Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

In a Bot-Network!?


  • Please log in to reply
4 replies to this topic

#1 Pajajn

Pajajn

  • Members
  • 368 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:127.0.0.1
  • Local time:08:54 AM

Posted 20 October 2011 - 02:15 PM

Hello everyone, i didnt know where to post this but i hope i will get some help even :/
Short explanation

Torrent site -> Network stops to respond & even does 192.168.2.1.
When removed router cable and plugged in again 192.168.2.1 works and showing this :
Posted Image

My ip adress changed to this :
Posted Image
IP : 169.254.114.179 Neighborhood
Host : ?
Country : United States


Router Firewall log:
http://data.fuskbugg.se/skalman02/a259686d_log.png

Those adresses in firewall log goes to
China
Netherlands
United States


Im behind a Comodo Firewall btw on my local computer
Any solutions?! please help

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,492 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:54 AM

Posted 20 October 2011 - 02:31 PM

Lets check for Bots and/or Backdoors.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware and save it to your desktop.
Download Link 1
Download Link 2MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application.
    For instructions with screenshots, please refer to the How to use Malwarebytes' Anti-Malware Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
  • Make sure the "Perform Quick Scan" option is selected.
  • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen:
  • Click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.

Troubleshoot Malwarebytes' Anti-Malware
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Pajajn

Pajajn
  • Topic Starter

  • Members
  • 368 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:127.0.0.1
  • Local time:08:54 AM

Posted 21 October 2011 - 02:28 PM

MiniToolBox by Farbar
Ran by Removed (administrator) on 21-10-2011 at 21:21:38
Microsoft Windows XP Service Pack 3 (X86)

***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
255.255.255.255 easyanticheat.se 255.255.255.255 www.easyanticheat.se 255.255.255.255 easyanticheat.com 255.255.255.255 www.easyanticheat.com 255.255.255.255 easyanticheat.org 255.255.255.255 www.easyanticheat.org

127.0.0.1 localhost

========================= IP Configuration: ================================

# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

# Interface IP Configuration for "Wireless Network Connection 4"

set address name="Wireless Network Connection 4" source=dhcp
set dns name="Wireless Network Connection 4" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection 4" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : gaming-4c42427f

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : Belkin



Ethernet adapter Local Area Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller

Physical Address. . . . . . . . . : 6C-62-6D-99-FC-7C



Ethernet adapter Wireless Network Connection 4:



Connection-specific DNS Suffix . : Belkin

Description . . . . . . . . . . . : Belkin Wireless G Plus MIMO USB Network Adapter

Physical Address. . . . . . . . . : 00-17-3F-EA-0D-5D

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.2.2

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.2.1

DHCP Server . . . . . . . . . . . : 192.168.2.1

DNS Servers . . . . . . . . . . . : 192.168.2.1

Lease Obtained. . . . . . . . . . : den 21 oktober 2011 10:27:51

Lease Expires . . . . . . . . . . : den 20 oktober 2012 10:27:51

Server: wl.Belkin
Address: 192.168.2.1

Name: google.com
Addresses: 173.194.32.19, 173.194.32.20, 173.194.32.16, 173.194.32.17
173.194.32.18



Pinging google.com [173.194.32.18] with 32 bytes of data:



Reply from 173.194.32.18: bytes=32 time=29ms TTL=51

Reply from 173.194.32.18: bytes=32 time=33ms TTL=51



Ping statistics for 173.194.32.18:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 29ms, Maximum = 33ms, Average = 31ms

Server: wl.Belkin
Address: 192.168.2.1

Name: yahoo.com
Addresses: 209.191.122.70, 67.195.160.76, 72.30.2.43, 98.137.149.56
98.139.180.149



Pinging yahoo.com [98.139.180.149] with 32 bytes of data:



Reply from 98.139.180.149: bytes=32 time=173ms TTL=46

Reply from 98.139.180.149: bytes=32 time=156ms TTL=46



Ping statistics for 98.139.180.149:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 156ms, Maximum = 173ms, Average = 164ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Reply from 127.0.0.1: bytes=32 time<1ms TTL=64



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...6c 62 6d 99 fc 7c ...... Realtek PCIe GBE Family Controller
0x10004 ...00 17 3f ea 0d 5d ...... Belkin Wireless G Plus MIMO USB Network Adapter - StreamSurge Driver (miniport)
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.2 25
95.27.153.250 255.255.255.255 192.168.2.1 192.168.2.2 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.2.0 255.255.255.0 192.168.2.2 192.168.2.2 25
192.168.2.2 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.2.255 255.255.255.255 192.168.2.2 192.168.2.2 25
224.0.0.0 240.0.0.0 192.168.2.2 192.168.2.2 25
255.255.255.255 255.255.255.255 192.168.2.2 10003 1
255.255.255.255 255.255.255.255 192.168.2.2 192.168.2.2 1
Default Gateway: 192.168.2.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/20/2011 06:36:01 PM) (Source: Application Error) (User: )
Description: Faulting application belkinwcui.exe, version 2.0.0.31, faulting module unknown, version 0.0.0.0, fault address 0x00000001.
Processing media-specific event for [belkinwcui.exe!ws!]

