Jump to content

Bugerion

Honorary Members
  • Posts

    81
  • Joined

  • Last visited

Reputation

0 Neutral
  1. I have to add reply because I can't even fully edit the post ComboFix 10-01-21.08 - Name 01.01.2010 18:15:36.2.2 - x86 Running from: c:\users\Name\Desktop\ComboFix.exe . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\$recycle.bin\S-1-5-21-2820492086-4233630706-933203961-1003 c:\program files\SpeedBit Video Downloader\Toolbar\tbhelper.dll c:\users\Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk c:\users\Name\left4dead2.exe D:\install.exe . ((((((((((((((((((((((((( Files Created from 2009-12-01 to 2010-01-01 ))))))))))))))))))))))))))))))) . 2040-01-28 15:19 . 2040-01-28 15:19 6136 ----a-w- c:\users\Name\AppData\Local\TimerStop64.sys 2040-01-28 15:19 . 2040-01-28 15:19 4096 ----a-w- c:\users\Name\AppData\Local\TimerStop.sys 2010-01-01 17:21 . 2010-01-01 17:22 -------- d-----w- c:\users\Name\AppData\Local\temp 2010-01-01 17:21 . 2010-01-01 17:21 -------- d-----w- c:\users\Default\AppData\Local\temp 2009-12-29 15:08 . 2009-12-29 15:08 -------- d-----w- c:\programdata\Codemasters 2009-12-29 15:08 . 2009-12-29 15:08 444952 ----a-w- c:\windows\system32\wrap_oal.dll 2009-12-29 15:08 . 2009-12-29 15:08 109080 ----a-w- c:\windows\system32\OpenAL32.dll 2009-12-29 15:08 . 2009-12-29 15:08 -------- d-----w- c:\program files\OpenAL 2009-12-22 23:59 . 2009-12-22 23:59 41872 ----a-w- c:\windows\system32\xfcodec.dll 2009-12-21 13:04 . 2009-12-21 13:05 -------- d-----w- c:\program files\DAEMON Tools Lite 2009-12-21 13:04 . 2009-12-21 13:10 -------- d-----w- c:\users\Name\AppData\Roaming\DAEMON Tools Lite 2009-12-21 13:04 . 2009-12-21 13:04 -------- d-----w- c:\programdata\DAEMON Tools Lite 2009-12-21 09:59 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-12-21 09:59 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-12-21 09:59 . 2009-12-21 09:59 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-12-21 09:51 . 2009-12-21 09:51 -------- d-----w- c:\program files\ImageShack Uploader 2009-12-20 08:44 . 2009-12-20 08:44 -------- d-----w- c:\users\Name\bin 2009-12-18 14:34 . 2009-12-18 14:34 -------- d-----w- c:\windows\system32\EventProviders 2009-12-15 12:06 . 2010-01-04 06:39 -------- d-----w- C:\Codd 2009-12-14 20:40 . 2009-12-14 20:40 -------- d-----w- c:\programdata\Blizzard Entertainment 2009-12-13 09:25 . 2009-12-13 09:25 -------- d-----w- c:\users\Name\{02a450f5-bad0-4d1b-883a-a1449bd024ce} 2009-12-13 09:25 . 2009-02-24 17:42 116736 ----a-w- c:\windows\system32\drivers\mcdbus.sys 2009-12-13 09:25 . 2009-12-13 09:26 -------- d-----w- c:\program files\MagicDisc 2009-12-13 09:21 . 2009-12-13 09:22 -------- d-----w- c:\program files\MagicISO 2009-12-08 05:08 . 2009-12-08 05:08 38400 ----a-w- c:\users\Name\stryder.dll 2009-12-08 05:00 . 2009-12-08 05:00 10240 ----a-w- c:\users\Name\IniGen.exe 2009-12-07 16:11 . 2009-12-07 20:55 -------- d-----w- c:\program files\JDownloader 2009-12-06 11:44 . 2009-12-07 12:21 -------- d-----w- c:\users\Name\AppData\Local\ApplicationHistory 2009-12-06 11:40 . 2009-12-06 11:40 -------- d-----w- c:\windows\system32\URTTEMP 2009-12-05 11:18 . 2009-12-05 11:18 -------- d-----w- c:\users\Name\DotNet 2009-12-04 18:26 . 2009-12-04 18:26 -------- d-----w- c:\users\Name\AppData\Roaming\ImgBurn 2009-12-04 18:25 . 2009-12-04 18:25 -------- d-----w- c:\program files\ImgBurn 2009-12-03 20:01 . 2009-12-03 20:02 -------- d--h--w- c:\windows\msdownld.tmp 2009-12-03 18:58 . 2009-12-03 19:49 -------- d-----w- c:\users\Name\AppData\Local\LogMeIn Hamachi 2009-12-03 18:57 . 2009-12-03 18:57 -------- d-----w- c:\program files\LogMeIn Hamachi . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-01-01 17:22 . 2009-11-28 15:21 -------- d-----w- c:\users\Name\AppData\Roaming\DMCache 2010-01-01 17:20 . 2009-05-08 21:11 -------- d-----w- c:\users\Name\AppData\Roaming\DNA 2010-01-01 17:10 . 2009-09-02 10:45 49744 ----a-w- c:\programdata\nvModes.dat 2010-01-01 17:09 . 2009-01-28 15:06 -------- d-----w- c:\programdata\NVIDIA 2010-01-01 17:09 . 2009-01-28 13:41 1356 ----a-w- c:\users\Name\AppData\Local\d3d9caps.dat 2010-01-01 17:08 . 2009-03-27 23:04 -------- d-----w- c:\program files\Microsoft Silverlight 2010-01-01 13:46 . 2009-03-29 08:32 215104 ----a-w- c:\windows\system32\PNKBSTRB.EXE 2010-01-01 13:20 . 