[Got Infected,It's more serious than i thought!]

I can't access folders,anything,anyway,i sent my pc to a friend to format it

[Got Infected,It's more serious than i thought!]

Same thing!

[Got Infected,It's more serious than i thought!]

There is no system restore.....there isn't even windows.No run,no search,no nothing.I can't start the system restore.

[Got Infected,It's more serious than i thought!]

The program destroyed my pc.After reboot all my files became with the extension.link and even changing it won't do anyrhing,it shows only one folder with it's normal form but it can't open it.the only program that isavailable it's internet explorer and that closes 2sec after execution.Please help!!!

[Got Infected,It's more serious than i thought!]

Here is what i got!

AdwCleanerR1.txt

[Got Infected,It's more serious than i thought!]

Here it is the combofix report !

After finishing combofix made a seperate log.txt i don't know whether it's a different one

ComboFix.txt

[Got Infected,It's more serious than i thought!]

2 times checked the pc,same malware found and deleted,they keep spawning even after they get deleted!

mbar-log-2013-02-04 (17-16-15).txt

system-log.txt

mbar-log-2013-02-04 (16-48-42).txt

[Got Infected,It's more serious than i thought!]

I uninstalled the called programs and scanned my pc with roguekiller.

Here is the report :

RogueKiller V8.4.4 [Feb 4 2013] by Tigzy

mail : tigzyRK<at>gmail<dot>com

Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/

Website : http://tigzy.geekstogo.com/roguekiller.php

Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version

Started in : Normal mode

User : Administrator [Admin rights]

Mode : Scan -- Date : 02/04/2013 16:03:58

| ARK || MBR |

¤¤¤ Bad processes : 2 ¤¤¤

[DLL] explorer.exe -- C:\WINDOWS\explorer.exe : C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlchrome10browserrecordhelper.dll -> UNLOADED

[sUSP PATH] win30.exe -- C:\WINDOWS\win30.exe -> KILLED [TermProc]

¤¤¤ Registry Entries : 13 ¤¤¤

[RUN][sUSP PATH] HKCU\[...]\Run : win30.exe (C:\WINDOWS\win30.exe) -> FOUND

[RUN][sUSP PATH] HKLM\[...]\Run : Gainward (C:\WINDOWS\TBPanel.exe /A) -> FOUND

[RUN][sUSP PATH] HKLM\[...]\Run : Nvtmru ("C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" -f "C:\Documents and Settings\All Users\Application Data\NVIDIA\Updatus\NvTmru\nvtmru.dat") -> FOUND

[RUN][sUSP PATH] HKUS\S-1-5-21-602162358-448539723-1177238915-500[...]\Run : win30.exe (C:\WINDOWS\win30.exe) -> FOUND

[TASK][sUSP PATH] ContinueToSaveUpdaterTask{BD20337B-454B-45CF-BFC9-E6A6FDE14043}.job : C:\Documents and Settings\All Users\Application Data\Premium\ContinueToSave\ContinueToSave.exe /schedule /profilepath "C:\Documents and Settings\All Users\Application Data\Premium\ContinueToSave\profile.ini" -> FOUND

[HJPOL] HKCU\[...]\System : DisableTaskMgr (1) -> FOUND

[HJPOL] HKCU\[...]\System : DisableRegistryTools (1) -> FOUND

[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND

[HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND

[HJ] HKLM\[...]\Security Center : AntiVirusDisableNotify (1) -> FOUND

[HJ] HKLM\[...]\Security Center : FirewallDisableNotify (1) -> FOUND

[HJ] HKLM\[...]\Security Center : UpdatesDisableNotify (1) -> FOUND

[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST3250820AS +++++

--- User ---

[MBR] f52b364c6bf0a6341e479d8bacb66b12

[bSP] 2541543efd0560b4fb386f07a9a71da0 : Windows XP MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 238464 Mo

User = LL1 ... OK!

User = LL2 ... OK!

Finished : << RKreport[1]_S_02042013_02d1603.txt >>

RKreport[1]_S_02042013_02d1603.txt

[Got Infected,It's more serious than i thought!]

The past week,i started up my pc and it was going so slow that it got really my attention,but i thought it might be the hard disk so i deleted useless little programs i had. After a while i checked my task manager and it has been disabled by the administrator,even though i am the only user , the administrator . Then i went to check the regedit and that was disabled too, i thought someone has been messing with my pc, so i checked the net,found some solutions,then i tried them,they worked,my task manager would open,but when i closed it and activated it again it would say the same message " The task manager has been disabled by the administrator".My pc is really slow, my downloads keep getting stuck to 99% for no reason. i get error reports at start and at the shutdown of my pc. I scanned my pc with malwarebytes and it keeps finding some viruses ,it fixes them,but when i search again they are still there!

I read the pinned topic,acted as said,and attached the two files asked, dds.txt and attach.txt .

Hope you can help me with my situation,i understand that your schedule must be full with problems similar to mine, but i hope that i get a fast and easy solution.

Thanks in advance!

Praxitelis Branko Kourtellos

attach.txt

dds.txt