[SOLVED] Windows Update - 14399 - (For BrianDrab)

I ran that program and it said it removed but it won't create a log filew. It is still in list in controll panel, when I try to uninstall it says it is a network resource and is unavailable. what do you think about trying in safe mode?
 
Let's remove it manually.

Step#1 - FRST Registry Search
 1. Run FRST by Right-Clicking on the file and choosing Run as administrator.
2. Copy and paste the words Java into the Search box and click the Search Registry button.
Search.JPG


3. When the scan is complete a notepad window will open with the results. Please copy and paste the contents in your next reply. If for some reason notepad doesn't open the file should be
saved on your desktop named Search.txt.

 
Okay here is the .txt but it still shows up in the control panel.
Click to expand...

Correct. I need this file first so that I could prepare a fix. In the meantime please do the following.

Step#1 - ESET Online Scanner and Post Results
Before running this scan, please temporarily disable your antivirus software to avoid conflicts. You can re-enable once it's done. Instructions for doing this on many AVs are here. This scan can take hours to run but is necessary to ensure we don't miss anything. Plan accordingly.

  • Please go here and click on
    1.JPG
  • Note: This site is optimized for Internet Explorer. Please use it for this scan. If you wish to use Firefox or Chrome you will be asked to download the ESET Smart Installer first (esetsmartinstaller_enu.exe). Go ahead and download and run this file.
  • Please accept the ESET Online Scanner EULA and click Start.
  • If prompted, allow the Add-On/Active X to install. If you have problems with this step please see this link.
  • Make sure Enable detection of potentially unwanted applications is selected.
  • Click the Advanced Settings link.
  • Make sure Remove found threats is NOT checked.
  • Make sure Scan archives IS checked.
  • Make sure Scan for potentially unsafe applications IS checked.
  • Make sure Enable Anti-Stealth technology IS checked
  • 2.JPG
  • Click on Start
  • The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed, if anything was detected please click the List of found threats link.
  • ThreatsFound.JPG
  • Then click the Copy to Clipboard link and paste this information into your next reply.
  • CopyToClipboard.JPG
  • Then you may click the Back button.
  • Check Uninstall Application on Close before clicking finish.

Items for your next post
1. Contents of the ESET log file
 
ESET log

C:\AdwCleaner\Quarantine\C\Program Files\Application Updater\ApplicationUpdater.exe.vir a variant of Win32/Toolbar.Widgi.G potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\AskPartnerNetwork\ChromeUtils\APNNativeMsgHost.exe.vir a variant of Win32/Bundled.Toolbar.Ask.M potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\AskPartnerNetwork\Toolbar\APNSetup.exe.vir a variant of Win32/Bundled.Toolbar.Ask.E potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\AskPartnerNetwork\ChromeUtils\APNNativeMsgHost.exe.vir a variant of Win32/Bundled.Toolbar.Ask.M potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\AskPartnerNetwork\Toolbar\ORJ-V7C\Source\program files\VNT\vntldr.exe.vir a variant of Win32/Bundled.Toolbar.Ask.M potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe.vir a variant of Win32/Toolbar.Widgi.K potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\Common Files\Spigot\Search Settings\SearchSettings64.exe.vir a variant of Win64/Toolbar.Widgi.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\Common Files\Spigot\Search Settings\wth203.dll.vir a variant of Win32/Toolbar.Widgi.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\Common Files\Spigot\Search Settings\wthx203.dll.vir a variant of Win64/Toolbar.Widgi.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\WidgiHelper.exe.vir a variant of Win32/Toolbar.Widgi.N potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsToolbarFF.dll.vir a variant of Win32/Toolbar.Widgi.G potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\IE\11.3\iobitappsToolbarIE64.dll.vir a variant of Win64/Toolbar.Widgi.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\MyPC Backup\BackupStackUI.dll.vir a variant of MSIL/MyPCBackup.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\MyPC Backup\Configuration Updater.exe.vir a variant of MSIL/RunElevated.A potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\MyPC Backup\MyPC Backup.exe.vir MSIL/MyPCBackup.E potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\OLBPre\OLBPre.exe.vir a variant of MSIL/MyPCBackup.G potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\ray\AppData\Roaming\Slick Savings\Coupons.dll.vir Win32/Toolbar.Widgi.T potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\ray\AppData\Roaming\Slick Savings\coupons_2.8.xpi.vir JS/Adware.Spigot.A application
C:\AdwCleaner\Quarantine\C\Users\ray\AppData\Roaming\Slick Savings\coupons_2.9.xpi.vir JS/Adware.Spigot.A application
C:\AdwCleaner\Quarantine\C\Users\ray\AppData\Roaming\Slick Savings\Uninstall.exe.vir a variant of Win32/Toolbar.Widgi.N potentially unwanted application
C:\Users\ray\Desktop\Downloads\asc-setup.exe a variant of Win32/Toolbar.Widgi.B potentially unwanted application
C:\W7_Installers\cdbxp.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application
 
Perfect. Please run the following fix to remove Java.