Error: (10/16/2011 05:35:58 AM) (Source: Application Error) (User: )
Description: Faulting application belkinwcui.exe, version 2.0.0.31, faulting module unknown, version 0.0.0.0, fault address 0x00000001.
Processing media-specific event for [belkinwcui.exe!ws!]

Error: (10/15/2011 04:39:30 PM) (Source: Application Error) (User: )
Description: Faulting application belkinwcui.exe, version 2.0.0.31, faulting module unknown, version 0.0.0.0, fault address 0x00000001.
Processing media-specific event for [belkinwcui.exe!ws!]

Error: (10/15/2011 04:39:19 PM) (Source: Application Error) (User: )
Description: Faulting application belkinwcui.exe, version 2.0.0.31, faulting module belkinwcui.exe, version 2.0.0.31, fault address 0x0003b529.
Processing media-specific event for [belkinwcui.exe!ws!]

Error: (10/15/2011 00:47:47 PM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown

Error: (10/13/2011 09:58:57 AM) (Source: MsiInstaller) (User: Removed)Removed
Description: Product: Picture Collage Maker Pro -- Error 1704. An installation for Skype™ 5.5 is currently suspended. You must undo the changes made by that installation to continue. Do you want to undo those changes?(NULL)(NULL)(NULL)(NULL)

Error: (10/13/2011 09:51:20 AM) (Source: MsiInstaller) (User: Removed)Removed
Description: Product: Picture Collage Maker Pro -- Error 1704. An installation for Skype™ 5.5 is currently suspended. You must undo the changes made by that installation to continue. Do you want to undo those changes?(NULL)(NULL)(NULL)(NULL)

Error: (09/28/2011 07:38:04 PM) (Source: Application Error) (User: )
Description: Faulting application superantispyware.exe, version 5.0.0.1128, faulting module superantispyware.exe, version 5.0.0.1128, fault address 0x00071348.
Processing media-specific event for [superantispyware.exe!ws!]

Error: (09/28/2011 04:42:54 PM) (Source: Application Error) (User: )
Description: Faulting application rootkitbuster.exe, version 3.60.0.1016, faulting module tmrkscan.dll, version 3.60.0.1016, fault address 0x0002723d.
Processing media-specific event for [rootkitbuster.exe!ws!]

Error: (09/28/2011 04:37:04 PM) (Source: Application Error) (User: )
Description: Faulting application rootkitbuster.exe, version 3.60.0.1016, faulting module tmrkscan.dll, version 3.60.0.1016, fault address 0x0002723d.
Processing media-specific event for [rootkitbuster.exe!ws!]


System errors:
=============
Error: (10/21/2011 10:27:48 AM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.0.16 for the Network Card with network address 00173FEA0D5D has been
denied by the DHCP server 192.168.2.1 (The DHCP Server sent a DHCPNACK message).

Error: (10/20/2011 08:55:35 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.2.4 for the Network Card with network address 00173FEA0D5D has been
denied by the DHCP server 192.168.2.1 (The DHCP Server sent a DHCPNACK message).

Error: (10/20/2011 09:35:22 AM) (Source: DCOM) (User: Removed)
Description: DCOM got error "%%1055" attempting to start the service netman with arguments ""
in order to run the server:
{BA126AE5-2166-11D1-B1D0-00805FC1270E}

Error: (10/20/2011 09:35:22 AM) (Source: DCOM) (User: SYSTEM)
Description: DCOM got error "%%1055" attempting to start the service winmgmt with arguments ""
in order to run the server:
{8BC3F05E-D86B-11D0-A075-00C04FB68820}

Error: (10/17/2011 08:52:15 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.2.2 for the Network Card with network address 00173FEA0D5D has been
denied by the DHCP server 192.168.2.1 (The DHCP Server sent a DHCPNACK message).