2009-03-29 08:32 138576 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2009-12-29 14:48 . 2009-01-28 15:33 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-12-26 19:20 . 2009-03-10 09:14 -------- d-----w- c:\program files\Common Files\Steam 2009-12-23 18:13 . 2009-04-05 06:52 -------- d-----w- c:\users\Name\AppData\Roaming\Xfire 2009-12-23 16:59 . 2009-04-05 06:52 -------- d-----w- c:\programdata\Xfire 2009-12-22 23:26 . 2009-05-16 08:14 -------- d-----w- c:\program files\DNA 2009-12-21 13:05 . 2009-10-09 21:45 691696 ----a-w- c:\windows\system32\drivers\sptd.sys 2009-12-21 09:59 . 2009-06-29 09:46 -------- d-----w- c:\users\Name\AppData\Roaming\Malwarebytes 2009-12-21 09:59 . 2009-06-29 09:46 -------- d-----w- c:\programdata\Malwarebytes 2009-12-19 20:28 . 2009-11-28 15:21 -------- d-----w- c:\users\Name\AppData\Roaming\IDM 2009-12-19 20:20 . 2009-06-17 17:25 552 ----a-w- c:\users\Name\AppData\Local\d3d8caps.dat 2009-12-17 02:13 . 2009-01-28 13:42 100256 ----a-w- c:\users\Name\AppData\Local\GDIPFONTCACHEV1.DAT 2009-12-09 12:45 . 2009-10-23 14:38 -------- d-----w- c:\program files\Counter-Strike 1.6 2009-12-06 11:59 . 2009-05-16 07:19 -------- d-----w- c:\users\Name\AppData\Roaming\GameTracker 2009-12-03 12:32 . 2009-01-30 21:23 -------- d-----w- c:\program files\Activision 2009-12-02 15:00 . 2009-03-27 23:37 -------- d-----w- c:\program files\Java 2009-11-30 19:13 . 2009-08-28 23:19 -------- d-----w- c:\program files\Common Files\DVDVideoSoft 2009-11-30 19:13 . 2009-08-28 23:19 -------- d-----w- c:\program files\DVDVideoSoft 2009-11-30 17:02 . 2009-11-30 17:02 171144 ----a-w- c:\windows\system32\xliveinstall.dll 2009-11-30 17:02 . 2009-11-30 17:02 72840 ----a-w- c:\windows\system32\xliveinstallhost.exe 2009-11-28 15:24 . 2009-11-28 15:21 -------- d-----w- c:\program files\Internet Download Manager 2009-11-28 15:22 . 2009-11-28 15:22 165296 ----a-w- c:\users\Name\AppData\Roaming\IDM\idmmzcc2\components\idmmzcc.dll 2009-11-28 08:07 . 2009-03-29 08:32 75064 ----a-w- c:\windows\system32\PnkBstrA.exe 2009-11-28 08:07 . 2009-03-26 17:58 2373712 ----a-w- c:\windows\system32\pbsvc.exe 2009-11-25 12:52 . 2009-11-25 12:52 -------- d-----w- c:\programdata\WinZip 2009-11-25 12:31 . 2009-11-25 12:31 484976 ----a-w- c:\programdata\Google\Google Toolbar\Update\gtb66DA.tmp.exe 2009-11-24 18:56 . 2009-11-24 18:56 -------- d-----w- c:\program files\Microsoft Windows 7 Upgrade Advisor 2009-11-24 18:47 . 2009-02-28 18:56 -------- d-----w- c:\program files\Marvell 2009-11-24 18:39 . 2009-11-24 18:35 -------- d-----w- c:\users\Name\AppData\Roaming\Software Informer 2009-11-24 18:35 . 2009-04-12 19:56 -------- d-----w- c:\program files\Software Informer 2009-11-23 12:59 . 2009-11-23 12:59 -------- d-----w- c:\program files\CPUID 2009-11-21 16:12 . 2009-01-31 17:31 -------- d-----w- c:\program files\Electronic Arts 2009-11-20 14:31 . 2009-11-20 14:31 2373712 ----a-w- c:\programdata\id Software\QuakeLive\pbsvc.exe 2009-11-20 06:36 . 2009-02-06 19:17 -------- d-----w- c:\programdata\Sports Interactive 2009-11-20 06:36 . 2009-01-28 21:44 -------- d-----w- c:\users\Name\AppData\Roaming\Sports Interactive 2009-11-20 06:31 . 2009-01-28 21:27 -------- d-----w- c:\program files\Sports Interactive 2009-11-18 15:19 . 2009-11-18 15:19 -------- d-----w- c:\programdata\BioWare 2009-11-18 15:16 . 2009-11-18 15:16 -------- d-----w- c:\programdata\Media Center Programs 2009-11-18 15:16 . 2009-11-18 15:04 -------- d-----w- c:\program files\Common Files\BioWare 2009-11-18 14:39 . 2009-04-12 18:23 -------- d-----w- c:\users\Name\AppData\Roaming\uTorrent 2009-11-10 13:27 . 2009-11-10 13:27 -------- d-----w- c:\program files\Movie Maker 2.6 2009-11-06 09:59 . 2009-11-06 09:59 15406728 ----a-w- c:\windows\system32\xlive.dll 2009-11-06 09:59 . 2009-11-06 09:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll 2009-11-02 21:39 . 2009-10-10 18:20 -------- d-----w- c:\users\Name\AppData\Roaming\The Path 2009-10-11 03:17 . 2009-03-27 23:38 411368 ----a-w- c:\windows\system32\deploytk.dll 2009-10-08 09:11 . 2009-11-24 18:44 643072 ----a-w- c:\windows\system32\ykx32ncu.dll 2009-10-07 15:17 . 2009-02-22 20:33 281760 ----a-w- c:\windows\system32\drivers\atksgt.sys 2009-10-07 15:17 . 2009-02-22 20:33 25888 ----a-w- c:\windows\system32\drivers\lirsgt.sys . ------- Sigcheck ------- [-] 2008-01-18 . E104414729F6D39F7C7EC07693E6DDA3 . 