Author Topic: Windows Repair v2.8.7 Help with Failed Repair  (Read 11057 times)

0 Members and 1 Guest are viewing this topic.

Offline oom

  • Newbie
  • *
  • Join Date: Aug 2014
  • Posts: 4
  • Karma: 0
    • View Profile
Windows Repair v2.8.7 Help with Failed Repair
« on: August 18, 2014, 08:14:14 pm »

Need help, windows repair log attached.  :cheesy:
« Last Edit: August 18, 2014, 08:43:55 pm by oom »

Offline Shane

  • Administrator
  • Hero Member
  • *****
  • Join Date: Sep 2011
  • Posts: 9281
  • Location: USA
  • Karma: 137
  • "Knowledge should be shared not hidden."
    • View Profile
Re: Windows Repair v2.8.7 Help with Failed Repair
« Reply #1 on: August 19, 2014, 09:53:35 am »
You are the 3rd person to have the repairs fail right there, which is odd since they all worked fine for me.

Any time you see a repair running under the system account the tweaking_ras.exe from the files folder is called. If something keeps that from running then the repair never even starts.

Can you check your event viewer and see if there is any errors about that file? Did you have your antivirus disabled when you ran the repairs?

Shane

Offline oom

  • Newbie
  • *
  • Join Date: Aug 2014
  • Posts: 4
  • Karma: 0
    • View Profile
Re: Windows Repair v2.8.7 Help with Failed Repair
« Reply #2 on: August 19, 2014, 09:57:43 am »
I will take a look at those in a few just finishing some virus scans and waiting for a reply on bleepingcomputer forums. All av's were disabled even mse.

Offline Shane

  • Administrator
  • Hero Member
  • *****
  • Join Date: Sep 2011
  • Posts: 9281
  • Location: USA
  • Karma: 137
  • "Knowledge should be shared not hidden."
    • View Profile
Re: Windows Repair v2.8.7 Help with Failed Repair
« Reply #3 on: August 19, 2014, 10:01:31 am »
I am heading out on a job for a customer and will be back later today. When I get back I will see if you posted back, try to see if you find anything in the event viewer, like did the tweaking_ras.exe crash?

If it had trouble then the fix would be for me is to have the program try a repair again after iut doesnt start for 30 sec and do that 2 or 3 times BEFORE it stops doing the repairs. That way if there ever is a small random hicupp it doesnt stop all the repairs.

You can start the repairs again, uncheck all the ones before that repair and have it start where it left off :-)

Shane

Offline oom

  • Newbie
  • *
  • Join Date: Aug 2014
  • Posts: 4
  • Karma: 0
    • View Profile
Re: Windows Repair v2.8.7 Help with Failed Repair
« Reply #4 on: August 19, 2014, 03:44:46 pm »
Alright here is an update Shane. I finished doing what bleepingcomputer told me and your tool ran perfectly after that seems i had some deep malware/rootkit. Here are the results.


System Variables
--------------------------------------------------------------------------------
OS: Windows 7 Home Premium
OS Architecture: 64-bit
OS Version: 6.1.7601
OS Service Pack: Service Pack 1
Computer Name: RYAN-PC
Windows Drive: C:\
Windows Path: C:\Windows
Program Files: C:\Program Files
Program Files (x86): C:\Program Files (x86)
Current Profile: C:\Users\Ryan
Current Profile SID: S-1-5-21-3514845564-2089270939-1637311307-1000
Current Profile Classes: S-1-5-21-3514845564-2089270939-1637311307-1000_Classes
Profiles Location: C:\Users
Profiles Location 2: C:\Windows\ServiceProfiles
Local Settings AppData: C:\Users\Ryan\AppData\Local
--------------------------------------------------------------------------------

System Information
--------------------------------------------------------------------------------
System Up Time: 0 Days 00:02:49

Process Count: 46
Commit Total: 2.01 GB
Commit Limit: 11.99 GB
Commit Peak: 2.03 GB
Handle Count: 14103
Kernel Total: 428.52 MB
Kernel Paged: 379.05 MB
Kernel Non Paged: 49.47 MB
System Cache: 1.22 GB
Thread Count: 793
--------------------------------------------------------------------------------

Memory Before Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 11.99 GB
Memory Used: 1.89 GB(15.7819%)
Memory Avail.: 10.10 GB
--------------------------------------------------------------------------------

Cleaning Memory Before Starting Repairs...

