Raezero's 2nd computer logs and issues

You need to follow the directions for using GetRunKey and ShowNew exactly. You do not appear to be running the two .bat files from a Windows Explorer window. You appear to be running them from inside the ZIP file and you may not have extracted ALL files from the ZIP files as required. Try again and attach new logs. You did not even attach a runkeys.txt log. You attached a copy and paste of error messages showing that it did not run due to the reasons I gave above.

You also did not uninstall Viewpoint Manager as requested in step 0 of the READ ME. Please uninstall it now.

Also why did you tell CounterSpy to Ignore everything it found? The goal here is to fix malware.

 

You only need to redo what I pointed out. I don't want you to run thru everything again.

 

Did you extract ALL the files from the ZIP as instructed? Did you check to see if you are getting any of the errors mentioned on the download pages for GetRunKey and ShowNew?

You only said the log from GetRunKey is empty. What about the ShowNew log?

 

You did not attach the new log as I asked so I don't know what it fixed or did not fix!

Uninstall the below old versions of software:
J2SE Runtime Environment 5.0 Update 6

Now install the current version of Sun Java from: Sun Java Runtime Environment


Now Copy the bold text below to notepad. Save it as fixWLK.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

Now attach the below new logs and tell me how the above steps went.

1. GetRunKey
2. HJT

Make sure you tell me how things are working now!

 

If the creators of your antivirus program would take a little more initiative, they would be telling you that they cannot fix problems that are in a System Restore folder. Don't worry about this right now. My final steps will resolve this problem. I will post these steps when we have all other issues resolved.

 

There is nothing wrong with Trend Micro and note you have a full internet security suite from them. Don't mistake what I said previously as meaning their antivirus is not good. All my statement meant was they should be smart enough to realize when something is in System Restore and not bother trying to remove it since it cannot be removed while System Restore is enabled. And they should also tell you this. That would be a better software design. However this common problem exists in every antivirus application. If you bought this and continue to keep it updated, it should work well for you. As a personal preference, I don't like any security suites (especially the new ones coming out) because they are all massive resources hogs. We see many messages each week from people thinking the have malware problems because their PC is slow. And in many cases, it is just due to their internet security suite software. All major security software companies offer them now and they are all causing these slow downs.


Your log is clean. If you are not having any other malware problems, it is time to do our final steps:

1. If we used Pocket Killbox during your cleanup, do the below
   • Run Pocket Killbox and select File, Cleanup, Delete All Backups
2. If we used ComboFix you can delete the ComboFix.exe file and associated C:\combofix.txt log that was created.
3. If we user SDFix you can delete all the SDFix related files and folders from your Desktop or whereever you installed it.
4. If we used VundoFix, you can delete the VundoFix.exe file and the C:\VundoFix Backups folder and C:\vundofix.txt log that was created.
5. If we had your run FixWareOut, you can delete the Fixwareout.exe file and the C:\fixwareout folder.
6. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
7. You can delete the ShowNew.Zip and GetRunkey.Zip files and the files that you extracted from the ZIP files. You can also delete the C:\newfiles.txt and C:\runkeys.txt logs that were created
8. If you are running Windows XP or Windows ME, do the below:
   • go back to step 8 of the READ & RUN ME to Disable System Restore which will flush your Restore Points.
   • Then reboot and Enable System Restore to create a new clean Restore Point.
9. After doing the above, you should work thru the below link:
   • How to Protect yourself from malware!