25088 . . [6.0.6000.16386] . . c:\windows\System32\userinit.exe [-] 2006-11-02 . 77139F6755CF7C7241FD2F35BEF67326 . 8704 . . [6.0.6000.16386] . . c:\windows\System32\CTFMON.EXE . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{7c5c0f58-e061-457d-9033-77307f5ed00c}"= "c:\program files\TorrentMan\tbTor1.dll" [2009-07-17 2215960] [HKEY_CLASSES_ROOT\clsid\{7c5c0f58-e061-457d-9033-77307f5ed00c}] [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}] 2008-12-09 16:40 333192 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7c5c0f58-e061-457d-9033-77307f5ed00c}] 2009-07-17 20:21 2215960 ----a-w- c:\program files\TorrentMan\tbTor1.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] 2009-04-01 17:16 193472 ------w- c:\program files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-12-09 333192] "{7c5c0f58-e061-457d-9033-77307f5ed00c}"= "c:\program files\TorrentMan\tbTor1.dll" [2009-07-17 2215960] [HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}] [HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}] [HKEY_CLASSES_ROOT\clsid\{7c5c0f58-e061-457d-9033-77307f5ed00c}] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{7C5C0F58-E061-457D-9033-77307F5ED00C}"= "c:\program files\TorrentMan\tbTor1.dll" [2009-07-17 2215960] "{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-12-09 333192] [HKEY_CLASSES_ROOT\clsid\{7c5c0f58-e061-457d-9033-77307f5ed00c}] [HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}] [HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-18 1233920] "GAINWARD"="c:\program files\EXPERTool\TBPanel.exe" [2008-10-21 2177576] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-01-15 147456] "MsnMsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-04-08 39408] "BitTorrent DNA"="c:\users\Name\Program Files\DNA\btdna.exe" [2009-10-07 323392] "RegistryMechanic"="c:\program files\Registry Mechanic\RMTray.exe" [2008-07-03 812952] "RGSC"="c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2009-03-24 306088] "IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2009-11-28 2606512] "AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2009-04-24 203928] "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200] "AdobeUpdater"="c:\program files\Common Files\Adobe\Updater5\AdobeUpdater.exe" [2008-09-26 2356088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RemoteControl8"="c:\program files\CyberLink\PowerDVD8\PDVD8Serv.exe" [2008-03-20 83240] "PDVD8LanguageShortcut"="c:\program files\CyberLink\PowerDVD8\Language\Language.exe" [2007-12-14 50472] "NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792] "amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824] "egui"="f:\eset\egui.exe" [2009-02-06 2021400] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-2820492086-4233630706-933203961-1000] "EnableNotificationsRef"=dword:00000001 R3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;d:\program files\DA O\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832] S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2009-02-06 106208] S2 16771;16771;c:\windows\System32\16771.sys [2009-01-28 4096] S2 ASKService;ASKService;c:\program files\AskBarDis\bar\bin\AskService.exe [2008-12-09 464264] S2 ASKUpgrade;ASKUpgrade;c:\program files\AskBarDis\bar\bin\ASKUpgrade.exe [2008-12-09 234888] S2 cpuz132;cpuz132;c:\windows\system32\drivers\cpuz132_x32.sys [2009-03-27 12672] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] yksvcs REG_MULTI_SZ yksvc . Contents of the 'Scheduled Tasks' folder 2010-01-01 c:\windows\Tasks\User_Feed_Synchronization-{6BA434EA-4D9F-4945-AC55-4338C174DB8A}.job - c:\windows\system32\msfeedssync.exe [2009-02-13 22:33] . . ------- Supplementary Scan ------- . uStart Page = hxxp://google.atcomet.com/ uSearchURL,(Default) = hxxp://g.msn.co.uk/0SEENWW/SAOS01?FORM=TOOLBR IE: &D&ownload &with BitComet - c:\program files\BitComet\BitComet.exe/AddLink.htm IE: &D&ownload all video with BitComet - c:\program files\BitComet\BitComet.exe/AddVideo.htm IE: &D&ownload all with BitComet - c:\program files\BitComet\BitComet.exe/AddAllLink.htm IE: Download all links with IDM - c:\program files\Internet Download Manager\IEGetAll.htm IE: Download FLV video content with IDM - c:\program files\Internet Download Manager\IEGetVL.htm IE: Download