 |
Windows 7: After ComboFix: Illegal Operation, Registry Key Marked for Deletion
|
15 Nov 2012
|
#1 | |
Windows 7 Home Ultimate 64-Bit, Ubuntu 10.04 Lucid Lynx, Windows XP Chicago |
After ComboFix: Illegal Operation, Registry Key Marked for Deletion
Ok, so I'm working on a computer who's owner ran a program called ComboFix. Now, whenever you try to launch a program (say, Chrome, word, etc.) we're getting a popup that says something like "Illegal Operation Attempted on registry key marked for deletion."
I was thinking I'd have him restart the computer but "marked for deletion" makes me think this thing will not be able to reboot.
Let's troubleshoot this!
| My System Specs |
| OS Windows 7 Home Ultimate 64-Bit, Ubuntu 10.04 Lucid Lynx, Windows XP
CPU Pentium i7 @fast
Memory 6GB DDR3 @fast
Graphics Card ATI Radeon HD 4600 Series (512mb) / ATI TV Wonder 650PCIe
Sound Card Integrated
Monitor(s) Displays 32" VIZIO HDTV
Screen Resolution 1080p @super sharp
Keyboard LG Bluetooth
Mouse LG Bluetooth
Cooling My apartment's AC / Chicago Winters
Hard Drives Internal 500GB @7200rpm and not big enough cache
External 500GB @7200rpm and not big enough cache
Internet Speed ~21.50Mb/S Down, ~3.5Mb/S Up
|
15 Nov 2012
|
#2 | |
Windows 7 Home Ultimate 64-Bit, Ubuntu 10.04 Lucid Lynx, Windows XP Chicago |
Just had client run "sfc /scannow". System returned: "Windows Resource Protection did not find any integrity violations." | | My System Specs | | OS Windows 7 Home Ultimate 64-Bit, Ubuntu 10.04 Lucid Lynx, Windows XP
CPU Pentium i7 @fast
Memory 6GB DDR3 @fast
Graphics Card ATI Radeon HD 4600 Series (512mb) / ATI TV Wonder 650PCIe
Sound Card Integrated
Monitor(s) Displays 32" VIZIO HDTV
Screen Resolution 1080p @super sharp
Keyboard LG Bluetooth
Mouse LG Bluetooth
Cooling My apartment's AC / Chicago Winters
Hard Drives Internal 500GB @7200rpm and not big enough cache
External 500GB @7200rpm and not big enough cache
Internet Speed ~21.50Mb/S Down, ~3.5Mb/S Up
|
15 Nov 2012
|
#3 | |
Windows 7 Home Premium x64 |
Quote: Originally Posted by eduede  Ok, so I'm working on a computer who's owner ran a program called ComboFix. Now, whenever you try to launch a program (say, Chrome, word, etc.) we're getting a popup that says something like "Illegal Operation Attempted on registry key marked for deletion."
I was thinking I'd have him restart the computer but "marked for deletion" makes me think this thing will not be able to reboot.
Let's troubleshoot this! See if this helps;
If you get the message; Illegal operation attempted on registry key that has been marked for deletion after you run ComboFix....please reboot the computer, this should resolve the problem. You may have to do this several times if needed.
HTH | | My System Specs | | System Manufacturer/Model Number Custom Built
OS Windows 7 Home Premium x64
CPU Intel i5 quad processor
Motherboard DP67BG
Memory 16 GB
Graphics Card Radeon HD 5770
Sound Card Realtek High Definition Audio
Monitor(s) Displays Samsung SyncMaster
Screen Resolution 1920X1080
Keyboard MS Wireless
Mouse MS Optical Wired
PSU Corsair GS800
Case Tower (Generic)
Cooling 3 Internal Fans
Hard Drives WD 2TB (SATA Internal)
WD 1TB (USB External)
Internet Speed 19.4 Mbps
|
15 Nov 2012
|
#4 | |
Windows 7 Home Ultimate 64-Bit, Ubuntu 10.04 Lucid Lynx, Windows XP Chicago |
I'm being told that this has fixed the issue. Any clue what happened? | | My System Specs | | OS Windows 7 Home Ultimate 64-Bit, Ubuntu 10.04 Lucid Lynx, Windows XP
CPU Pentium i7 @fast
Memory 6GB DDR3 @fast
Graphics Card ATI Radeon HD 4600 Series (512mb) / ATI TV Wonder 650PCIe
Sound Card Integrated
Monitor(s) Displays 32" VIZIO HDTV
Screen Resolution 1080p @super sharp
Keyboard LG Bluetooth
Mouse LG Bluetooth
Cooling My apartment's AC / Chicago Winters
Hard Drives Internal 500GB @7200rpm and not big enough cache
External 500GB @7200rpm and not big enough cache
Internet Speed ~21.50Mb/S Down, ~3.5Mb/S Up
|
15 Nov 2012
|
#5 | |
Win7 x 6 PC's California, Florida, Boston |
Apparently owner failed to reboot as prompted by ComboFix.
Rootkits are very hard to get rid of fully so owner can expect more problems and should be preparing if necessary for a Clean Reinstall - Factory OEM Windows 7. | | My System Specs | | |
15 Nov 2012
|
#6 | |
Windows 7 Ultimate X64 SP1 Mt. Crumpit/Whoville |
It may be helpful to read some of this thread: Do not use Combofix on your own!! | | My System Specs | | Computer type PC/Desktop
System Manufacturer/Model Number Home Built Desktop By DataTech
OS Windows 7 Ultimate X64 SP1
CPU Intel i5-2550K, Differing ~4.4-4.8GHz No built in GPU
Motherboard ASUS P8Z68-V PRO/GEN3
Memory 16GB G.Skill Sniper 2133MHz 4x4GB
Graphics Card ASUS ENGTX460 DirectCU/2DI/1GD5 GeForce GTX 460
Sound Card Onboard Realtek 5-1
Monitor(s) Displays Samsung P2570HD
Screen Resolution 1920x1080
Keyboard Old, beat-up Dell USB From 10 yrs Ago
Mouse Gigabyte m6900 wired
PSU Corsair HX650W
Case Inwin Dragon Rider
Cooling Hyper 212 EVO w/two Noctua fans, push-pull, @1300 RPM
Hard Drives Crucial M4 128GB for OS, 750GB Seagate MomentusXT for data, 500GB Seagate Constellation for storage
Internet Speed 8-19 Mbs down, 3-4 Mbs up Comcast Cable
Antivirus Norton Internet Security
Browser IE 9, Opera when needed
Other Info 4 case fans, LG BluRay-RE, ASUS DVD-RW, Mr. Fusion power generator with flux capacitor, 1.21 gigawatts.
After ComboFix: Illegal Operation, Registry Key Marked for Deletion problems? All times are GMT -5. The time now is 12:28 PM. |  |
Registry Key deletion - Home Premium & Ultimate are different 
