0

I am running Vista and I am unable to do a reinstall of Java. An internet explorer 7 file updated fairly recently, but I can't remember how to uninstall that one and I think that I'm remembering correctly, that that turned out to be one of the issues last time. I don't remember why, just that we went in and got rid of it.
I'm pasting in the MalwareBytes, GMER and DDS scanlogs. I was having issues with blue screen while using Java, when it was still working and a splash warning was coming up when I tried to use a program that needs java to load. I was having to turn Comodo's firewall off in order to load the program and then I'd turn it back on as soon as it loaded. It's a program I use daily and the same one I was having issues with last time. I got rid of one of the windows updates after going through the system alert folder and the blue screen hasn't happened since, but a few weeks later Java just quit working and wouldn't update.

Thanks for your help.


GMER 1.0.15.15530 - http://www.gmer.net
Rootkit quick scan 2011-03-02 10:30:46
Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-1 WDC_WD3200BEVT-00ZCT0 rev.11.01A11
Running: b5h48ncu.exe; Driver: C:\Users\Auberey\AppData\Local\Temp\kgryypob.sys


---- Devices - GMER 1.0.15 ----

Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0 8520D1F8
Device \Driver\atapi \Device\Ide\IdePort0 8520D1F8
Device \Driver\atapi \Device\Ide\IdePort1 8520D1F8
Device \Driver\atapi \Device\Ide\IdePort2 8520D1F8
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-1 8520D1F8
Device \FileSystem\Ntfs \Ntfs 8520E1F8

AttachedDevice \Driver\tdx \Device\Ip cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\tdx \Device\Tcp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\tdx \Device\Udp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\tdx \Device\RawIp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)

---- EOF - GMER 1.0.15 ----

GMER 1.0.15.15530 - http://www.gmer.net
Rootkit scan 2011-03-02 11:01:50
Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-1 WDC_WD3200BEVT-00ZCT0 rev.11.01A11
Running: b5h48ncu.exe; Driver: C:\Users\Auberey\AppData\Local\Temp\kgryypob.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwAdjustPrivilegesToken [0x8DA15C14]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwAlpcConnectPort [0x8DA171C4]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwAlpcCreatePort [0x8DA15E00]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwConnectPort [0x8DA14F40]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwCreateFile [0x8DA1587A]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwCreatePort [0x8DA14E1C]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwCreateSection [0x8DA15626]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwCreateSymbolicLinkObject [0x8DA16E54]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwCreateThread [0x8DA14808]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwLoadDriver [0x8DA16864]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwMakeTemporaryObject [0x8DA15208]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwOpenFile [0x8DA15A56]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwOpenSection [0x8DA154AC]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwRequestWaitReplyPort [0x8DA162FC]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwSecureConnectPort [0x8DA165B0]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwSetSystemInformation [0x8DA16B5C]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwShutdownSystem [0x8DA15172]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwSystemDebugControl [0x8DA15398]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwTerminateProcess [0x8DA14C1E]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwTerminateThread [0x8DA14A0C]
SSDT \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) ZwCreateThreadEx [0x8DA15F10]

INT 0x51 ? 86340D38
INT 0x62 ? 86340D38
INT 0x72 ? 85209BF8
INT 0x82 ? 85209BF8
INT 0xA2 ? 86340D38
INT 0xB2 ? 86340D38

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs 8520E1F8
Device \Driver\volmgr \Device\VolMgrControl 8520B1F8
Device \Driver\netbt \Device\NetBT_Tcpip_{0AD67A1E-902B-4DB9-876E-7B2FF7001D94} 87B35500
Device \Driver\usbuhci \Device\USBPDO-0 863221F8
Device \Driver\usbuhci \Device\USBPDO-1 863221F8
Device \Driver\usbuhci \Device\USBPDO-2 863221F8
Device \Driver\usbuhci \Device\USBPDO-3 863221F8
Device \Driver\usbehci \Device\USBPDO-4 863B51F8

AttachedDevice \Driver\tdx \Device\Tcp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)

Device \Driver\volmgr \Device\HarddiskVolume1 8520B1F8
Device \Driver\netbt \Device\NetBT_Tcpip_{E1C2A72B-9DEE-4DDD-B40A-9BFBD8DB3849} 87B35500
Device \Driver\volmgr \Device\HarddiskVolume2 8520B1F8
Device \Driver\cdrom \Device\CdRom0 863C91F8
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0 8520D1F8
Device \Driver\atapi \Device\Ide\IdePort0 8520D1F8
Device \Driver\atapi \Device\Ide\IdePort1 8520D1F8
Device \Driver\atapi \Device\Ide\IdePort2 8520D1F8
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-1 8520D1F8
Device \Driver\volmgr \Device\HarddiskVolume3 8520B1F8
Device \Driver\netbt \Device\NetBt_Wins_Export 87B35500
Device \Driver\Smb \Device\NetbiosSmb 87B2C1F8
Device \Driver\iScsiPrt \Device\RaidPort0 864BC1F8

AttachedDevice \Driver\tdx \Device\Udp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\tdx \Device\RawIp cmdhlp.sys (COMODO Internet Security Help

.
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 5948

Windows 6.0.6002 Service Pack 2
Internet Explorer 7.0.6002.18005

3/3/2011 11:58:09 PM
mbam-log-2011-03-03 (23-58-09).txt

Scan type: Full scan (C:\|)
Objects scanned: 356020
Time elapsed: 1 hour(s), 46 minute(s), 34 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

DDS (Ver_10-12-12.02) - NTFSx86
Run by Auberey at 0:04:12.13 on Fri 03/04/2011
Internet Explorer: 7.0.6002.18005
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.2037.1003 [GMT -5:00]