video with Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm IE: Download with IDM - c:\program files\Internet Download Manager\IEExt.htm IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html IE: Preuzmi odabrano Free Download Manager-om - file://c:\program files\Free Download Manager\dlselected.htm IE: Preuzmi sa Free Download Managerom - file://c:\program files\Free Download Manager\dllink.htm IE: Preuzmi sve sa Free Download Manager-om - file://c:\program files\Free Download Manager\dlall.htm IE: Save YouTube Video as MP3 - c:\program files\Common Files\DVDVideoSoft\Dll\IEContextMenuY.dll/scriptY2MP3.htm Trusted Zone: bitcomet Trusted Zone: quakelive.com\www TCP: {34814B22-ACC0-44D9-8FB4-1103A29FD54B} = 217.23.192.9 217.23.192.14 DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} - hxxps://www.battlefieldheroes.com/static/updater/BFHUpdater_4.0.21.0.cab . - - - - ORPHANS REMOVED - - - - Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) HKCU-Run-fsm - (no file) HKCU-Run-Steam - d:\program files\Steam\Steam.exe AddRemove-SpeedBit Video Accelerator - c:\program files\SpeedBit Video Accelerator\VARemove.exe AddRemove-{1DCC7418-2089-4BDD-B321-3771956160FC} - c:\program files\InstallShield Installation Information\{1DCC7418-2089-4BDD-B321-3771956160FC}\setup.exe AddRemove-{52D1D62C-FEAB-4580-849E-1DB624BADBBD} - c:\program files\InstallShield Installation Information\{52D1D62C-FEAB-4580-849E-1DB624BADBBD}\setup.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-01-01 18:22 Windows 6.0.6001 Service Pack 1 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... c:\users\Name\AppData\Local\Temp\catchme.dll 53248 bytes executable scan completed successfully hidden files: 1 ************************************************************************** [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\GarenaPEngine] "ImagePath"="\??\c:\users\Name\AppData\Local\Temp\MLE18FA.tmp" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\npggsvc] "ImagePath"="c:\windows\system32\GameMon.des -service" . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_USERS\S-1-5-21-2820492086-4233630706-933203961-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{8A4BF383-F4C1-6F89-36F4-2A36F3894F23}*] "bbofblppdfnjancfgcopklaepmghgmmljpge"=hex:67,61,6f,64,64,6f,62,63,70,6d,6f,67, 6d,6b,00,00 [HKEY_USERS\S-1-5-21-2820492086-4233630706-933203961-1000\Software\SecuROM\License information*] "datasecu"=hex:93,ee,4f,f2,fd,2f,3a,29,7d,2f,4a,3f,39,da,65,20,64,17,62,4e,41, df,4b,56,ee,d8,09,e4,fa,62,26,0a,d0,89,ba,5d,e2,41,46,ef,74,d2,f2,a8,98,c2,\ "rkeysecu"=hex:9a,1a,d0,fc,be,17,e1,f4,95,92,ac,1f,b2,a6,71,0e . Completion time: 2010-01-01 18:23:46 ComboFix-quarantined-files.txt 2010-01-01 17:23 ComboFix2.txt 2009-07-01 11:07 Pre-Run: 16.931.762.176 bytes free Post-Run: 20.709.007.360 bytes free - - End Of File - - FC6BAA2B99822EC7B94F5FB4DDCD81CC I found this http://2405460899295338256-a-1802744773732...;attredirects=0 I think it can help me but I want you to tell me so
  2. I don't have the installation disc and my computer was fine until I ran Combofix
  3. ComboFix 10-01-21.08 - Name 01.01.2010 18:15:36.2.2 - x86 Running from: c:\users\Name\Desktop\ComboFix.exe . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\$recycle.bin\S-1-5-21-2820492086-4233630706-933203961-1003 c:\program files\SpeedBit Video Downloader\Toolbar\tbhelper.dll c:\users\Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk c:\users\Name\left4dead2.exe D:\install.exe . ((((((((((((((((((((((((( Files Created from 2009-12-01 to 2010-01-01 ))))))))))))))))))))))))))))))) . 2040-01-28 15:19 . 2040-01-28 15:19 6136 ----a-w- c:\users\Name\AppData\Local\TimerStop64.sys 2040-01-28 15:19 . 2040-01-28 15:19 4096 ----a-w- c:\users\Name\AppData\Local\TimerStop.sys 2010-01-01 17:21 . 2010-01-01 17:22 -------- d-----w- c:\users\Name\AppData\Local\temp 2010-01-01 17:21 . 2010-01-01 17:21 -------- d-----w- c:\users\Default\AppData\Local\temp 2009-12-29 15:08 . 2009-12-29 15:08 -------- d-----w- c:\programdata\Codemasters 2009-12-29 15:08 . 2009-12-29 15:08 444952 ----a-w- c:\windows\system32\wrap_oal.dll 2009-12-29 15:08 . 2009-12-29 15:08 109080 ----a-w- c:\windows\system32\OpenAL32.dll 2009-12-29 15:08 . 2009-12-29 15:08 -------- d-----w- c:\program files\OpenAL 2009-12-22 23:59 . 