We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
hijack this help please
Comments
-
just had time for a quick scan - no problems
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Database version: 4525
Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702
02/09/2010 07:05:49
mbam-log-2010-09-02 (07-05-49).txt
Scan type: Quick scan
Objects scanned: 150111
Time elapsed: 15 minute(s), 13 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)0 -
Something dodgy is still running on your computer
Uninstall anything NORTON related
Then use the NORTON REMOVAL TOOL
http://majorgeeks.com/downloadget.php?id=4749&file=9&evp=242a1882161556089131482b8e4a8e42
Download CCLEANER
http://www.piriform.com/ccleaner/download/slim
Run the CLEANER scan (UNTICK 'cookies')
Then run the REGISTRY scan (Backup the registry when it asks)
TICK and FIX this (If it still exists) ~
O4 - HKLM\..\Run: [SymNRT] "C:\DOCUME~1\CHRIST~1\LOCALS~1\Temp\7zSB.tmp\SymNR T.exe" /unrun
When you can, update malwarebytes and run another FULL scan (As I said, something is still on the computer somewhere)
Post that log (Even if clean)
then ~
Please run COMBOFIX
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Shut down your anti virus
Follow the simple instructions it gives
Post the COMPLETE log it creates here (Split into sections if need be) ~ if there are loads of 'SNAPSHOT' pages then leave them out
If it comes up with a RENAMING error then RIGHT click the exe file and RENAME and call it QWERTY (Making the complete file name 'QWERTY.exe') Or SAVE as 'QWERTY' on download
(If no log comes up or you lose it, COMBOFIX.TXT can be found in C drive):idea:0 -
Thank you, I've updated the MAlwarebytes before the last quick scan but have left it running a full scan - so I should be able to access the log for that when I get home this evening - I deleted everything Norton related yesterday that I knew of and ran the Norton removal tool but I'll double check that later.
Thank you for helping me!0 -
here's the latest Malwarebytes scan i'll just get on to everything else now
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Database version: 4525
Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702
02/09/2010 09:25:40
mbam-log-2010-09-02 (09-25-40).txt
Scan type: Full scan (C:\|D:\|G:\|)
Objects scanned: 288572
Time elapsed: 2 hour(s), 12 minute(s), 38 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)0 -
ComboFix 10-09-01.04 - christopher 02/09/2010 18:42:17.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.44.1033.18.503.287 [GMT 1:00]
Running from: c:\documents and settings\christopher\My Documents\QWERTY.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\docume~1\CHRIST~1\LOCALS~1\Temp\install_flash_player.exe
c:\documents and settings\christopher\err.log
c:\documents and settings\christopher\ResErrors.log
\Autorun.inf
.
((((((((((((((((((((((((( Files Created from 2010-08-02 to 2010-09-02 )))))))))))))))))))))))))))))))
.
2010-09-02 17:27 . 2010-09-02 17:27
d
w- c:\program files\CCleaner
2010-09-01 17:48 . 2010-09-01 17:48 388096 ----a-r- c:\documents and settings\christopher\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2010-09-01 17:48 . 2010-09-01 17:48
d
w- c:\program files\Trend Micro
2010-08-31 14:17 . 2010-08-31 14:17
d
w- c:\documents and settings\christopher\Local Settings\Application Data\Unity
2010-08-29 20:11 . 2010-08-29 20:14
d
w- c:\program files\10 Days Under The Sea
2010-08-29 20:11 . 2010-08-29 20:11
d
w- c:\windows\10 Days Under The Sea
2010-08-27 18:59 . 2010-08-27 18:59
d
w- c:\program files\Utherverse Digital Inc
2010-08-25 21:53 . 2010-08-25 21:53
d
w- c:\documents and settings\All Users\Application Data\Alawar Stargaze
2010-08-25 20:49 . 2010-08-25 20:49
d
w- c:\documents and settings\christopher\Application Data\Merscom
2010-08-25 20:49 . 2010-08-25 20:49
