Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Security Tools Malware


  • This topic is locked This topic is locked
2 replies to this topic

#1 Feith

Feith

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:04:37 AM

Posted 05 October 2009 - 01:58 PM

(All info included that was suggest by the Preparation Guide except that I had to run everything in safe mode, as the malware wouldn't let me do anything.)


DDS (Ver_09-09-29.01) - NTFSx86 MINIMAL
Run by Faith at 13:33:11.21 on Mon 10/05/2009
Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_14
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.2013.1720 [GMT -5:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: ZoneAlarm Security Suite Antivirus *On-access scanning disabled* (Outdated) {5D467B10-818C-4CAB-9FF7-6893B5B8F3CF}
FW: ZoneAlarm Firewall *enabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\Feith.LEEANDRA\Application Data\U3\0876020A09527642\LaunchPad.exe
C:\Documents and Settings\Feith.LEEANDRA\Desktop\dds.scr

============== Pseudo HJT Report ===============

uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: AskBar BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - c:\program files\askbardis\bar\bin\askBar.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn1\YTSingleInstance.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
TB: Ask Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - c:\program files\askbardis\bar\bin\askBar.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [BitTorrent DNA] "c:\program files\dna\btdna.exe"
mRun: [ZoneAlarm Client] "c:\program files\zone labs\zonealarm\zlclient.exe"
mRun: [Getca] c:\program files\belkin usb wireless monitor\InfoMyCa.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [9113167690] c:\documents and settings\lee.leessecondpc\application data\9113167690\9113167690.exe
mRun: [8920926996] c:\documents and settings\lee.leessecondpc\application data\8920926996\8920926996.exe
mRun: [6946936844] c:\documents and settings\lee.leessecondpc\application data\6946936844\6946936844.exe
mRun: [jovozarad] Rundll32.exe "c:\windows\system32\rawiyamo.dll",a
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
IE: Append to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: {d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\feith.leeandra\start menu\programs\imvu\Run IMVU.lnk
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} - file://c:\program files\family mystery - the story of amy\images\stg_drm.ocx
DPF: {5D6F45B3-9043-443D-A792-115447494D24} - hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/Default/uno1/GAME_UNO1.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - file://c:\program files\family mystery - the story of amy\images\armhelper.ocx
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: avgrsstarter - avgrsstx.dll
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: c:\windows\system32\zapekoge.dll c:\windows\system32\huheliva.dll wenomosi.dll c:\windows\system32\rawiyamo.dll c:\windows\system32\lobadoni.dll
SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\huheliva.dll
SSODL: tokadoher - {db54ec93-7ce9-4c54-be61-03c9a0591700} - c:\windows\system32\lobadoni.dll
SSODL: wayovupun - {7cce99b2-a22e-4ad0-8934-b977810f37ce} - c:\windows\system32\rawiyamo.dll
STS: STS: {ec43e3fd-5c60-46a6-97d7-e0b85dbdd6c4} - c:\windows\system32\huheliva.dll
STS: jugezatag: {db54ec93-7ce9-4c54-be61-03c9a0591700} - c:\windows\system32\lobadoni.dll
STS: tokatiluy: {7cce99b2-a22e-4ad0-8934-b977810f37ce} - c:\windows\system32\rawiyamo.dll
LSA: Notification Packages = scecli c:\windows\system32\zapekoge.dll lazenuhu.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\feith~1.lee\applic~1\mozilla\firefox\profiles\7cfbypg2.default\
FF - plugin: c:\documents and settings\feith.leeandra\application data\mozilla\firefox\profiles\7cfbypg2.default\extensions\{e2883e8f-472f-4fb0-9522-ac9bf37916a7}\plugins\np_gp.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npbittorrent.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npijjiautoinstallpluginff.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npPandoWebInst.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----

