Booster program. I don't see Google Chrome installed. If you open Chrome, then go in the Task Manager, right-click on the Chrome process and select Open file location, where is the executable located?

animinionsmalltext.gif
unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#8 OldPhil

OldPhil

    Doppleganger

  • Topic Starter

  • Members
  • 4,401 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Long Island New York
  • Local time:01:45 PM

Posted 17 June 2015 - 10:21 AM

The TomTom downloadstuff may be the culprit!  I see Norton backup that was part of preloaded junk that I thought was gone as I used the removal tool.  I do not use anything but the Puran defragger, I have used it for years the rest is junk.  Need to get out to do yard work will fool with this later.

Thanks

Phil


Honesty & Integrity Above All!


#9 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,697 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:45 PM

Posted 17 June 2015 - 10:23 AM

No problem. I also suggest you to rebuild your index since it's corrupted.

http://www.sevenforums.com/tutorials/17880-index-rebuild.html

animinionsmalltext.gif
unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#10 OldPhil

OldPhil

    Doppleganger

  • Topic Starter

  • Members
  • 4,401 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Long Island New York
  • Local time:01:45 PM

Posted 17 June 2015 - 06:53 PM

News my anti virus refused to update, mouse got crazy.  A few weeks back I hit the recovery partition but stupidly keep my old files.  Got to thinking something was left over, so I just did it again complete fresh install.  Hopefully I can keep it going without issues!  I even ran decrapifier was a pleasure seeing the junk fade away.

 

Thanks for time and trouble!

 

Phil


Honesty & Integrity Above All!


#11 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,697 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:45 PM

Posted 17 June 2015 - 09:08 PM

No problem Phil, you're welcome :)

animinionsmalltext.gif
unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users