AV: COMODO Antivirus *Disabled/Updated* {675CEE69-9702-A524-3989-6D7CC8BF3695}
SP: COMODO Defense+ *Enabled/Updated* {DC3D0F8D-B138-AAAA-0339-560EB3387C28}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: COMODO Firewall *Enabled* {5F676F4C-DD6D-A47C-12D6-C449366C71EE}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k Akamai
C:\Windows\system32\svchost.exe -k apphost
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\PSIService.exe
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\Wacom_Tablet.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\alg.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Windows\system32\Dwm.exe
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\WTablet\Wacom_TabletUser.exe
C:\Windows\system32\Wacom_Tablet.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\TouchFreeze\TouchFreeze.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE
C:\Windows\explorer.exe
C:\Users\Auberey\Downloads\dds.scr
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: H - No File
mURLSearchHooks: H - No File
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: {744EC540-7CAC-4B6A-8581-CBD7CC81024B} - No File
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - c:\program files\windows live\companion\companioncore.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: AcroIEToolbarHelper Class: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\adobe acrobat 7.0\acrobat\AcroIEFavClient.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.4.4525.1752\swg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_B7C5AC242193BB3E.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll
BHO: {E1FF080D-12A3-439A-A2EF-4BA95A3148E8} - No File
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\adobe acrobat 7.0\acrobat\AcroIEFavClient.dll
TB: MSN Toolbar: {1e61ed7c-7cb8-49d6-b9e9-ab4c880c8414} - c:\program files\msn\toolbar\3.0.0983.0\msneshellx.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - c:\program files\adobe\adobe acrobat 7.0\acrobat\AcroIEFavClient.dll
uRun: [TouchFreeze] c:\program files\touchfreeze\TouchFreeze.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
mRun: [<NO NAME>]
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [COMODO Internet Security] "c:\program files\comodo\comodo internet security\cfp.exe" -h
StartupFolder: c:\users\auberey\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Convert link target to Adobe PDF - c:\program files\adobe\adobe acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\adobe\adobe acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\adobe\adobe acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\adobe\adobe acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\adobe\adobe acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\adobe\adobe acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\adobe\adobe acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\adobe\adobe acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7}
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: {0AD67A1E-902B-4DB9-876E-7B2FF7001D94} = 156.154.70.22,156.154.71.22
TCP: {E1C2A72B-9DEE-4DDD-B40A-9BFBD8DB3849} = 156.154.70.22,156.154.71.22
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: igfxcui - igfxdev.dll
Notify: VESWinlogon - VESWinlogon.dll
AppInit_DLLs: c:\windows\system32\guard32.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
Hosts: 127.0.0.1 www.spywareinfo.com

================= FIREFOX ===================

FF - ProfilePath - c:\users\auberey\appdata\roaming\mozilla\firefox\profiles\kqw78h9r.default\
FF - component: c:\users\auberey\appdata\roaming\mozilla\firefox\profiles\kqw78h9r.default\extensions\{5a64f979-2f93-4707-884b-1003bdf91fe4}\components\RadioWMPCoreGecko19.dll
FF - component: c:\users\auberey\appdata\roaming\mozilla\firefox\profiles\kqw78h9r.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}\platform\winnt_x86-msvc\components\ipc_fireftp.dll
FF - component: c:\users\auberey\appdata\roaming\mozilla\firefox\profiles\kqw78h9r.default\extensions\engine@conduit.com\components\RadioWMPCoreGecko19.dll
FF - plugin: c:\program files\microsoft\office live\npOLW.dll
FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\programdata\nexonus\ngm\npNxGameUS.dll
FF - plugin: c:\users\auberey\appdata\roaming\move networks\plugins\npqmp071503000010.dll
FF - plugin: c:\users\auberey\appdata\roaming\move networks\plugins\npqmp071505000010.dll
FF - plugin: c:\users\auberey\appdata\roaming\mozilla\firefox\profiles\kqw78h9r.default\extensions\{1bc9ba34-1eed-42ca-a505-6d2f1a935bbb}\plugins\npietab2.dll
FF - plugin: c:\users\auberey\appdata\roaming\mozilla\firefox\profiles\kqw78h9r.default\extensions\wildpocketsloader@simopsstudios.com\plugins\npWildPocketsLoader.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: Move Media Player: moveplayer@movenetworks.com - c:\users\auberey\appdata\roaming\Move Networks
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: ScrapBook: {53A03D43-5363-4669-8190-99061B2DEBA5} - %profile%\extensions\{53A03D43-5363-4669-8190-99061B2DEBA5}
FF - Ext: FireFTP: {a7c6cf7f-112c-4500-a7ea-39801a327e5f} - %profile%\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}
FF - Ext: Wild Pockets Loader: wildpocketsloader@simopsstudios.com - %profile%\extensions\wildpocketsloader@simopsstudios.com
FF - Ext: IE Tab 2 (FF 3.6+): {1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} - %profile%\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com
FF - Ext: GCA9thGrade Community Toolbar: {5a64f979-2f93-4707-884b-1003bdf91fe4} - %profile%\extensions\{5a64f979-2f93-4707-884b-1003bdf91fe4}

============= SERVICES / DRIVERS ===============

R1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\drivers\cmderd.sys [2011-1-6 17256]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdGuard.sys [2011-1-6 236600]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2011-1-6 34744]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\SASDIFSV.SYS [2008-9-3 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2008-9-3 61440]
R1 StarPortLite;StarPort Storage Controller (Lite);c:\windows\system32\drivers\StarPortLite.sys [2008-10-2 93544]
R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2008-9-18 21504]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-9-18 21504]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files\seagate\seagatemanager\sync\FreeAgentService.exe [2009-9-25 189736]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\NETw5v32.sys [2010-10-27 4232704]
R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [2008-9-16 227328]
R3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\drivers\wacmoumonitor.sys [2009-12-6 16168]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 ColdFusion MX 7 Application Server;ColdFusion MX 7 Application Server;"c:\cfusionmx7\runtime\bin\jrunsvc.exe" --> c:\cfusionmx7\runtime\bin\jrunsvc.exe [?]
S2 ColdFusion MX 7 Search Server;ColdFusion MX 7 Search Server;"c:\cfusionmx7\verity\k2\_nti40\bin\k2admin.exe" -cfg "c:\cfusionmx7\verity\k2\common\verity.cfg" -ntstart 1 --> c:\cfusionmx7\verity\k2\_nti40\bin\k2admin.exe [?]
S3 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr.sys [2010-11-2 39272]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-9-22 1493352]
S3 getPlus(R) Installer;getPlus(R) Installer;c:\program files\nos\bin\getPlus_HelperSvc.exe [2009-8-16 59552]
S3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\system32\svchost.exe -k nosGetPlusHelper [2008-9-18 21504]
S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2008-9-3 12872]