d
w- c:\documents and settings\All Users\Application Data\Merscom
2010-08-23 21:42 . 2010-08-25 21:17
d
w- c:\program files\MasqueradeMysteries_at
2010-08-21 23:04 . 2010-08-21 23:04
d
w- c:\documents and settings\christopher\Application Data\PopCapv1000
2010-08-21 22:42 . 2010-08-21 22:42
d
w- c:\documents and settings\All Users\Application Data\PopCap Games
2010-08-21 22:41 . 2010-08-22 00:04 18 ----a-w- c:\windows\popcinfot.dat
2010-08-21 22:41 . 2010-08-21 22:41
d
w- c:\program files\PopCap Games
2010-08-21 22:41 . 2010-08-21 22:41 0 ----a-w- c:\windows\popcreg.dat
2010-08-20 23:33 . 2010-08-20 23:34
d
w- c:\documents and settings\christopher\Application Data\SecretIslandEng
2010-08-20 23:29 . 2010-08-20 23:29
d
w- c:\documents and settings\christopher\Local Settings\Application Data\Conduit
2010-08-20 23:29 . 2010-08-21 00:41
d
w- c:\documents and settings\christopher\Local Settings\Application Data\Alawar.com
2010-08-20 23:29 . 2010-08-20 23:29
d
w- c:\program files\Conduit
2010-08-20 23:29 . 2010-09-01 20:45
d
w- c:\program files\Alawar.com
2010-08-20 23:29 . 2010-08-20 23:29
d
w- C:\My Games
2010-08-20 23:29 . 2010-08-20 23:29
d
w- c:\documents and settings\All Users\Application Data\AlawarGameBox
2010-08-20 23:29 . 2010-08-25 21:52
d
w- c:\documents and settings\All Users\Application Data\AlawarWrapper
2010-08-20 23:28 . 2010-08-23 21:42
d
w- c:\program files\Alawar
2010-08-04 19:40 . 2010-08-04 19:40
d
w- c:\documents and settings\All Users\Application Data\AdventureChronicles1
2010-08-04 19:38 . 2010-08-04 19:38
d
w- c:\windows\Adventure Chronicles
2010-08-04 19:37 . 2010-08-04 19:37
d
w- c:\documents and settings\All Users\Application Data\Avanquest Software
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-02 17:14 . 2005-02-12 11:55
d
w- c:\program files\Common Files\Symantec Shared
2010-09-01 23:22 . 2010-05-05 12:50
d
w- c:\documents and settings\All Users\Application Data\Norton
2010-09-01 20:45 . 2007-01-01 15:22
d
w- c:\program files\Spybot - Search & Destroy
2010-08-25 21:15 . 2007-11-07 19:15
d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-08-25 21:07 . 2006-11-27 20:31
d
w- c:\program files\Hasbro Interactive
2010-08-14 19:22 . 2005-02-12 14:04 16590 ----a-w- c:\documents and settings\christopher\Application Data\wklnhst.dat
2010-08-03 15:06 . 2010-08-03 11:59
d
w- c:\program files\THQ
2010-08-03 15:06 . 2004-12-14 02:43
d--h--w- c:\program files\InstallShield Installation Information
2010-08-03 15:03 . 2005-12-23 18:24 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-07-30 15:23 . 2010-07-30 15:23
d
w- c:\documents and settings\christopher\Application Data\MightyPlay
2010-07-30 15:23 . 2010-07-30 15:23
d
w- c:\documents and settings\All Users\Application Data\MightyPlay
2010-07-22 21:28 . 2010-07-20 19:39
d
w- c:\program files\bfgclient
2010-07-22 21:27 . 2010-07-22 21:27 3085800 ----a-w- c:\documents and settings\All Users\Application Data\BigFishGamesCache\Upgrade\Unpack\bfgsetup_s1_l1.exe
2010-07-22 21:27 . 2010-07-20 19:39
d
w- c:\documents and settings\All Users\Application Data\BigFishGamesCache
2010-07-13 08:21 . 2010-05-01 23:12 57344 ----a-w- c:\documents and settings\All Users\Application Data\DivX\RunAsUser\RUNASUSERPROCESS.dll
2010-07-13 08:21 . 2010-05-01 23:07
d
w- c:\documents and settings\All Users\Application Data\DivX
2010-07-13 08:18 . 2010-07-13 08:18 56765 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DivXPlusShortcuts\Uninstaller.exe
2010-07-13 08:18 . 2010-05-01 22:57
d
w- c:\program files\DivX
2010-07-13 08:18 . 2010-07-13 08:18 57715 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Player\Uninstaller.exe
2010-07-13 08:17 . 2010-07-13 08:17 54153 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DFXPlugin\Uninstaller.exe