2009-12-22 23:59 41872 ----a-w- c:\windows\system32\xfcodec.dll 2009-12-21 13:04 . 2009-12-21 13:05 -------- d-----w- c:\program files\DAEMON Tools Lite 2009-12-21 13:04 . 2009-12-21 13:10 -------- d-----w- c:\users\Name\AppData\Roaming\DAEMON Tools Lite 2009-12-21 13:04 . 2009-12-21 13:04 -------- d-----w- c:\programdata\DAEMON Tools Lite 2009-12-21 09:59 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-12-21 09:59 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-12-21 09:59 . 2009-12-21 09:59 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-12-21 09:51 . 2009-12-21 09:51 -------- d-----w- c:\program files\ImageShack Uploader 2009-12-20 08:44 . 2009-12-20 08:44 -------- d-----w- c:\users\Name\bin 2009-12-18 14:34 . 2009-12-18 14:34 -------- d-----w- c:\windows\system32\EventProviders 2009-12-15 12:06 . 2010-01-04 06:39 -------- d-----w- C:\Codd 2009-12-14 20:40 . 2009-12-14 20:40 -------- d-----w- c:\programdata\Blizzard Entertainment 2009-12-13 09:25 . 2009-12-13 09:25 -------- d-----w- c:\users\Name\{02a450f5-bad0-4d1b-883a-a1449bd024ce} 2009-12-13 09:25 . 2009-02-24 17:42 116736 ----a-w- c:\windows\system32\drivers\mcdbus.sys 2009-12-13 09:25 . 2009-12-13 09:26 -------- d-----w- c:\program files\MagicDisc 2009-12-13 09:21 . 2009-12-13 09:22 -------- d-----w- c:\program files\MagicISO 2009-12-08 05:08 . 2009-12-08 05:08 38400 ----a-w- c:\users\Name\stryder.dll 2009-12-08 05:00 . 2009-12-08 05:00 10240 ----a-w- c:\users\Name\IniGen.exe 2009-12-07 16:11 . 2009-12-07 20:55 -------- d-----w- c:\program files\JDownloader 2009-12-06 11:44 . 2009-12-07 12:21 -------- d-----w- c:\users\Name\AppData\Local\ApplicationHistory 2009-12-06 11:40 . 2009-12-06 11:40 -------- d-----w- c:\windows\system32\URTTEMP 2009-12-05 11:18 . 2009-12-05 11:18 -------- d-----w- c:\users\Name\DotNet 2009-12-04 18:26 . 2009-12-04 18:26 -------- d-----w- c:\users\Name\AppData\Roaming\ImgBurn 2009-12-04 18:25 . 2009-12-04 18:25 -------- d-----w- c:\program files\ImgBurn 2009-12-03 20:01 . 2009-12-03 20:02 -------- d--h--w- c:\windows\msdownld.tmp 2009-12-03 18:58 . 2009-12-03 19:49 -------- d-----w- c:\users\Name\AppData\Local\LogMeIn Hamachi 2009-12-03 18:57 . 2009-12-03 18:57 -------- d-----w- c:\program files\LogMeIn Hamachi . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-01-01 17:22 . 2009-11-28 15:21 -------- d-----w- c:\users\Name\AppData\Roaming\DMCache 2010-01-01 17:20 . 2009-05-08 21:11 -------- d-----w- c:\users\Name\AppData\Roaming\DNA 2010-01-01 17:10 . 2009-09-02 10:45 49744 ----a-w- c:\programdata\nvModes.dat 2010-01-01 17:09 . 2009-01-28 15:06 -------- d-----w- c:\programdata\NVIDIA 2010-01-01 17:09 . 2009-01-28 13:41 1356 ----a-w- c:\users\Name\AppData\Local\d3d9caps.dat 2010-01-01 17:08 . 2009-03-27 23:04 -------- d-----w- c:\program files\Microsoft Silverlight 2010-01-01 13:46 . 2009-03-29 08:32 215104 ----a-w- c:\windows\system32\PNKBSTRB.EXE 2010-01-01 13:20 . 2009-03-29 08:32 138576 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2009-12-29 14:48 . 2009-01-28 15:33 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-12-26 19:20 . 2009-03-10 09:14 -------- d-----w- c:\program files\Common Files\Steam 2009-12-23 18:13 . 2009-04-05 06:52 -------- d-----w- c:\users\Name\AppData\Roaming\Xfire 2009-12-23 16:59 . 2009-04-05 06:52 -------- d-----w- c:\programdata\Xfire 2009-12-22 23:26 . 2009-05-16 08:14 -------- d-----w- c:\program files\DNA 2009-12-21 13:05 . 2009-10-09 21:45 691696 ----a-w- c:\windows\system32\drivers\sptd.sys 2009-12-21 09:59 . 2009-06-29 09:46 -------- d-----w- c:\users\Name\AppData\Roaming\Malwarebytes 2009-12-21 09:59 . 2009-06-29 09:46 -------- d-----w- c:\programdata\Malwarebytes 2009-12-19 20:28 . 2009-11-28 15:21 -------- d-----w- c:\users\Name\AppData\Roaming\IDM 2009-12-19 20:20 . 2009-06-17 17:25 552 ----a-w- c:\users\Name\AppData\Local\d3d8caps.dat 2009-12-17 02:13 . 2009-01-28 13:42 100256 ----a-w- c:\users\Name\AppData\Local\GDIPFONTCACHEV1.DAT 2009-12-09 12:45 . 2009-10-23 14:38 -------- d-----w- c:\program files\Counter-Strike 1.6 2009-12-06 11:59 . 2009-05-16 07:19 -------- d-----w- c:\users\Name\AppData\Roaming\GameTracker 2009-12-03 12:32 . 2009-01-30 21:23 -------- d-----w- c:\program files\Activision 2009-12-02 15:00 . 2009-03-27 23:37 -------- d-----w- c:\program files\Java 2009-11-30 19:13 . 