Something nasty has stolen my administrator rights ...

Hi there

Background; I noticed this problem when i tried to update Wintv. In order to renew software and drivers they must first be removed, but when i tried to re-install i found i no longer have administrator rights.

Tried again, then says hardware not present, even though it is and shows up in device manager.

Tried to system restore, took forever then failed.
Avast and Mbam found nothing.
Avast boot-time scan failed to run.
SAS (which is 111 days old and i can’t update, even manually- it says SAS not installed!) showed Gen nullo (short) in one system restore file.
Kaspsersky online scan won’t run.
Tdsskiller won’t install.
Various other efforts have failed to help.

Ok. That’s just about where i’m at on arrival here. Having followed essexboy’s instructions, attached are the AdwCleaner, MBAM, OTL and aswMBR logs.

Hoping someone has the time and inclination to help with this.

Cheers.

There are no attached logs yet ???

Hi!

I tried to add attachments and was informed that i have already submitted the post. What did i do wrong?

Sorry, not with it today. Doh!

… here are attachments …

Essexboy has been notified and will attend as soon as possible.

Thanks craigb, i’m very grateful! :slight_smile:

Your welcome :slight_smile:

When this run has completed could you let me know what problems remain

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL

[*]Under the Custom Scans/Fixes box at the bottom, paste in the following

https://dl.dropbox.com/u/73555776/OTL_Fix.GIF


:Commands
[CREATERESTOREPOINT]

:OTL
DRV - File not found [Kernel | Boot | Stopped] -- System32\drivers\oujp.sys -- (juqkb)
DRV - File not found [Kernel | On_Demand | Stopped] -- Reg Error: Invalid data type. -- (INIDVD)
IE - HKU\S-1-5-21-299502267-1788223648-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-21-299502267-1788223648-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = localhost:12080
O3 - HKU\S-1-5-21-299502267-1788223648-682003330-1003\..\Toolbar\WebBrowser: (no name) - {2C688203-7EB3-4327-9995-1CB417BA23F9} - No CLSID value found.
O3 - HKU\S-1-5-21-299502267-1788223648-682003330-1003\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.

:Commands
[resethosts]
[emptytemp]
[Reboot]

[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

Ok Mr essexboy. Here are the OTL logs. The first one popped up when i opened OTL so i thought i’d better send that too.

I still don’t have admin rights and the SAS issue still remains :-\

Are you able to select a restore point prior to the update of Wintv

That was the first thing i tried but unfortunately no. I attempted several all the way back to my earliest which was in May. None were successful.

Download Windows Repair (all in one) from this site

Install the programme then run

https://dl.dropbox.com/u/73555776/waio%20start.JPG

Go to step 3 and allow it to run SFC

https://dl.dropbox.com/u/73555776/waio%20step3.JPG

On the start repairs tab click start

https://dl.dropboxusercontent.com/u/73555776/waio%20startrep.JPG

Select the following items and tick restart system when finished. Include the top two permission options as well

https://dl.dropbox.com/u/73555776/waio%20rep%20list.JPG

Crikey! Didn’t expect you back so late. Thanks very much!

Ok, I’m on it … I’ll post back asap tonight :slight_smile:

Done that.

Tried again with Wintv. Still no admin rights :-\

Btw, your help is very much appreciated :slight_smile:

So it is just WinTV that you are having the problems with … Is that correct ?

Sorry, i should have made myself clearer before.

The Wintv re-install was just the point that i initially noticed the issue, and therefore the first thing i test to determine whether the problem has been resolved.

Before coming to you for advice i tried many things. Tdsskiller, Kaspersky online scan, neither would install due to lack of privileges.

SAS won’t autoupdate and manual update (by definition download) won’t work stating SAS isn’t installed.

Even the aswMBR log shows that it failed to initialize properly.

The issue is not wintv only, it is everything. I have no admin privileges whatsoever

One other thing that may be relevant - On desktop during boot i get a window saying ‘server busy’ with ‘switch to’ and ‘retry’ options. This is relatively new, and i have no idea what it relates to.

Hope this helps …

Could you run a fresh OTL scan for me please as it sounds as though you are on a network

Could you download the take ownership reg file from here and merge it with your registry http://www.askvg.com/add-take-ownership-option-in-file-folder-context-menu-in-windows-vista/

Then right click the WinTV folder and select take ownership… Does that allow you to uninstall it

I do have ‘Tonido’ installed if that’s relevant.

Here’s the new OTL log.

I’ll do the registry thing now …

Just noticed what you said.

To clarify; i had no problems uninstalling wintv. It’s the install that i’m not allowed to do.

Same with Tdsskiller and Kasp o/l scan. Was unable to load drivers. Same thing i think with aswMBR when i ran it at your request.

I’ll do the registry download and then attempt to install wintv.