=============== Created Last 30 ================

2011-03-03 17:14:23 -------- d--h--w- C:\VritualRoot
2011-03-03 13:55:01 -------- d-----w- c:\users\auberey\appdata\local\Apple
2011-03-03 03:54:30 -------- d-----w- c:\program files\Citrix
2011-03-03 03:54:15 -------- d-----w- c:\users\auberey\appdata\local\Citrix
2011-03-03 00:04:09 -------- d-----w- c:\users\auberey\appdata\local\Opera
2011-03-02 22:33:52 -------- d-----w- c:\users\auberey\appdata\local\Adobe
2011-03-01 16:20:24 5943120 ----a-w- c:\progra~2\microsoft\windows defender\definition updates\{89bdc3b3-4724-4fe8-a1ed-dcef64252cb3}\mpengine.dll
2011-02-28 20:56:16 2048 ----a-w- c:\windows\system32\winrsmgr.dll
2011-02-28 20:54:51 40448 ----a-w- c:\windows\system32\winrs.exe
2011-02-28 20:54:51 20480 ----a-w- c:\windows\system32\winrshost.exe
2011-02-28 20:54:51 12800 ----a-w- c:\windows\system32\wsmprovhost.exe
2011-02-28 20:54:47 10240 ----a-w- c:\windows\system32\wsmplpxy.dll
2011-02-28 20:54:46 10240 ----a-w- c:\windows\system32\winrssrv.dll
2011-02-28 20:54:36 81408 ----a-w- c:\windows\system32\wevtfwd.dll
2011-02-28 20:54:36 79872 ----a-w- c:\windows\system32\wecutil.exe
2011-02-28 20:54:36 56320 ----a-w- c:\windows\system32\wecapi.dll
2011-02-28 20:54:36 54272 ----a-w- c:\windows\system32\WsmRes.dll
2011-02-28 20:54:36 146944 ----a-w- c:\windows\system32\wecsvc.dll
2011-02-28 20:54:34 41472 ----a-w- c:\windows\system32\pwrshplugin.dll
2011-02-28 20:54:13 201184 ----a-w- c:\windows\system32\winrm.vbs
2011-02-28 20:53:46 241152 ----a-w- c:\windows\system32\winrscmd.dll
2011-02-28 20:53:46 214016 ----a-w- c:\windows\system32\WsmWmiPl.dll
2011-02-28 20:53:46 145408 ----a-w- c:\windows\system32\WsmAuto.dll
2011-02-28 20:53:45 252416 ----a-w- c:\windows\system32\WSManMigrationPlugin.dll
2011-02-28 20:53:45 246272 ----a-w- c:\windows\system32\WSManHTTPConfig.exe
2011-02-28 20:53:45 1181696 ----a-w- c:\windows\system32\WsmSvc.dll
2011-02-10 23:26:42 2039808 ----a-w- c:\windows\system32\win32k.sys
2011-02-10 23:26:35 1205080 ----a-w- c:\windows\system32\ntdll.dll
2011-02-10 23:26:34 3602320 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-02-10 23:26:33 3550096 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-02-10 23:26:30 2409784 ----a-w- c:\program files\windows mail\OESpamFilter.dat
2011-02-10 23:26:03 797184 ----a-w- c:\windows\system32\FntCache.dll
2011-02-10 23:26:03 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2011-02-10 23:26:02 1068544 ----a-w- c:\windows\system32\DWrite.dll
2011-02-10 23:26:01 979456 ----a-w- c:\windows\system32\MFH264Dec.dll
2011-02-10 23:26:00 683008 ----a-w- c:\windows\system32\d2d1.dll
2011-02-10 23:26:00 135680 ----a-w- c:\windows\system32\XpsRasterService.dll
2011-02-10 23:11:54 292352 ----a-w- c:\windows\system32\atmfd.dll
2011-02-10 23:11:50 34304 ----a-w- c:\windows\system32\atmlib.dll

==================== Find3M ====================

2011-03-01 16:16:20 3766 --sha-w- c:\progra~2\KGyGaAvL.sys
2011-02-02 22:11:20 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-01-20 16:08:16 478720 ----a-w- c:\windows\system32\dxgi.dll
2011-01-20 16:08:06 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2011-01-20 16:08:06 189952 ----a-w- c:\windows\system32\d3d10core.dll
2011-01-20 16:08:06 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2011-01-20 16:08:06 1029120 ----a-w- c:\windows\system32\d3d10.dll
2011-01-20 16:07:58 37376 ----a-w- c:\windows\system32\cdd.dll
2011-01-20 16:07:42 258048 ----a-w- c:\windows\system32\winspool.drv
2011-01-20 16:07:16 586240 ----a-w- c:\windows\system32\stobject.dll
2011-01-20 16:06:38 2873344 ----a-w- c:\windows\system32\mf.dll
2011-01-20 16:06:35 26112 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll
2011-01-20 16:04:54 98816 ----a-w- c:\windows\system32\mfps.dll
2011-01-20 16:04:54 209920 ----a-w- c:\windows\system32\mfplat.dll
2011-01-20 14:28:38 1554432 ----a-w- c:\windows\system32\xpsservices.dll
2011-01-20 14:27:50 876032 ----a-w- c:\windows\system32\XpsPrint.dll
2011-01-20 14:26:30 667648 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe
2011-01-20 14:25:25 847360 ----a-w- c:\windows\system32\OpcServices.dll
2011-01-20 14:24:32 288768 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-01-20 14:14:39 357376 ----a-w- c:\windows\system32\MFHEAACdec.dll
2011-01-20 14:14:03 302592 ----a-w- c:\windows\system32\mfmp4src.dll
2011-01-20 14:14:03 261632 ----a-w- c:\windows\system32\mfreadwrite.dll
2011-01-20 14:11:34 486400 ----a-w- c:\windows\system32\d3d10level9.dll
2010-12-29 06:42:04 285480 ----a-w- c:\windows\system32\guard32.dll
2010-12-28 15:55:03 413696 ----a-w- c:\windows\system32\odbc32.dll
2010-12-14 14:49:23 1169408 ----a-w- c:\windows\system32\sdclt.exe