2010-07-13 08:17 . 2010-05-01 23:10 1062184 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Setup\Resource.dll
2010-07-13 08:16 . 2010-05-01 23:10 895256 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Setup\DivXSetup.exe
2010-07-10 22:08 . 2010-07-10 22:08 126976 ----a-w- c:\windows\system32\UAService7.exe
2010-07-10 07:20 . 2010-07-10 07:20
d
w- c:\program files\SEGA
2010-07-10 07:18 . 2010-07-10 07:18
d
w- c:\documents and settings\christopher\Application Data\InstallShield
2010-06-14 14:30 . 2004-09-06 16:52 743936 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2010-06-10 22:00 . 2010-06-10 22:00 143360 ----a-w- c:\documents and settings\All Users\Application Data\BigFishGamesCache\Upgrade\stub\mystery-case-files-prime-suspects_s1_l1_gF930T1L1_d968713514[1].exe
2005-02-12 12:43 . 2005-02-12 12:43 0 -csha-w- c:\windows\SMINST\HPCD.sys
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-05-06 2815192]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2004-01-29 155648]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2002-09-13 212992]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360]
path=
backup=
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup
backupExtension=Common Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^BigFix.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\BigFix.lnk
backup=c:\windows\pss\BigFix.lnkCommon Startup
backupExtension=Common Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Kodak EasyShare software.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Kodak EasyShare software.lnk
backup=c:\windows\pss\Kodak EasyShare software.lnkCommon Startup
backupExtension=Common Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
backupExtension=Common Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Norton GoBack.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Norton GoBack.lnk
backup=c:\windows\pss\Norton GoBack.lnkCommon Startup
backupExtension=Common Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast5]
2010-05-06 20:59 2815192 ----a-w- c:\progra~1\ALWILS~1\Avast5\AvastUI.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CHotkey]
2004-05-17 18:30 543232 ----a-w- c:\windows\zHotkey.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DACSMiniApp]
2008-03-13 11:05 128256 ----a-w- c:\program files\Fisher-Price\DACS\MiniApp\DACSMiniApp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2010-06-03 00:50 1144104 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2010-02-18 10:43 248040 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunKistEM]
2004-10-18 14:05 135168 ----a-w- c:\program files\Digital Media Reader\shwiconEM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2010-04-23 23:00 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\zHotkey]
2004-05-17 18:30 543232 ----a-w- c:\windows\zHotkey.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"SLService"=2 (0x2)
"sp_rssrv"=2 (0x2)
"LexBceS"=2 (0x2)
"iPod Service"=3 (0x3)
"gusvc"=3 (0x3)
"Bonjour Service"=2 (0x2)
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Documents and Settings\\christopher\\Desktop\\BitComet\\BitComet.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"16607:TCP"= 16607:TCP:BitComet 16607 TCP
"16607:UDP"= 16607:UDP:BitComet 16607 UDP
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [15/06/2010 22:32 164048]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [15/06/2010 22:32 19024]
R2 GenPort;GenPort;c:\windows\system32\drivers\genport.sys [15/02/2005 13:23 4832]
R2 MapMem;MapMem;c:\windows\system32\drivers\MAPMEM.SYS [15/02/2005 13:23 6816]
R2 NTRemap;NTRemap;c:\windows\system32\drivers\NTREMAP.SYS [15/02/2005 13:23 6336]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [24/04/2010 10:37 135664]
S3 jatmlano;jatmlano;\??\c:\docume~1\CHRIST~1\LOCALS~1\Temp\jatmlano.sys --> c:\docume~1\CHRIST~1\LOCALS~1\Temp\jatmlano.sys [?]