Memory After Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 11.99 GB
Memory Used: 1.71 GB(14.2262%)
Memory Avail.: 10.28 GB
--------------------------------------------------------------------------------

Starting Repairs...
   Started at (19/08/2014 06:18:39 PM)

01 - Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (19/08/2014 06:18:40 PM)
   Running Repair Under Current User Account
   Done (19/08/2014 06:18:42 PM)

01 - Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (19/08/2014 06:18:42 PM)
   Running Repair Under System Account
   Done (19/08/2014 06:21:14 PM)

01 - Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (19/08/2014 06:21:14 PM)
   Running Repair Under System Account
   Done (19/08/2014 06:21:50 PM)

02 - Reset File Permissions: C:
   C: & Sub Folders
   Start (19/08/2014 06:21:50 PM)
   Trying To Run Repair As Trusted Installer.
   You will see a Interactive Services Detection Window.
   The Repair Is Running In That Window.
   This Is Normal And Will Go Away Once The Repair Is Finished.
   Running Repair As Trusted Installer
   Done (19/08/2014 06:21:53 PM)

02 - Reset File Permissions: D:
   D: & Sub Folders
   Start (19/08/2014 06:21:53 PM)
   Trying To Run Repair As Trusted Installer.
   You will see a Interactive Services Detection Window.
   The Repair Is Running In That Window.
   This Is Normal And Will Go Away Once The Repair Is Finished.
   Running Repair As Trusted Installer
   Done (19/08/2014 06:21:54 PM)

02 - Reset File Permissions: All Profiles
   C:\Users & Sub Folders
   Start (19/08/2014 06:21:54 PM)
   Running Repair Under System Account
   Done (19/08/2014 06:21:55 PM)

02 - Reset File Permissions: Current Profile
   C:\Users\Ryan & Sub Folders
   Start (19/08/2014 06:21:55 PM)
   Running Repair Under System Account
   Done (19/08/2014 06:21:56 PM)

02 - Reset File Permissions: Cleanup
   Repairing Restricted Folders Permissions To Avoid Infinite Loops
   Start (19/08/2014 06:21:56 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:21:59 PM)

03 - Reset Service Permissions
   Start (19/08/2014 06:21:59 PM)
   Running Repair Under System Account
   Done (19/08/2014 06:22:02 PM)

04 - Register System Files
   Start (19/08/2014 06:22:02 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:22:18 PM)

05 - Repair WMI
   Start (19/08/2014 06:22:18 PM)

   Starting Security Center So We Can Export The Security Info.

   Exporting Antivirus Info...
   Microsoft Security Essentials Exported.

   Exporting AntiSpyware Info...
   Windows Defender Exported.
   Microsoft Security Essentials Exported.

   Exporting 3rd Party Firewall Info...
   No Firewall Products Reported.

   Running Repair Under Current User Account
   Done (19/08/2014 06:23:51 PM)

06 - Repair Windows Firewall
   Start (19/08/2014 06:23:51 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:24:15 PM)

07 - Repair Internet Explorer
   Start (19/08/2014 06:24:15 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:24:28 PM)

08 - Repair MDAC/MS Jet
   Start (19/08/2014 06:24:28 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:24:33 PM)

09 - Repair Hosts File
   Start (19/08/2014 06:24:33 PM)
   Running Repair Under System Account
   Done (19/08/2014 06:24:34 PM)

10 - Remove Policies Set By Infections
   Start (19/08/2014 06:24:34 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:24:37 PM)

11 - Repair Start Menu Icons Removed By Infections
   Start (19/08/2014 06:24:37 PM)
   Running Repair Under System Account
   Done (19/08/2014 06:24:38 PM)

12 - Repair Icons
   Start (19/08/2014 06:24:38 PM)
   Running Repair Under Current User Account
   Done (19/08/2014 06:24:39 PM)

13 - Repair Winsock & DNS Cache
   Start (19/08/2014 06:24:39 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:24:54 PM)

14 - Remove Temp Files
   Start (19/08/2014 06:24:54 PM)
   Running Repair Under System Account
   Done (19/08/2014 06:24:55 PM)

15 - Repair Proxy Settings
   Start (19/08/2014 06:24:55 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:24:57 PM)