FRST Fix
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
1. Download attached file and save it to the Desktop.
Note. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work (in this case...the desktop).
2. Run FRST by Right-Clicking on the file and choosing Run as administrator.
3. Press the Fix button just once and wait. If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
4. When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post the contents of it in your reply.
 

Attachments

OK, before we close out this topic and go back to our original issue I'd like you to install a piece of software to ensure it can. I'm concerned that your Windows Installer is damaged.

Please download and install the following PDF Viewer. It's a very good one so if it installs you can keep it on your machine as PDFs are a very common format.

http://www.foxitsoftware.com/Secure_PDF_Reader/

Let me know if it installs.
 
OK, let's clean up and get back to the other thread.

OK! Well done, your computer is clean again!
thumbsup.gif
Part of our jobs here is to help you clean your computer. But beyond that and just as important is to provide you with some information to keep you safe and secure on the net as well as to share knowledge. Following is that information.

1. Clean Up!
We need to remove all the tools that we used so that should you ever be re-infected, you will download updated versions which may have updated detection logic.
1. Download Delfix from here.
2. Ensure everything is checked.
3. Click Run.
Note: The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply.
Note: Delete any other .bat, .log, .reg, .txt, and any other files created during this process, and left on the desktop and empty the Recycle Bin.

2. Windows Updates
Another essential task is to keep your computer updated with the latest operating system patches and security fixes. Windows Updates are constantly being revised to combat the newest hacks and threats. Microsoft releases security updates that help your computer from becoming vulnerable. It is best if you have these set to download automatically. Follow the instructions below to ensure your settings are optimal.
1. Click the Start Orb in the lower left corner of the screen.
2. Type Windows Update in the search box that appears
3. Click on the Windows Update program that appears in the search results.
Windows%20Update.JPG

4. Click on Change Settings.
CheckForUpdates.JPG

5. Select "Install updates automatically (recommended)" from the Important updates drop-down.
WUChangeSettings.JPG

6. Choose a day and a time when you know the computer will be on and connected to the internet. The default is 3:00AM every day.
7. Ensure that all of the other check boxes are checked.
8. Click OK.

3. Keeping Programs Updated
You need to ensure that any programs installed on your machine are kept current. The bad guys exploit vulnerabilities that are found in older versions of software. A very good piece of software that keeps your programs up-to-date is Secunia Personal Software Inspector (PSI). You can download and install it from here. You can read more information about this free software as well as a video walkthrough from here.

4. Antimalware- Preventative
Note: Let's keep Malwarebytes installed as it's a fantastic piece of software. Malwarebytes is an anti-malware software and not an antivirus software so it won't conflict with the Antivirus that you are running. I would recommend that you open up this program, allow it to update and scan your machine at least quarterly...monthly if you can.

5. Crypto Warning!!!! - Complete Data Loss can occur!
There are particularly nasty infections out there at the moment that encrypt your data and hold it for ransom. You may read more about this here.



  • Download CryptoPrevent free for home use here following the instructions below.
  • Save the file to your desktop from the link above and then open the program by clicking Run when prompted from your browser or by going to the desktop where the file was saved and double-clicking.
  • Accept all the defaults during the install. The last screen of the install has a checkmark in "Launch CryptoPrevent". This is good and will launch the program once you click Finish.
  • You will get a prompt asking if you purchased a Product Key for Automatic Updates. You can answer No.
  • You will then be prompted to learn more about automatic updates or if you want to purchase a key. This is up to you but you don't have to.
  • You will be prompted to click OK to continue and select your protection level. Go ahead and click OK.
  • Click the Apply button to set Default protection.
  • You may get a message stating that Windows Sidebar and Desktop Gadgets are a major security vulnerability and asking you if you want to disable them. If you don't use these features, answer Yes.
  • That's it. The protection is in place.
Note: The free version doesn't provide automatic updates. Periodically, you should open up the program (there is a shortcut on your desktop now) and select the Updates! menu....and select Check for Updates to see if there are any as this infection has serious consequences.

UpdatesV7.4.11.JPG



For more information about computer security and how to protect yourself when on the internet, please read this guide Best Practices for Safe Computing

OK, all the best, and stay safe!

Items for your next post
1. Contents of the delfix log
 
Last edited:
# DelFix v1.010 - Logfile created 28/05/2015 at 09:04:22
# Updated 26/04/2015 by Xplode
# Username : ray - RAYSNEWDESKTOP
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)

~ Activating UAC ... OK

~ Removing disinfection tools ...

Deleted : C:\FRST

~ Creating registry backup ... OK

~ Cleaning system restore ...

Deleted : RP #171 [End of disinfection | 05/28/2015 13:25:35]
Deleted : RP #172 [Windows Update | 05/28/2015 13:49:58]
Deleted : RP #173 [Windows Update | 05/28/2015 13:55:54]

New restore point created !

~ Resetting system settings ... OK

########## - EOF - ##########
 
There is still a problem with windows updates, kb2800095 downloads and says they were successfully installed, restarts and gets to 11% and fails and revrets changes, restarts again and gets to 35% and quits.
 
You must log in or register to reply here.

Has Sysnative Forums helped you? Please consider donating to help us support the site!

Back
Top