Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Sept 28, 2014 12:56:55 GMT -8
go to Wikisend wikisend.com/
and upload the addition.txt there, then post the download link back in a message
Quads
|
|
|
Post by kmcard on Sept 28, 2014 14:05:02 GMT -8
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Sept 28, 2014 14:26:20 GMT -8
Actually that is clean, (log was created before the first fix) Go here www.adlice.com/softwares/roguekiller/And click on the there is the local server download option. Roguekiller does a prescan before you can click the scan and get the first report. The Program can have False Positives so don't have it fix anything. Quads
|
|
|
Post by kmcard on Sept 28, 2014 15:23:16 GMT -8
Attached is the report from roguekiller64.
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Sept 28, 2014 15:40:30 GMT -8
OK Download the attached .reg files (right click Save As if required,like what was done with the fixlist for FRST to make sure the files download) Then click to run the .reg file or right click and choose from the menu "Run as Administrator" Then the system should ask if you want the data added to the registry, answer = yes. A cofirmation message should them appear saying that the data has been added. The other way is to right click the files and choose "Open With" from the menu, and you should see Registry Editor as an option to choose. The change will not take effect until the system is RestartedQuads
|
|
|
Post by kmcard on Sept 29, 2014 7:09:06 GMT -8
I get the following error message from the Registry Editor:
Cannot import c:\Users\Birdview\Desktop\Poweliks_repair.reg: Not all data was successfully written to the registry. Some keys are open by the system or other processes.
I shutdown all the programs I was running (Task Manager window and Internet Explorer) and tried again; still got the error message.
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Sept 29, 2014 9:38:34 GMT -8
I am working on that with 2 things,
a) Not even administrators have full access to the CLSID's and are read only for users, meaning you can't add /import data, sort of like with the Root key when Legacy data needs repairing.
b) Does the system really require it, or it the system 100% happy without that key.
Quads
|
|
|
Post by kmcard on Sept 29, 2014 12:54:28 GMT -8
Is there a way to determine which keys are not being added? The registry editor error message just said it could not write all of them and didn't specify which. Also, does it continue to attempt to merge other keys after it finds one it cannot handle?
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Sept 29, 2014 14:19:27 GMT -8
The reg file I have only has data for that key FRST removed so that the registry key is added back BUT with the correct data and NOT Poweliks.
Quads
|
|
|
Post by kmcard on Sept 29, 2014 15:31:17 GMT -8
Okay. I opened the .reg file you sent me and compared it to when is in the registry. It looks like all values were updated in the registry; so I'm not sure why the registry editor kicked out an error message....
What do we do next?
|
|