============= FINISH: 0:06:24.27 ===============


UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-12-12.02)

Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 9/16/2008 8:18:56 PM
System Uptime: 3/3/2011 11:58:53 AM (13 hours ago)

Motherboard: Sony Corporation | | VAIO
Processor: Intel(R) Core(TM)2 CPU T5600 @ 1.83GHz | N/A | 1833/167mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 298 GiB total, 168.025 GiB free.
D: is CDROM ()
E: is Removable
F: is Removable

==== Disabled Device Manager Items =============

Class GUID:
Description:
Device ID: ACPI\SNY5001\4&6F653EC&0
Manufacturer:
Name:
PNP Device ID: ACPI\SNY5001\4&6F653EC&0
Service:

==== System Restore Points ===================

RP1431: 2/20/2011 12:01:13 AM - Scheduled Checkpoint
RP1432: 2/21/2011 12:41:48 PM - Scheduled Checkpoint
RP1433: 2/22/2011 9:57:49 AM - Windows Update
RP1434: 2/23/2011 12:00:11 AM - Scheduled Checkpoint
RP1435: 2/24/2011 1:17:59 AM - Scheduled Checkpoint
RP1436: 2/24/2011 2:00:17 AM - Windows Update
RP1438: 2/24/2011 6:05:31 PM - Revo Uninstaller's restore point - Java(TM) 6 Update 15
RP1439: 2/24/2011 8:02:16 PM - Restore Operation
RP1440: 2/25/2011 2:00:17 AM - Windows Update
RP1441: 2/25/2011 5:13:50 PM - Windows Update
RP1442: 2/27/2011 3:17:49 AM - Scheduled Checkpoint
RP1443: 2/28/2011 2:50:31 PM - Restore Operation
RP1444: 2/28/2011 3:13:58 PM - Windows Update
RP1445: 2/28/2011 3:28:17 PM - Restore Operation
RP1446: 2/28/2011 3:51:20 PM - Windows Update
RP1447: 2/28/2011 4:17:26 PM - Windows Update
RP1448: 3/1/2011 2:00:11 AM - Windows Update
RP1449: 3/1/2011 11:18:53 AM - Windows Update
RP1450: 3/1/2011 11:39:23 PM - Removed Skype™ 5.0
RP1451: 3/1/2011 11:42:16 PM - Removed Skype Toolbars
RP1453: 3/1/2011 11:47:10 PM - Revo Uninstaller's restore point - Java(TM) 6 Update 15
RP1454: 3/2/2011 1:06:29 PM - Scheduled Checkpoint
RP1456: 3/3/2011 12:02:43 AM - Revo Uninstaller's restore point - SUPERAntiSpyware Free Edition
RP1458: 3/3/2011 12:04:58 AM - Revo Uninstaller's restore point - Spybot - Search & Destroy
RP1460: 3/3/2011 12:06:34 AM - Revo Uninstaller's restore point - COMODO Internet Security
RP1461: 3/3/2011 11:51:24 AM - Installed COMODO Internet Security

==== Installed Programs ======================


Acrobat.com
Adobe Acrobat 7.0 Professional
Adobe AIR
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Creative Suite 2
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe GoLive CS2
Adobe Help Center 1.0
Adobe Illustrator CS2
Adobe InDesign CS2
Adobe Photoshop CS2
Adobe Reader 9.4.2
Adobe Shockwave Player 11.5
Adobe Stock Photos 1.0
Adobe SVG Viewer 3.0
Akamai NetSession Interface
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Audacity 1.3.6 (Unicode)
Bandisoft MPEG-1 Decoder
Bluetooth Stack for Windows by Toshiba
Bonjour
COMODO Internet Security
Compatibility Pack for the 2007 Office system
Content
Corel Painter 11
Corel Painter 11 - ICA
Corel Painter 11 - IPM
Corel Painter X
D3DX10
DAISY ADPCM2 Audio Decoder
EA Download Manager
ESET Online Scanner v3
Express Burn
getPlus(R) for Corel
Google Toolbar for Internet Explorer
HDAUDIO SoftV92 Data Fax Modem with SmartCP
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
IconHandler 32 bit
Intel(R) Graphics Media Accelerator Driver
iTunes
Junk Mail filter update
LAN Setting Utility
Langauge
Licensing Service Install
Macromedia ColdFusion MX 7
Macromedia Contribute 3.11
Macromedia Dreamweaver 8
Macromedia Extension Manager
Macromedia Fireworks 8
Macromedia Flash 8
Macromedia Flash 8 Video Encoder
Malwarebytes' Anti-Malware
Mesh Runtime
Messenger Companion
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Live Add-in 1.3
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Windows Media Video 9 VCM
Move Media Player
Mozilla Firefox (3.6.14)
MSN Toolbar
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nexon Game Manager
NVIDIA Drivers
OGA Notifier 2.0.0048.0
Opera 11.01
Pando Media Booster
QuickTime
Revo Uninstaller 1.91
RFB&D Download Manager
RFB&D ReadHear by gh
Safari
Seagate Manager Installer
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2289158)
Security Update for 2007 Microsoft Office System (KB2344875)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft Office Excel 2007 (KB2345035)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB982158)
Security Update for Microsoft Office PowerPoint Viewer (KB2413381)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Segoe UI
Setting Utility Series
SOAP3 and XML4
Sony Snymsico for Vista
Sony Utilities DLL
Suite Specific
System Requirements Lab
TopStyle Lite (Version 3.0)
TouchFreeze
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VAIO Camera Capture Utility
VAIO Camera Utility
VAIO Central
VAIO Event Service
VAIO Update
VAIO Update 3
Wacom Tablet
Windows Installer Clean Up
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live OneCare safety scanner
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live Sign-in Assistant
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live Toolbar
Windows Live Upload Tool
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Resource Kit Tools - SubInAcl.exe
Wireless Switch Setting Utility
WYSIWYG Web Builder 5.5
Xara Dreamweaver Extension 1.02
Xara Webstyle 4
Xara Xtreme Pro 4
Xara3D6

