Link to home
Create AccountLog in
Avatar of Jim White
Jim WhiteFlag for United States of America

asked on

After virus issues

Howdy all.  I have a client workstation that had a nasty bug.  I was able to clean it and restore desktop etc., but every program pops up an error "Illegal operation attempted on a registry key marked for deletion".  On some of the shortcuts I've been able to make it work by giving the program "start as administrator".  The rest won't allow that option to be checked.  Office 2010 is one of them.  Anything else I can do to fix this?
Thanks,
jwhite
Avatar of aadih
aadih
Flag of United States of America image

What OS?   What bug?  What anti-virus program used to clean?  Some details are necessary?
SOLUTION
Avatar of upul007
upul007
Flag of Sri Lanka image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Did you try to reinstall affected programs (e.g. MS Office)?

what if you try to log on as different user on that machine? Do you have problems to run apps as well?
Try running SFC /SCANNOW and reboot the computer and see what happens.
This is often seen when using Combofix to clean a system and not rebooting when told.
Avatar of Jim White

ASKER

Ok, here's the rest of the info I should have included.
OS is Win 7 x64
Bug appears to be PCRestorePro
Working in safe mode I have been able to use Malwarebytes and Combofix.  Spybot S&D 2 would not launch.
Office 2010 has been uninstalled/reinstalled.
Able to get back in real mode, but as I stated above, some progs are throwing the error.  On those I can set run as admin, work, the rest don't.

Sorry for not including this in the first place.
SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
ASKER CERTIFIED SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
OK, ran Mbytes in real mode, found more crap and removed.  Finally got Spybot 2 running, again more stuff removed, ran Combofix in realm mode and that found more.  After aqll 3 and a quick run of mbar, we seem to be operating normally.  What confuses me is that when I clean a machine in safe mode, that's usually the end of it.  This is the first time I've had to rerun programs to get the proper results.  Thanks all.
Thanks again all.
You must always run the scanning program in normal mode first.  If that is not available or the program does not run, then it must be run in safe mode. But after the normal mode becomes available, it must be run from the noraml mode.

Great.  You got it working.  :-)