2009-08-28 23:19 -------- d-----w- c:\program files\Common Files\DVDVideoSoft 2009-11-30 19:13 . 2009-08-28 23:19 -------- d-----w- c:\program files\DVDVideoSoft 2009-11-30 17:02 . 2009-11-30 17:02 171144 ----a-w- c:\windows\system32\xliveinstall.dll 2009-11-30 17:02 . 2009-11-30 17:02 72840 ----a-w- c:\windows\system32\xliveinstallhost.exe 2009-11-28 15:24 . 2009-11-28 15:21 -------- d-----w- c:\program files\Internet Download Manager 2009-11-28 15:22 . 2009-11-28 15:22 165296 ----a-w- c:\users\Name\AppData\Roaming\IDM\idmmzcc2\components\idmmzcc.dll 2009-11-28 08:07 . 2009-03-29 08:32 75064 ----a-w- c:\windows\system32\PnkBstrA.exe 2009-11-28 08:07 . 2009-03-26 17:58 2373712 ----a-w- c:\windows\system32\pbsvc.exe 2009-11-25 12:52 . 2009-11-25 12:52 -------- d-----w- c:\programdata\WinZip 2009-11-25 12:31 . 2009-11-25 12:31 484976 ----a-w- c:\programdata\Google\Google Toolbar\Update\gtb66DA.tmp.exe 2009-11-24 18:56 . 2009-11-24 18:56 -------- d-----w- c:\program files\Microsoft Windows 7 Upgrade Advisor 2009-11-24 18:47 . 2009-02-28 18:56 -------- d-----w- c:\program files\Marvell 2009-11-24 18:39 . 2009-11-24 18:35 -------- d-----w- c:\users\Name\AppData\Roaming\Software Informer 2009-11-24 18:35 . 2009-04-12 19:56 -------- d-----w- c:\program files\Software Informer 2009-11-23 12:59 . 2009-11-23 12:59 -------- d-----w- c:\program files\CPUID 2009-11-21 16:12 . 2009-01-31 17:31 -------- d-----w- c:\program files\Electronic Arts 2009-11-20 14:31 . 2009-11-20 14:31 2373712 ----a-w- c:\programdata\id Software\QuakeLive\pbsvc.exe 2009-11-20 06:36 . 2009-02-06 19:17 -------- d-----w- c:\programdata\Sports Interactive 2009-11-20 06:36 . 2009-01-28 21:44 -------- d-----w- c:\users\Name\AppData\Roaming\Sports Interactive 2009-11-20 06:31 . 2009-01-28 21:27 -------- d-----w- c:\program files\Sports Interactive 2009-11-18 15:19 . 2009-11-18 15:19 -------- d-----w- c:\programdata\BioWare 2009-11-18 15:16 . 2009-11-18 15:16 -------- d-----w- c:\programdata\Media Center Programs 2009-11-18 15:16 . 2009-11-18 15:04 -------- d-----w- c:\program files\Common Files\BioWare 2009-11-18 14:39 . 2009-04-12 18:23 -------- d-----w- c:\users\Name\AppData\Roaming\uTorrent 2009-11-10 13:27 . 2009-11-10 13:27 -------- d-----w- c:\program files\Movie Maker 2.6 2009-11-06 09:59 . 2009-11-06 09:59 15406728 ----a-w- c:\windows\system32\xlive.dll 2009-11-06 09:59 . 2009-11-06 09:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll 2009-11-02 21:39 . 2009-10-10 18:20 -------- d-----w- c:\users\Name\AppData\Roaming\The Path 2009-10-11 03:17 . 2009-03-27 23:38 411368 ----a-w- c:\windows\system32\deploytk.dll 2009-10-08 09:11 . 2009-11-24 18:44 643072 ----a-w- c:\windows\system32\ykx32ncu.dll 2009-10-07 15:17 . 2009-02-22 20:33 281760 ----a-w- c:\windows\system32\drivers\atksgt.sys 2009-10-07 15:17 . 2009-02-22 20:33 25888 ----a-w- c:\windows\system32\drivers\lirsgt.sys . ------- Sigcheck ------- [-] 2008-01-18 . E104414729F6D39F7C7EC07693E6DDA3 . 25088 . . [6.0.6000.16386] . . c:\windows\System32\userinit.exe [-] 2006-11-02 . 77139F6755CF7C7241FD2F35BEF67326 . 8704 . . [6.0.6000.16386] . . c:\windows\System32\CTFMON.EXE . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{7c5c0f58-e061-457d-9033-77307f5ed00c}"= "c:\program files\TorrentMan\tbTor1.dll" [2009-07-17 2215960] [HKEY_CLASSES_ROOT\clsid\{7c5c0f58-e061-457d-9033-77307f5ed00c}] [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}] 2008-12-09 16:40 333192 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7c5c0f58-e061-457d-9033-77307f5ed00c}] 2009-07-17 20:21 2215960 ----a-w- c:\program files\TorrentMan\tbTor1.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] 2009-04-01 17:16 193472 ------w- c:\program files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-12-09 333192] "{7c5c0f58-e061-457d-9033-77307f5ed00c}"= "c:\program files\TorrentMan\tbTor1.dll" [2009-07-17 2215960] [HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}] [HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}] [HKEY_CLASSES_ROOT\clsid\{7c5c0f58-e061-457d-9033-77307f5ed00c}] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{7C5C0F58-E061-457D-9033-77307F5ED00C}"= "c:\program files\TorrentMan\tbTor1.dll" [2009-07-17 2215960] "{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-12-09 