==== Event Viewer Messages From Past Week ========

3/3/2011 12:00:53 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Tosrfcom
3/3/2011 12:00:53 PM, Error: Service Control Manager [7000] - The Parallel port driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
3/3/2011 12:00:53 PM, Error: Service Control Manager [7000] - The ColdFusion MX 7 Search Server service failed to start due to the following error: The system cannot find the path specified.
3/3/2011 12:00:53 PM, Error: Service Control Manager [7000] - The ColdFusion MX 7 Application Server service failed to start due to the following error: The system cannot find the path specified.
3/3/2011 11:53:49 AM, Error: Microsoft-Windows-SharedAccess_NAT [31004] - The DNS proxy agent was unable to allocate 0 bytes of memory. This may indicate that the system is low on virtual memory, or that the memory manager has encountered an internal error.
3/3/2011 11:41:46 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
3/3/2011 11:41:46 AM, Error: Service Control Manager [7000] - The Windows Search service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
3/3/2011 11:41:46 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
3/2/2011 11:09:04 AM, Error: Microsoft-Windows-ResourcePublication [1002] - Element Provider\Microsoft.Base.Publication/Publication/Computer failed to publish. Ensure that both PKEY_PUBSVCS_METADATA and PKEY_PUBSVCS_TYPE are set properly on the function instance and there were no errors adding the function instance.
3/2/2011 11:08:43 AM, Error: ACPI [13] - : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.
3/1/2011 9:25:34 AM, Error: Microsoft-Windows-Dhcp-Client [1002] - The IP address lease 192.168.1.114 for the Network Card with network address 0019D231B433 has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
3/1/2011 3:24:31 PM, Error: Microsoft-Windows-DistributedCOM [10000] - Unable to start a DCOM Server: {0006F03A-0000-0000-C000-000000000046}. The error: "2" Happened while starting this command: C:\PROGRA~1\MICROS~2\Office12\OUTLOOK.EXE -Embedding
2/28/2011 3:46:16 PM, Error: Microsoft-Windows-Windows Defender [2004] - Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted: Current Error Code: 0x8050a001 Error description: The program can't find definition files that help detect unwanted software. Check for updates to the definition files, and then try again. For information on installing updates, see Help and Support. Signatures loading: Backup Loading signature version: 1.97.2292.0 Loading engine version: 1.1.6502.0
2/28/2011 3:19:00 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.99.94.0).
2/28/2011 3:06:12 PM, Error: Microsoft-Windows-Windows Defender [2004] - Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted: Current Error Code: 0x8050a001 Error description: The program can't find definition files that help detect unwanted software. Check for updates to the definition files, and then try again. For information on installing updates, see Help and Support. Signatures loading: Backup Loading signature version: 1.97.2292.0 Loading engine version: 1.1.6502.0

==== End Of File ===========================

Edited by khwhitaker: n/a

4
Contributors
176
Replies
178
Views
6 Years
Discussion Span
Last Post by khwhitaker
0

Hi Karen, Judy here, PP asked if I could jump in and take a look. One thing I see is your Hosts file is hijacked. You need to replace this with a clean one.
Follow the steps on this page, note there are special instructions for Vista right next to where it says IMPORTANT

http://www.mvps.org/winhelp2002/hosts2.htm

Also you said this happens especially when you use a certain program, what program IS that exactly?

Edited by jholland1964: n/a

Attachments Vista_Hosts_Intructions.jpg 15.72 KB
0

Elluminate Live We use it for lectures sometimes 6 hours a day and you have to do a separate download for each lecture. It is the same program that I was having trouble with over a year ago. I've just been dealing with the little issues until it just would no longer work. I'm headed to the link you posted now. Thanks so much.

0

Elluminate Live .....

Hi Karen,

I'm going to discuss the Hosts bit with Judy - let's look at Java first.

Please download JavaRa.zip to your Desktop and Extract it to its own folder.

-- Make sure ALL browsers are CLOSED.
-- DoubleClick on JavaRa.exe to run it (or whatever hoops Vista makes you jump through) and then select your language of choice.
-- Click Remove Older Versions.
-- Follow the prompts and a log will pop up - please post that for us.

Then, follow the steps in the linky below to do the manual offline install:

http://www.java.com/en/download/help/windows_offline_download.xml

Let us know any errors along the way. You can use Print Screen button to capture screenshots and open and save them in Paint - may be easier to capure the error messages, if any....

PP:)

0

JavaRa 1.15 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Sun Nov 29 20:29:36 2009

Found and removed: C:\Users\Auberey\AppData\LocalLow\Sun\Java\jre1.6.0_10

Found and removed: C:\Users\Auberey\AppData\LocalLow\Sun\Java\jre1.6.0_11

Found and removed: C:\Users\Auberey\AppData\LocalLow\Sun\Java\jre1.6.0_12

Found and removed: C:\Users\Auberey\AppData\LocalLow\Sun\Java\jre1.6.0_13

Found and removed: C:\Users\Auberey\AppData\LocalLow\Sun\Java\jre1.6.0_15

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_02

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_03

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_04

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2.0_01

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Microsoft\Active Setup\Installed Components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}

JavaRa 1.15 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Wed Mar 02 00:05:59 2011

There was an error removing C:\Users\Auberey\AppData\LocalLow\Sun\Java\jre1.6.0_17. The error returned was 120.

Found and removed: C:\Users\Auberey\AppData\LocalLow\Sun\Java\jre1.6.0_20

Found and removed: C:\Users\Auberey\AppData\LocalLow\Sun\Java\jre1.6.0_21

------------------------------------

Finished reporting.

JavaRa 1.15 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Wed Mar 02 00:16:40 2011

There was an error removing C:\Users\Auberey\AppData\LocalLow\Sun\Java\jre1.6.0_17. The error returned was 120.

Found and removed: C:\Users\Auberey\AppData\LocalLow\Sun\Java\jre1.6.0_22

------------------------------------

Finished reporting.

JavaRa 1.15 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Wed Mar 02 00:44:20 2011

Found and removed: C:\Users\Auberey\AppData\LocalLow\Sun\Java\jre1.6.0_17

Found and removed: C:\Users\Auberey\AppData\LocalLow\Sun\Java\jre1.6.0_22

------------------------------------

Finished reporting.

trying the offline manual install again now.