Error: (10/15/2011 10:22:00 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.2.2 for the Network Card with network address 00173FEA0D5D has been
denied by the DHCP server 192.168.2.1 (The DHCP Server sent a DHCPNACK message).

Error: (10/15/2011 04:39:27 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.0.16 for the Network Card with network address 00173FEA0D5D has been
denied by the DHCP server 192.168.2.1 (The DHCP Server sent a DHCPNACK message).

Error: (10/15/2011 04:37:33 PM) (Source: DCOM) (User: Removed)
Description: DCOM got error "%%1058" attempting to start the service wuauserv with arguments ""
in order to run the server:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (10/15/2011 01:56:05 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.0.14 for the Network Card with network address 001F1F55EB8A has been
denied by the DHCP server 192.168.2.1 (The DHCP Server sent a DHCPNACK message).

Error: (10/12/2011 01:52:23 PM) (Source: Service Control Manager) (User: )
Description: The Security Center service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (10/20/2011 06:36:01 PM) (Source: Application Error)(User: )
Description: belkinwcui.exe2.0.0.31unknown0.0.0.000000001

Error: (10/16/2011 05:35:58 AM) (Source: Application Error)(User: )
Description: belkinwcui.exe2.0.0.31unknown0.0.0.000000001

Error: (10/15/2011 04:39:30 PM) (Source: Application Error)(User: )
Description: belkinwcui.exe2.0.0.31unknown0.0.0.000000001

Error: (10/15/2011 04:39:19 PM) (Source: Application Error)(User: )
Description: belkinwcui.exe2.0.0.31belkinwcui.exe2.0.0.310003b529

Error: (10/15/2011 00:47:47 PM) (Source: .NET Runtime Optimization Service)(User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown

Error: (10/13/2011 09:58:57 AM) (Source: MsiInstaller)(User: Removed)Removed
Description: Product: Picture Collage Maker Pro -- Error 1704. An installation for Skype™ 5.5 is currently suspended. You must undo the changes made by that installation to continue. Do you want to undo those changes?(NULL)(NULL)(NULL)(NULL)

Error: (10/13/2011 09:51:20 AM) (Source: MsiInstaller)(User: Removed)Removed
Description: Product: Picture Collage Maker Pro -- Error 1704. An installation for Skype™ 5.5 is currently suspended. You must undo the changes made by that installation to continue. Do you want to undo those changes?(NULL)(NULL)(NULL)(NULL)

Error: (09/28/2011 07:38:04 PM) (Source: Application Error)(User: )
Description: superantispyware.exe5.0.0.1128superantispyware.exe5.0.0.112800071348

Error: (09/28/2011 04:42:54 PM) (Source: Application Error)(User: )
Description: rootkitbuster.exe3.60.0.1016tmrkscan.dll3.60.0.10160002723d

Error: (09/28/2011 04:37:04 PM) (Source: Application Error)(User: )
Description: rootkitbuster.exe3.60.0.1016tmrkscan.dll3.60.0.10160002723d