333192] [HKEY_CLASSES_ROOT\clsid\{7c5c0f58-e061-457d-9033-77307f5ed00c}] [HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}] [HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-18 1233920] "GAINWARD"="c:\program files\EXPERTool\TBPanel.exe" [2008-10-21 2177576] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-01-15 147456] "MsnMsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-04-08 39408] "BitTorrent DNA"="c:\users\Name\Program Files\DNA\btdna.exe" [2009-10-07 323392] "RegistryMechanic"="c:\program files\Registry Mechanic\RMTray.exe" [2008-07-03 812952] "RGSC"="c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2009-03-24 306088] "IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2009-11-28 2606512] "AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2009-04-24 203928] "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200] "AdobeUpdater"="c:\program files\Common Files\Adobe\Updater5\AdobeUpdater.exe" [2008-09-26 2356088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RemoteControl8"="c:\program files\CyberLink\PowerDVD8\PDVD8Serv.exe" [2008-03-20 83240] "PDVD8LanguageShortcut"="c:\program files\CyberLink\PowerDVD8\Language\Language.exe" [2007-12-14 50472] "NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792] "amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824] "egui"="f:\eset\egui.exe" [2009-02-06 2021400] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-2820492086-4233630706-933203961-1000] "EnableNotificationsRef"=dword:00000001 R3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;d:\program files\DA O\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832] S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2009-02-06 106208] S2 16771;16771;c:\windows\System32\16771.sys [2009-01-28 4096] S2 ASKService;ASKService;c:\program files\AskBarDis\bar\bin\AskService.exe [2008-12-09 464264] S2 ASKUpgrade;ASKUpgrade;c:\program files\AskBarDis\bar\bin\ASKUpgrade.exe [2008-12-09 234888] S2 cpuz132;cpuz132;c:\windows\system32\drivers\cpuz132_x32.sys [2009-03-27 12672] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] yksvcs REG_MULTI_SZ yksvc . Contents of the 'Scheduled Tasks' folder 2010-01-01 c:\windows\Tasks\User_Feed_Synchronization-{6BA434EA-4D9F-4945-AC55-4338C174DB8A}.job - c:\windows\system32\msfeedssync.exe [2009-02-13 22:33] . . ------- Supplementary Scan ------- . uStart Page = hxxp://google.atcomet.com/ uSearchURL,(Default) = hxxp://g.msn.co.uk/0SEENWW/SAOS01?FORM=TOOLBR IE: &D&ownload &with BitComet - c:\program files\BitComet\BitComet.exe/AddLink.htm IE: &D&ownload all video with BitComet - c:\program files\BitComet\BitComet.exe/AddVideo.htm IE: &D&ownload all with BitComet - c:\program files\BitComet\BitComet.exe/AddAllLink.htm IE: Download all links with IDM - c:\program files\Internet Download Manager\IEGetAll.htm IE: Download FLV video content with IDM - c:\program files\Internet Download Manager\IEGetVL.htm IE: Download video with Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm IE: Download with IDM - c:\program files\Internet Download Manager\IEExt.htm IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html IE: Preuzmi odabrano Free Download Manager-om - file://c:\program files\Free Download Manager\dlselected.htm IE: Preuzmi sa Free Download Managerom - file://c:\program files\Free Download Manager\dllink.htm IE: Preuzmi sve sa Free Download Manager-om - file://c:\program files\Free Download Manager\dlall.htm IE: Save YouTube Video as MP3 - c:\program files\Common Files\DVDVideoSoft\Dll\IEContextMenuY.dll/scriptY2MP3.htm Trusted Zone: bitcomet Trusted Zone: quakelive.com\www TCP: {34814B22-ACC0-44D9-8FB4-1103A29FD54B} = 217.23.192.9 217.23.192.14 DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} - hxxps://www.battlefieldheroes.com/static/updater/BFHUpdater_4.0.21.0.cab . - - - - ORPHANS REMOVED - - - - Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) HKCU-Run-fsm - (no file) HKCU-Run-Steam - d:\program files\Steam\Steam.exe AddRemove-SpeedBit Video Accelerator - c:\program files\SpeedBit Video Accelerator\VARemove.exe AddRemove-{1DCC7418-2089-4BDD-B321-3771956160FC} - c:\program files\InstallShield Installation Information\{1DCC7418-2089-4BDD-B321-3771956160FC}\setup.exe AddRemove-{52D1D62C-FEAB-4580-849E-1DB624BADBBD} - c:\program files\InstallShield Installation Information\{52D1D62C-FEAB-4580-849E-1DB624BADBBD}\setup.