0

So this is what happens when I try to do the offline one, I've tried this multiple times and the curser wheel spins like it's doing something then it just goes away. I have tried turning off Comodo, and with Comodo on, I have even uninstalled Comodo, tried to install Java, then reinstalled Comodo. I've also tried it with the UAC on and with the UAC off. The online method looks like it's working, but never gets past the first section, it shows the bar to 100% but then disappears. I didn't try this one again today, just like a 100 times or so in the past week ;)

0

trying the offline manual install again now.

Great - let us know how that shakes out.

I am off to dinner - hopefully back in a few hours.

-- For Judy's benefit, that was the JavaRa log from when the Elluminate tech had you run it a couple days ago, right...

PP:)

0

I didn't try this one again today, just like a 100 times or so in the past week ;)

Just out of curiosity, can you install it in Safe Mode?

Probably won't work because need windows installer.

I think this might be an issue with Comodo - They've had those in the past with their Guard service still running after the firewall was uninstalled.
We'll probably have to look at that and shut it down - Will get back to you tonight after dinner or, if I get dragged out on the town, Saturday evening at the latest...

Judy may chime in in the meantime. Her attention to detail is far greater than mine, so she may see something else blocking the Java install....

Cheers :)
PP

0

Great - let us know how that shakes out.

I am off to dinner - hopefully back in a few hours.

-- For Judy's benefit, that was the JavaRa log from when the Elluminate tech had you run it a couple days ago, right...

PP:)

The one I posted just now is new, I reinstalled and ran it again, so that one is from a few minutes ago. I thought since I'd been messing with installations still/again, it couldn't hurt to just do it again and it got rid of a few new things. Enjoy your dinner :)

haven't tried safe mode, I'll do that now

Edited by khwhitaker: n/a

0

Safe mode didn't work, however it did at least open the run box in safe mode.

0

Hey Karen,

Try downloading the latest version of Windows installer and see if that helps:

Linky

I am going to look at some other options as well - hang in there!

PP:)

0

it says the update does not apply to this system...

OK - let's look at something else.

Please download the attached PEEK.txt and save it to the desktop.
-- Rename PEEK.txt to PEEK.bat
-- DoubleClick on PEEK.bat to run it - a log will pop up. Please post that for us.
If it doesn't run or throws an error, you may have ti RightClick it and "Run as Administrator."

PP:)

Attachments
@ECHO OFF

REG QUERY "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders" >>%systemdrive%\Peek.txt
NOTEPAD %systemdrive%\Peek.txt
DEL /Q %systemdrive%\Peek.txt
0

@ECHO OFF

REG QUERY "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders" >>%systemdrive%\Peek.txt
NOTEPAD %systemdrive%\Peek.txt
DEL /Q %systemdrive%\Peek.txt

0

@ECHO OFF

REG QUERY "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders" >>%systemdrive%\Peek.txt
NOTEPAD %systemdrive%\Peek.txt
DEL /Q %systemdrive%\Peek.txt

That is the contents of the text file you downloaded :)

If you save it to the desktop and then change the name, the icon should change to a gear icon. RightClick it and choose the "run as administrator" option and then post me the log.

PP:)

0

yeah, I didn't think that was right but it just says it's a text file and won't give me an admin option to select on rt click. Am I doing something wrong? yep, feeling quite inept right about now...

Edited by khwhitaker: n/a

0

Am I doing something wrong? yep, feeling quite inept right about now...

No worries!

Just extract PEEK.bat from the attached Zip and RightClick it and "Run as Admin."

That should do it.

PP:)

Attachments
0

Microsoft Windows [Version 6.0.6002]
Fri 11/13/2009
08:18 AM


*******************************************************************************
Registrykey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS

Object does not exist or user doesn't have enough permissions

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\\Windows\\system32\\igfxtray.exe"
"HotKeysCmds"="C:\\Windows\\system32\\hkcmd.exe"
"Persistence"="C:\\Windows\\system32\\igfxpers.exe"
"Acrobat Assistant 7.0"="\"C:\\Program Files\\Adobe\\Adobe Acrobat 7.0\\Distillr\\Acrotray.exe\""
"Malwarebytes Anti-Malware (reboot)"="\"C:\\Program Files\\Malwarebytes' Anti-Malware\\mbam.exe\" /runcleanupscript"
@=""
"avgnt"="\"C:\\Program Files\\Avira\\AntiVir Desktop\\avgnt.exe\" /min"


HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
AppData REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming
Cache REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Microsoft\Windows\Temporary Internet Files
Cookies REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Cookies
Desktop REG_EXPAND_SZ %USERPROFILE%\Desktop
Favorites REG_EXPAND_SZ %USERPROFILE%\Favorites
History REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Microsoft\Windows\History
Local AppData REG_EXPAND_SZ %USERPROFILE%\AppData\Local
My Music REG_EXPAND_SZ %USERPROFILE%\Music
My Pictures REG_EXPAND_SZ %USERPROFILE%\Pictures
My Video REG_EXPAND_SZ %USERPROFILE%\Videos
NetHood REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Network Shortcuts
Personal REG_EXPAND_SZ %USERPROFILE%\Documents
PrintHood REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Printer Shortcuts
Programs REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
Recent REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Recent
SendTo REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\SendTo
Startup REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Start Menu REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu
Templates REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Templates
{374DE290-123F-4565-9164-39C4925E467B} REG_EXPAND_SZ %USERPROFILE%\Downloads

Comodo ran this in the sandbox, do I need to do it again with comodo turned off? Or is this what you needed?

Edited by khwhitaker: n/a

0


Comodo ran this in the sandbox, do I need to do it again with comodo turned off? Or is this what you needed?

Yeah - that shows what I wanted to see.

Let me put the old thinking cap on and see what I can come up with.

I'll be back Monday evening - hopefully with a good idea of how to proceed.... :)

PP

0

thanks PP!

This is a bit difficult given that the install just stops and there are no error messages.

-- Is your Vista 32 or 64-bit? I can't remember....