S3 RTLWUSB;NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter NT Driver;c:\windows\system32\DRIVERS\wg111v2.sys --> c:\windows\system32\DRIVERS\wg111v2.sys [?]
.
Contents of the 'Scheduled Tasks' folder
2010-09-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-24 09:37]
2010-09-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-24 09:37]
2010-09-02 c:\windows\Tasks\RegCure Program Check.job
- g:\program files\RegCure\RegCure.exe [2008-11-27 18:55]
2010-09-02 c:\windows\Tasks\RegCure.job
- g:\program files\RegCure\RegCure.exe [2008-11-27 18:55]
2010-09-02 c:\windows\Tasks\User_Feed_Synchronization-{B27DC0C0-CA4A-49EB-97E0-7183153AEFAE}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 03:31]
.
.
Supplementary Scan
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Connection Wizard,ShellNext = hxxp://www.microsoft.com
uInternet Settings,ProxyOverride = <local>
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
DPF: Microsoft XML Parser for Java - [URL]file://c:\windows\Java\classes\xmldso.cab[/URL]
.
- - - - ORPHANS REMOVED - - - -
Toolbar-Locked - (no file)
WebBrowser-{511131F1-4629-4254-A85F-ED7B6D75DD3C} - (no file)
Notify-WgaLogon - (no file)
MSConfigStartUp-Adobe Photo Downloader - c:\program files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
MSConfigStartUp-BitTorrent DNA - c:\program files\DNA\btdna.exe
MSConfigStartUp-PAS_Check - c:\program files\Common Files\DriveCleaner Free\udcpas.exe
MSConfigStartUp-PcSync - c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe
MSConfigStartUp-RemoteControl - c:\program files\CyberLink\PowerDVD\PDVDServ.exe
MSConfigStartUp-SDR6_Check - c:\program files\Common Files\DriveCleaner Free\udcsdr.exe
MSConfigStartUp-SpywareTerminator - c:\program files\Spyware Terminator\SpywareTerminatorShield.exe
AddRemove-Blade & Sword - c:\program files\Pixelgame\Blade & Sword\Uninst.isu
AddRemove-ComandoDeinstKey - c:\program files\Eidos Interactive\Pyro\Commandos\DeIsL1.isu
AddRemove-Delta Force - c:\program files\NovaLogic\Delta Force\Uninst.isu
AddRemove-IncubationDeinstall - c:\bluebyte\Incubation\DeIsL1.isu
AddRemove-Medieval Total War - c:\program files\Total War\Medieval - Total War\Uninst.isu
AddRemove-Thief2DeinstallKey - c:\program files\Thief2\lglass.u
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-09-02 18:51
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
LOCKED REGISTRY KEYS
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe,-101"
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe"
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Completion time: 2010-09-02 18:57:12
ComboFix-quarantined-files.txt 2010-09-02 17:57
Pre-Run: 17,641,172,992 bytes free
Post-Run: 18,980,597,760 bytes free
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
- - End Of File - - 8E502ACEBB317AECBAAA835D276807C80 -
Id advise removing everything thats ~
POPCAP GAMES
BIG FISH GAMES
related:idea:0 -
Hi we use Big fish games all the time, is there anything else we should do. Thanks for taking the time to look at this for me. x0
-
Give it a clean (If you wish) and your good to go
Download CCLEANER
http://www.piriform.com/ccleaner/download/slim
Run the CLEANER scan (UNTICK 'cookies')
Then run the REGISTRY scan (Backup the registry when it asks):idea:0 -
Thank you, you are a star xx0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 352.3K Banking & Borrowing
- 253.6K Reduce Debt & Boost Income
- 454.3K Spending & Discounts
- 245.3K Work, Benefits & Business
- 601K Mortgages, Homes & Bills
- 177.5K Life & Family
- 259.1K Travel & Transport
- 1.5M Hobbies & Leisure
- 16K Discuss & Feedback
- 37.7K Read-Only Boards