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-01-01 18:22 Windows 6.0.6001 Service Pack 1 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... c:\users\Name\AppData\Local\Temp\catchme.dll 53248 bytes executable scan completed successfully hidden files: 1 ************************************************************************** [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\GarenaPEngine] "ImagePath"="\??\c:\users\Name\AppData\Local\Temp\MLE18FA.tmp" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\npggsvc] "ImagePath"="c:\windows\system32\GameMon.des -service" . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_USERS\S-1-5-21-2820492086-4233630706-933203961-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{8A4BF383-F4C1-6F89-36F4-2A36F3894F23}*] "bbofblppdfnjancfgcopklaepmghgmmljpge"=hex:67,61,6f,64,64,6f,62,63,70,6d,6f,67, 6d,6b,00,00 [HKEY_USERS\S-1-5-21-2820492086-4233630706-933203961-1000\Software\SecuROM\License information*] "datasecu"=hex:93,ee,4f,f2,fd,2f,3a,29,7d,2f,4a,3f,39,da,65,20,64,17,62,4e,41, df,4b,56,ee,d8,09,e4,fa,62,26,0a,d0,89,ba,5d,e2,41,46,ef,74,d2,f2,a8,98,c2,\ "rkeysecu"=hex:9a,1a,d0,fc,be,17,e1,f4,95,92,ac,1f,b2,a6,71,0e . Completion time: 2010-01-01 18:23:46 ComboFix-quarantined-files.txt 2010-01-01 17:23 ComboFix2.txt 2009-07-01 11:07 Pre-Run: 16.931.762.176 bytes free Post-Run: 20.709.007.360 bytes free - - End Of File - - FC6BAA2B99822EC7B94F5FB4DDCD81CC there also Idk if its important but first 2 times I tryed runing it it said data error 2010 but the 3 time ran normaly also it disabled my emulation drives so will I be able to eneble them sometimes and how? EDIT:After scaning with combofix my computer has gone psycho I cant watch videos on youtube and I cant check my mail is that because of combofix or is something strange happening. Also i cant search anything on google and I have combofix on C:/combofix and it has shortcut of my computer wtf is that
  4. I just noticed something VC++ 2005 and VC++2005 sevice pack 1 for vista 32 bit are the same size!!!Why is that? hmmmm but also version that you posted is 300 kb smaller than which I had my version installs also I managed installing service pack 1 but I still cant start those games that means my version is fake and your is real one
  5. Maybe he's thinking since he hasn't replyed yet
  6. No that is old too well I can try all those steps again and report back
  7. You have already tryed everything about error code 80070002 and nothing worked maybe you dont remember but you did and again everything gets back to that damm Windows update VIsta I cant upgrade to WIN 7 because other error omg my comp is so ****ed up
  8. My OS is 32 bit Also a non related question is there a way to reinstall windows update cause nothing works to fix it?
  9. argahahagha I uninstalled 2008 c++ and there wasn't visual 2005 c++ I again got the same error when I tryed installing it and got another error when I tryed to install 2008 c++ package . Both of them are x86
  10. I tryed it before or something similar here is what happenes when I try to Install it
  11. Ok im sorry to ask this but can someone tell me what to do when I get this message Failed to start because your side-by-side configuration is incorect.What dose it mean? I get this message when I start Dragon Age:Origins,Borderlands and Battleforge. Plz help I think more and more games will do this
  12. I didn't get any licence cod?? Scan with new version: Malwarebytes' Anti-Malware 1.44 Database version: 3539 Windows 6.0.6001 Service Pack 1 Internet Explorer 7.0.6001.18000 21.12.2009 20:03:34 mbam-log-2009-12-21 (20-03-34).txt Scan type: Quick Scan Objects scanned: 105769 Time elapsed: 8 minute(s), 15 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected)
  13. Here are logs if they can help I didn't manage to do that last scan with that random called thing my computer always stops working when it scans so I couldn't get the log First file from DDS === Installed Programs ====================== Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader 8.1.3 Adobe Shockwave Player 11.5 ASUSDVD DDS.zip
  14. hmmm so logs are needed for this problem with update menager ok
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.