-- Open a command prompt and copy&paste:
cacls "%userprofile%\application data" >>C:\logit.txt and hit ENTER
Please navigate to C:\logit.txt and post that for me.
You may need an elevated command prompt to get it to run properly in Vista.

-- Also, please try the installation of the offline Java package again. Even if it doesn't seem to be doing anything, let it go for a bit.
Then, if still no joy, please download and run This Tool.
It should place a shortcut on the desktop - run that to produce the log and please post that for me.

Cheers :)
PP

Edited by PhilliePhan: n/a

0

32 bit . . .

..C:\Users\Auberey\Application Data Everyone:(DENY)(special access:)

FILE_READ_DATA

AUBREY-SONY-PC\Auberey:(OI)(CI)(ID)F
NT AUTHORITY\SYSTEM:(OI)(CI)(ID)F
BUILTIN\Administrators:(OI)(CI)(ID)F

trying the Java again now, look at all the smily and frowny faces. I ran this as an administrator do I need to do something else?

Edited by PhilliePhan: Removed Surplus Info

0

==================================================
Record Number : 388986
Log Type : System
Event Type : Information
Time : 3/7/2011 8:09:21 PM
Source : Service Control Manager
Category : 0
Event ID : 7036
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 260
Event Description :
==================================================

==================================================
Record Number : 388984
Log Type : System
Event Type : Information
Time : 3/7/2011 8:09:12 PM
Source : DCOM
Category : 0
Event ID : 10029
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 212
Event Description :
==================================================

==================================================
Record Number : 388985
Log Type : System
Event Type : Information
Time : 3/7/2011 8:09:12 PM
Source : Service Control Manager
Category : 0
Event ID : 7036
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 260
Event Description :
==================================================

==================================================
Record Number : 32232
Log Type : Application
Event Type : Information
Time : 3/7/2011 8:09:10 PM
Source : Windows Error Reporting
Category : 0
Event ID : 1001
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 840
Event Description : Fault bucket 1167712371, type 1 Event Name: APPCRASH Response: http://oca.microsoft.com/resredir.aspx?SID=95&iBucketTable=1&iBucket=1167712371 Cab Id: 0 Problem signature: P1: OfficeLiveSignIn.exe P2: 2.0.2313.0 P3: 491c0a79 P4: OfficeLiveSignIn.exe P5: 2.0.2313.0 P6: 491c0a79 P7: c0000005 P8: 00003ce7 P9: P10: Attached files: C:\Users\Auberey\AppData\Local\temp\WER4641.tmp.version.txt These files may be available here: C:\Users\Auberey\AppData\Local\Microsoft\Windows\WER\ReportArchive\Report1df25ec1
==================================================

==================================================
Record Number : 7189
Log Type : OSession
Event Type : Information
Time : 3/7/2011 8:09:08 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 280
Event Description : ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 187542 seconds with 780 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 32231
Log Type : Application
Event Type : Error
Time : 3/7/2011 8:09:00 PM
Source : Application Error
Category : 100
Event ID : 1000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 372
Event Description : Faulting application OfficeLiveSignIn.exe, version 2.0.2313.0, time stamp 0x491c0a79, faulting module OfficeLiveSignIn.exe, version 2.0.2313.0, time stamp 0x491c0a79, exception code 0xc0000005, fault offset 0x00003ce7, process id 0x138c, application start time 0x01cbdb78d01bd27b.
==================================================

==================================================
Record Number : 388983
Log Type : System
Event Type : Information
Time : 3/7/2011 8:01:34 PM
Source : Service Control Manager
Category : 0
Event ID : 7036
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 240
Event Description :
==================================================

==================================================
Record Number : 388982
Log Type : System
Event Type : Information
Time : 3/7/2011 7:45:04 PM
Source : Service Control Manager
Category : 0
Event ID : 7036
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 240
Event Description :
==================================================

==================================================
Record Number : 388981
Log Type : System
Event Type : Information
Time : 3/7/2011 7:13:59 PM
Source : Service Control Manager
Category : 0
Event ID : 7036
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 204
Event Description :
==================================================

==================================================
Record Number : 32230
Log Type : Application
Event Type : Information
Time : 3/7/2011 7:12:59 PM
Source : gusvc
Category : 0
Event ID : 0
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 136
Event Description :
==================================================

==================================================
Record Number : 388980
Log Type : System
Event Type : Information
Time : 3/7/2011 7:12:59 PM
Source : Service Control Manager
Category : 0
Event ID : 7036
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 204
Event Description :
==================================================

==================================================
Record Number : 388979
Log Type : System
Event Type : Information
Time : 3/7/2011 7:12:59 PM
Source : DCOM
Category : 0
Event ID : 10029
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 196
Event Description :
==================================================

==================================================
Record Number : 388978
Log Type : System
Event Type : Information
Time : 3/7/2011 6:25:30 PM
Source : Service Control Manager
Category : 0
Event ID : 7036
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 240
Event Description :
==================================================

==================================================
Record Number : 7188
Log Type : OSession
Event Type : Information
Time : 3/7/2011 6:12:23 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 284
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1305 seconds with 60 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 388977
Log Type : System
Event Type : Information
Time : 3/7/2011 6:09:00 PM
Source : Service Control Manager
Category : 0
Event ID : 7036
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 240
Event Description :
==================================================

==================================================
Record Number : 7187
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:56:22 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7186
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:56:10 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7185
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:55:58 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7184
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:55:50 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7183
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:55:42 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7182
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:55:33 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7181
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:55:24 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7180
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:55:16 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7179
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:55:04 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7178
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:54:54 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7177
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:54:44 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7176
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:54:34 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7175
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:54:25 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7174
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:54:17 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7173
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:54:03 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7172
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:53:55 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7171
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:53:47 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7170
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:53:39 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7169
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:53:17 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7168
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:53:05 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7167
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:52:55 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7166
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:52:34 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7165
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:52:13 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7164
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:52:04 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7163
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:51:52 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7162
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:51:28 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7161
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:51:15 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

==================================================
Record Number : 7160
Log Type : OSession
Event Type : Information
Time : 3/7/2011 5:51:01 PM
Source : Microsoft Office 12 Sessions
Category : 0
Event ID : 7000
User Name :
Computer : Aubrey-Sony-PC
Event Data Length : 0
Record Length : 276
Event Description : ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended normally.
==================================================

Edited by PhilliePhan: Removed Surplus Info

0

OK - that helps.