16 - Unhide Non System Files
   Start (19/08/2014 06:24:57 PM)
   C:\ - Total Files Unhidden: 245 - Check Unhidden_Files.txt for list of files unhidden
   D:\ - Total Files Unhidden: 43 - Check Unhidden_Files.txt for list of files unhidden
   Done (19/08/2014 06:27:32 PM)

17 - Repair Windows Updates
   Start (19/08/2014 06:27:32 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Setting Windows Updates Files That Are In Use To Be Removed At Next Boot.
   Done (19/08/2014 06:27:52 PM)

18 - Repair CD/DVD Missing/Not Working
   Start (19/08/2014 06:27:52 PM)
   iTunes not found, not applying UpperFilters iTunes Reg Key
   Done (19/08/2014 06:27:52 PM)

19 - Repair Volume Shadow Copy Service
   Start (19/08/2014 06:27:52 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:10 PM)

21 - Repair MSI (Windows Installer)
   Start (19/08/2014 06:28:10 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:18 PM)

22 - Repair Windows Snipping Tool
   Start (19/08/2014 06:28:18 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:21 PM)

23.01 - Repair bat Association
   Start (19/08/2014 06:28:21 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:23 PM)

23.02 - Repair cmd Association
   Start (19/08/2014 06:28:23 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:25 PM)

23.03 - Repair com Association
   Start (19/08/2014 06:28:25 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:27 PM)

23.04 - Repair Directory Association
   Start (19/08/2014 06:28:27 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:29 PM)

23.05 - Repair Drive Association
   Start (19/08/2014 06:28:29 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:31 PM)

23.06 - Repair exe Association
   Start (19/08/2014 06:28:32 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:34 PM)

23.07 - Repair Folder Association
   Start (19/08/2014 06:28:34 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:36 PM)

23.08 - Repair inf Association
   Start (19/08/2014 06:28:36 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:38 PM)

23.09 - Repair lnk (Shortcuts) Association
   Start (19/08/2014 06:28:38 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:40 PM)

23.10 - Repair msc Association
   Start (19/08/2014 06:28:40 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:42 PM)

23.11 - Repair reg Association
   Start (19/08/2014 06:28:42 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:45 PM)

23.12 - Repair scr Association
   Start (19/08/2014 06:28:45 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:47 PM)

24 - Repair Windows Safe Mode
   Start (19/08/2014 06:28:47 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:28:49 PM)

25 - Repair Print Spooler
   Start (19/08/2014 06:28:49 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:29:02 PM)

26 - Restore Important Windows Services
   Start (19/08/2014 06:29:02 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:29:06 PM)

27 - Set Windows Services To Default Startup
   Start (19/08/2014 06:29:06 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:29:09 PM)

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1

31 - Repair Windows 'New' Submenu
   Start (19/08/2014 06:29:10 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (19/08/2014 06:29:12 PM)

Cleaning up empty logs...

All Selected Repairs Done.
   Done at (19/08/2014 06:29:12 PM)
   Total Repair Time: 00:10:35


...YOU MUST RESTART YOUR SYSTEM...
   Running Repair Under Current User Account

Offline Shane

  • Administrator
  • Hero Member
  • *****
  • Join Date: Sep 2011
  • Posts: 9281
  • Location: USA
  • Karma: 137
  • "Knowledge should be shared not hidden."
    • View Profile
Re: Windows Repair v2.8.7 Help with Failed Repair
« Reply #5 on: August 19, 2014, 03:47:02 pm »
Good to see it had no problems the next time you ran it. I am still working on an update to better handle when a repair doesnt run and why it doesnt run. I hopefully will have the update out by tomorrow :-)

Shane

Offline oom

  • Newbie
  • *
  • Join Date: Aug 2014
  • Posts: 4
  • Karma: 0
    • View Profile
Re: Windows Repair v2.8.7 Help with Failed Repair
« Reply #6 on: August 19, 2014, 03:57:48 pm »
I believe it has something to do with a google(infected) chrome extensions that are blocking it from accessing that part. http://www.bleepingcomputer.com/forums/t/544933/puppum-multiple-rootkits-need-help-not-sure-if-everything-is-removed/ here is the thread if you want to scan through it. About to run another dds and post it as i am typing this up to show the completed product. I had to manually remove google chrome from everything and reinstall a fresh copy.