=========================== Installed Programs ============================

AC3Filter 1.63b (Version: 1.63b)
Allods Online 1.1.04.44 (Version: 1.1.04.44)
µTorrent (Version: 3.0.0)
Audacity 1.2.6
AviSynth 2.5
Battlefield: Bad Company™ 2 (Version: 1.0.0.0)
Belkin Wireless G Plus MIMO USB Network Adapter
Boilsoft Video Splitter 6.32
Call of Duty Modern Warfare 2
CCleaner (remove only) (Version: 2.29)
Combined Community Codec Pack 2010-10-10 (Version: 2010.10.10.0)
COMODO Internet Security (Version: 5.4.58750.1355)
Counter-Strike
Counter-Strike™ (Version: 1.0.0.0)
Crysis® 2 (Version: 1.0.0.0)
Defraggler (Version: 2.00)
DFX for Windows Media Player (Version: 9.303.0.0)
Drivrutiner till Logitech® Camera
Dungeon Siege
DustBuster XP (Version: 2.8.0.1)
DVD Flick 1.3.0.7 (Version: 1.3.0.7)
Eusing Free Registry Cleaner
Express Burn Disc Burning Software
ffdshow [rev 3222] [2010-01-23] (Version: 1.0.0.3222)
Fraps
Game Booster (Version: 1.1.0.0)
High Definition Audio Driver Package - KB888111 (Version: 20040219.000000)
HiJackThis (Version: 1.0.0)
Hitman Pro 3.5 (Version: 3.5.9.130)
Image Resizer Powertoy for Windows XP (Version: 1.00.0001)
Java™ 6 Update 5 (Version: 1.6.0.50)
Lagarith Lossless Codec (1.3.24)
LEGO® Pirates of the Caribbean The Video Game (Version: 1.0.0.0)
Logitech QuickCam Software (Version: 8.47.0000)
MagicDisc 2.7.106
Malwarebytes' Anti-Malware version 1.51.0.1200 (Version: 1.51.0.1200)
Microsoft .NET Framework 3.0 Service Pack 1 (Version: 3.1.21022)
Microsoft .NET Framework 3.5
Microsoft .NET Framework 3.5 (Version: 3.5.21022)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Help Viewer 1.0 (Version: 1.0.30319)
Microsoft Help Viewer 1.0 Language Pack - DEU (Version: 1.0.30319)
Microsoft Silverlight (Version: 4.0.60129.0)
Microsoft SQL Server Compact 3.5 SP2 DEU (Version: 3.5.8080.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2010 Express - DEU (Version: 10.0.30319)
Mozilla Firefox (3.5.11) (Version: 3.5.11 (sv-SE))
MSVCRT (Version: 14.0.1468.721)
MSXML 6.0 Parser (KB925673) (Version: 6.00.3888.0)
NVIDIA Control Panel 261.01 (Version: 261.01)
NVIDIA Graphics Driver 261.01 (Version: 261.01)
NVIDIA Install Application (Version: 2.0.14.0)
NVIDIA nView Desktop Manager (Version: 6.14.10.13065)
NVIDIA PhysX (Version: 9.10.0514)
QuickTime (Version: 7.50.61.0)
REALTEK GbE & FE Ethernet PCI-E NIC Driver (Version: 1.30.0000)
Realtek High Definition Audio Driver (Version: 5.10.0.6151)
Revo Uninstaller 1.93 (Version: 1.93)
RocketDock 1.3.5
SAMSUNG Mobile Composite Device Software
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung PC Studio 3 (Version: 3.0.0.80301)
Samsung PC Studio 3 (Version: 3.2.1.80301)
Samsung Samples Installer (Version: 1.00.0000)
Sandboxie 3.46
Segoe UI (Version: 14.0.4327.805)
Sony Vegas Pro 8.0 (Version: 8.0.179)
Spotify (Version: 0.5.2)
Startup Manager 2.4.2 (Version: 2.4.2)
Steam™ (Version: 1.0.0.0)
Switch Sound File Converter
Total Video Converter 3.10
Tweak UI
Unlocker 1.8.5 (Version: 1.8.5)
User Profile Hive Cleanup Service (Version: 1.6.36)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Presentation Foundation (Version: 3.0.6920.0)
WinRAR archiver
VLC media player 1.0.3 (Version: 1.0.3)
XML Paper Specification Shared Components Language Pack 1.0
XML Paper Specification Shared Components Pack 1.0

========================= Memory info: ===================================

Percentage of memory in use: 18%
Total physical RAM: 3327.1 MB
Available physical RAM: 2705.25 MB
Total Pagefile: 5211.29 MB
Available Pagefile: 4447.2 MB
Total Virtual: 2047.88 MB
Available Virtual: 1984.73 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:931.5 GB) (Free:588.56 GB) NTFS

========================= Users: ========================================

User accounts for \\GAMING-4C42427F

Administrator ASPNET Guest
HelpAssistant Removed SUPPORT_388945a0

========================= Minidump Files ==================================

No minidump file found

**** End of log ****

Edited by Orange Blossom, 25 November 2012 - 10:56 PM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,492 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:54 AM

Posted 21 October 2011 - 08:21 PM

No MBAM scan?
Do you use easyanticheat?

I would remove this.. Eusing Free Registry Cleaner


Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u1-windows-i586-s.exe (or jre-7u1-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Pajajn

Pajajn
  • Topic Starter

  • Members
  • 368 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:127.0.0.1
  • Local time:08:54 AM

Posted 24 October 2011 - 03:58 AM

The Malwarebyte scan didnt came up with something, sorry for the delay but had to go to relatives and grandpah.. :/

Ive updated my Flashplayer to from like 2009 to 11
Yes i use EasyAntiCheat - EAC3 when i play counter-strike to play on clean servers without any cheaters , www.playnation.se

Windows x86 is the only version i could find near my OS..
Windows XP Service Pack 3 32bit i use

Eusing Free Registry Cleaner, ive used it and looked into the detailed key log of what it finds/removes
and everything looks fine but i use Revo Uninstaller from now on (is it okay?)

Edited by Pajajn, 24 October 2011 - 03:59 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users