-- What happens if you disable Vista's UAC and then try the Java install?

Also, it looks as though some of our old logs from last time remain on the machine - you can delete those.
Open a command prompt and type dir C:\ >>C:\Look.txt and hit ENTER and then post the C:\look.txt for me and we'll get rid of those old logs.

PP:)

0

I've tried it with it turned off previously but I'll try it again. Honestly I usually leave it off most of the time due to an inability to name my own files in Adobe. I turned it on per the java tech's recommendation. He said it might work on instead of off. Doing the rest now.

0

Volume in drive C has no label.
Volume Serial Number is 3A3F-99AD

Directory of C:\

03/02/2011 11:36 PM <DIR> $Recycle.Bin
06/14/2010 10:05 PM <DIR> 2011
07/16/2010 10:32 AM <DIR> 402b4165d4df640108
01/09/2009 01:28 PM 0 AdobeDebug.txt
11/04/2009 01:21 PM <DIR> appsinst
10/15/2008 10:36 AM 0 asdasd.asdasd
06/14/2010 09:12 PM <DIR> Autodesk
09/18/2006 04:43 PM 24 autoexec.bat
11/06/2009 10:28 AM <DIR> Boot
11/06/2009 10:41 AM 963,181 ComboFix.txt
09/18/2006 04:43 PM 10 config.sys
11/04/2009 01:21 PM <DIR> drivers
11/09/2009 07:44 AM 2 Export.txt
01/29/2009 10:24 AM 8,551 EyeCandyLog.txt
11/05/2010 09:28 AM <DIR> inetpub
08/14/2009 10:11 PM <DIR> Intel
03/02/2011 12:44 AM 15,354 JavaRa.log
03/01/2009 12:29 PM <DIR> Local Publish
03/07/2011 08:09 PM 15,320 Logit.txt
03/07/2011 09:12 PM 0 Look.txt
06/14/2010 10:05 PM 49 mayaLog
03/29/2010 10:16 PM 109 mbam-error.txt
01/05/2002 02:38 AM 54,784 msvci70.dll
11/04/2010 09:13 PM <DIR> Nexon
09/07/2009 03:09 PM <DIR> perflogs
03/15/2009 09:20 PM 204 Plugins
10/15/2008 10:36 AM 0 proc.id
03/07/2011 08:19 PM <DIR> Program Files
03/03/2011 11:54 AM <DIR> ProgramData
11/19/2009 08:38 PM <DIR> ProgramFiles
06/14/2010 10:06 PM <DIR> projects
11/13/2009 08:18 AM 1,120 RegKey.txt
06/14/2010 10:05 PM <DIR> scripts
12/02/2009 05:22 PM <DIR> temp
03/02/2011 11:34 PM <DIR> Users
03/05/2011 07:01 PM <DIR> Windows
11/30/2009 05:44 PM <DIR> WTablet
16 File(s) 1,058,708 bytes
21 Dir(s) 179,859,578,880 bytes free

0

I've tried it with it turned off previously but I'll try it again. Honestly I usually leave it off most of the time due to an inability to name my own files in Adobe. I turned it on per the java tech's recommendation. He said it might work on instead of off. Doing the rest now.

I think we are going to run into the same problem we had last time, but let's give this a try:

Open an Elevated command prompt and copy and paste:
cacls "C:\Users\Auberey\Application Data" /GE:F and hit ENTER
Let me know if there's an error message.

If no message or it says something like "completed successfully," please try the Java install again with the offline install package.

Also, you can probably safely delete all of these - doubt they'll be needed again:

C:\ComboFix.txt
C:\JavaRa.log
C:\Logit.txt
C:\Look.txt
C:\mbam-error.txt
C:\RegKey.txt

I'm out for a bit - will check back later tonight or tomorrow.

PP:)

0

no text log but this is what came up in the command prompt

Microsoft Windows [Version 6.0.6002]
Copyright (c) 2006 Microsoft Corporation. All rights reserved.

C:\Users\Auberey>cacls "C:\Users\Auberey\Application Data" /GE:F

NOTE: Cacls is now deprecated, please use Icacls.

Displays or modifies access control lists (ACLs) of files

CACLS filename [/T] [/M] [/L] [/S[:SDDL]] [/E] [/C] [/G user:perm]
[/R user [...]] [/P user:perm [...]] [/D user [...]]
filename Displays ACLs.
/T Changes ACLs of specified files in
the current directory and all subdirectories.
/L Work on the Symbolic Link itself versus the target
/M Changes ACLs of volumes mounted to a directory
/S Displays the SDDL string for the DACL.
/S:SDDL Replaces the ACLs with those specified in the SDDL string
(not valid with /E, /G, /R, /P, or /D).
/E Edit ACL instead of replacing it.
/C Continue on access denied errors.
/G user:perm Grant specified user access rights.
Perm can be: R Read
W Write
C Change (write)
F Full control
/R user Revoke specified user's access rights (only valid with /E).
/P user:perm Replace specified user's access rights.
Perm can be: N None
R Read
W Write
C Change (write)
F Full control
/D user Deny specified user access.
Wildcards can be used to specify more that one file in a command.
You can specify more than one user in a command.

Abbreviations:
CI - Container Inherit.
The ACE will be inherited by directories.
OI - Object Inherit.
The ACE will be inherited by files.
IO - Inherit Only.
The ACE does not apply to the current file/directory.
ID - Inherited.
The ACE was inherited from the parent directory's ACL.

C:\Users\Auberey>

0

no text log but this is what came up in the command prompt. . . .

Bleh...

OK - let's do this:

Please open an Elevated Command Prompt.

Then, copy and paste the following:

icacls C:\Users\Auberey\Application Data /grant Everyone:(D,WDAC)
and hit ENTER.

See if there are any error messages or a "completed successfully" message and let me know.

PP:)

Edited by PhilliePhan: n/a

0

hmmm, I ran it as an admin earlier, I did a screen shot so I went back and checked it; this time it says invalid parameter "Data"

This question has already been answered. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.