• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 936
  • Last Modified:

Unable to remove usb logs from win 7

I am facing Problem when trying to remove USB Logs from win 7..while its fine in win xp.

Always when trying to remove entry from regedit..giving error like access denied ..while m using built-in admin account..!!

When trying to del any key..giving Error while deleting key![Snap attached]

For more info i have attached error snap with complete path detail for usbstor
USBSTOR-ERROR.jpg
0
patron
Asked:
patron
  • 6
  • 4
2 Solutions
 
patronAuthor Commented:
is there any other way except regedit to remove usb logs?
0
 
patronAuthor Commented:
m sorry..my question is only for win 7..as its fine in win xp
0
 
btanExec ConsultantCommented:
Can try this tool to uninstall instead of "delete"

http://www.nirsoft.net/utils/usb_devices_view.html

In order to disable/enable/uninstall USB items under Windows Vista/7/2008 with UAC turned on, you should right click on USBDeview and choose 'Run As Administrator'. In order to disable/enable USB items on x64 systems, you also must use the x64 version of USBDeview.
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
btanExec ConsultantCommented:
0
 
patronAuthor Commented:
All I have already tried..but no Luck..Thanks for all you support.

i have found one best utility DriveCleanup.exe to remove all USB logs even from registry

But am unable to understand  why it was not allowing me to do it manually..like i have all required access on OS[win 7 64 bit] -built in Admin Access/On Key..is it something newly configured for win 7 security?
0
 
btanExec ConsultantCommented:
It should not be something unless I suspect that the drivecleanup.exe  has installed driver else system rights as service to delete those resource. The approach shared should already passed UAC and have the privilege though.
0
 
patronAuthor Commented:
It worked. Without giving any specific access… On other win 7 Machine, while I have tried to remove logs manually on my Machine by giving all required access manually. but no luck!!
0
 
patronAuthor Commented:
its a simple exe...just click..and ll remove all the logs..ll not install on PC
0
 
btanExec ConsultantCommented:
Thanks, also saw this but it doesnt seems to clean all, pls see second link.
I supposed the drivercleanup.exe also clean away those below

http://www.nirsoft.net/utils/clean_after_me.html

http://www.irongeek.com/i.php?page=security/windows-forensics-registry-and-file-system-spots#List of Installed USB devices, both connected and unconnected


Description: List of Installed USB devices, both connected and unconnected
Location: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\USB
Why you care: It can be useful to know what USB devices have be connected to a box, and even the vendor and serial number of the device in some cases. Think someone copied the data to a thumbdrive? This may help you trace down what thumbdrive. Think how useful it can be to help tie something a user physical possesses to a box.
Entry by: Irongeek.

Description: List of installed USB storage devices
Location: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\USBSTOR
Why you care: Much like the installed USB devices entry, but just for USB storage. Think someone copied the data to a thumbdrive? This may help you trace down what thumbdrive. CleanAfterMe scrubs HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\USB but not USBSTOR when I tested last.
Entry by: Irongeek.

Description: SetupAPI Device Log
Location: C:\windows\inf\setupapi.dev.log
Why you care: Log that can help you find out what USB devices have been installed, including thumbdrives. CleanAfterMe scrubs HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\USB but not this file when I tested last.
Entry by: Irongeek, but thanks to Nir.
0
 
patronAuthor Commented:
Thanks
0

Featured Post

2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

  • 6
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now