============= SERVICES / DRIVERS ===============

R0 pe3ahqjb;Dawn of Magic Environment Driver (pe3ahqjb);c:\windows\system32\drivers\pe3ahqjb.sys [2007-3-29 64896]
R0 ps6ahqjb;Dawn of Magic Synchronization Driver (ps6ahqjb);c:\windows\system32\drivers\ps6ahqjb.sys [2007-3-29 52616]
S1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-6-30 335240]
S1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2009-6-30 27784]
S1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-6-30 108552]
S1 KLIF;KLIF;c:\windows\system32\drivers\klif.sys [2009-6-30 148496]
S1 mozyFilter;mozyFilter;c:\windows\system32\drivers\mozy.sys [2009-9-23 54776]
S1 vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2009-6-30 353672]
S2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\avg\avg8\avgemc.exe [2009-6-14 908056]
S2 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-6-14 297752]
S2 Belkin 54Mbps Wireless USB;Belkin 54Mbps Wireless USB Network Service;c:\program files\belkin usb wireless monitor\WLService.exe [2009-9-16 49152]
S2 mi-raysat_3dsmax2010_32;mental ray 3.7 Satellite for Autodesk 3ds Max 2010 32-bit 32-bit;c:\program files\autodesk\3ds max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe [2009-3-12 86016]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0;c:\program files\common files\nero\nero backitup 4\NBService.exe [2009-5-15 935208]
S2 pr2ahqjb;Dawn of Magic Drivers Auto Removal (pr2ahqjb);c:\windows\system32\pr2ahqjb.exe svc --> c:\windows\system32\pr2ahqjb.exe svc [?]
S2 vsmon;TrueVector Internet Monitor;c:\windows\system32\zonelabs\vsmon.exe -service --> c:\windows\system32\zonelabs\vsmon.exe -service [?]
S2 YahooAUService;Yahoo! Updater;c:\program files\yahoo!\softwareupdate\YahooAUService.exe [2008-11-9 602392]
S3 getPlusHelper;getPlus® Helper;c:\windows\system32\svchost.exe -k getPlusHelper [2004-8-4 14336]
S3 IntcHdmiAddService;Intel® High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [2009-8-22 110080]
S3 RTCore32;RTCore32;\??\c:\docume~1\feith~1.lee\locals~1\temp\rar$ex18.890\rtcore32.sys --> c:\docume~1\feith~1.lee\locals~1\temp\rar$ex18.890\RTCore32.sys [?]
S3 XDva279;XDva279;\??\c:\windows\system32\xdva279.sys --> c:\windows\system32\XDva279.sys [?]

=============== Created Last 30 ================

2009-10-02 12:45 517,448 a------- c:\windows\system32\XAudio2_4.dll
2009-10-02 12:45 235,352 a------- c:\windows\system32\xactengine3_4.dll
2009-10-02 12:45 69,448 a------- c:\windows\system32\XAPOFX1_3.dll
2009-10-02 12:45 22,360 a------- c:\windows\system32\X3DAudio1_6.dll
2009-10-02 12:42 <DIR> --d----- c:\program files\Microsoft XNA
2009-10-02 04:45 <DIR> --d----- c:\program files\Microsoft Synchronization Services
2009-10-02 04:45 <DIR> --d----- c:\program files\Microsoft SQL Server Compact Edition
2009-10-02 03:37 <DIR> --d----- C:\GravityWars0.988
2009-10-02 03:26 <DIR> --d----- C:\Tet Tut
2009-10-02 03:05 <DIR> --d----- C:\Jana
2009-10-02 03:03 <DIR> --d----- C:\sick of making new ones
2009-10-02 01:21 <DIR> --d----- C:\Amunity
2009-10-01 16:57 <DIR> --d----- C:\warhammer
2009-10-01 16:38 <DIR> --d----- C:\Game Engine
2009-10-01 10:47 <DIR> --d----- c:\program files\Microsoft SQL Server
2009-10-01 10:42 <DIR> --d----- c:\program files\common files\Merge Modules
2009-10-01 00:53 <DIR> --d----- C:\HijackTHIS
2009-09-30 23:49 <DIR> --d----- c:\program files\RealityFactory
2009-09-30 09:10 <DIR> --d----- c:\program files\tStudio3d
2009-09-29 13:07 75,264 a------- c:\windows\system32\uc_holybeast_launching.dll
2009-09-29 13:01 64,000 a------- c:\windows\system32\uc_sfighters_launching.dll
2009-09-29 13:01 710,064 a------- c:\windows\system32\ijjiSetup.exe
2009-09-29 13:01 208,384 a------- c:\windows\system32\uc_rohan_launching.dll
2009-09-29 13:01 87,472 a------- c:\windows\system32\ijjiChannelingPlugin.dll
2009-09-29 13:01 61,440 a------- c:\windows\system32\uc_atlantica_launching.dll
2009-09-29 13:01 58,800 a------- c:\windows\system32\ijjiProcessRestarter.exe
2009-09-29 13:01 58,800 a------- c:\windows\system32\ijjiPlugin2.dll
2009-09-29 13:01 53,248 a------- c:\windows\system32\uc_luminary_launching.dll
2009-09-29 13:01 <DIR> --d----- c:\program files\ijji
2009-09-29 12:47 <DIR> --d----- C:\ijji
2009-09-27 01:28 <DIR> --d----- C:\Nexon
2009-09-26 22:56 <DIR> --d----- c:\docume~1\feith~1.lee\applic~1\DNA
2009-09-23 12:10 54,776 a------- c:\windows\system32\drivers\mozy.sys
2009-09-23 12:09 <DIR> --d----- c:\program files\MozyHome
2009-09-22 16:08 2,036,576 a------- c:\windows\system32\D3DCompiler_40.dll
2009-09-22 16:08 452,440 a------- c:\windows\system32\d3dx10_40.dll
2009-09-22 16:08 4,379,984 a------- c:\windows\system32\D3DX9_40.dll
2009-09-22 16:08 514,384 a------- c:\windows\system32\XAudio2_3.dll
2009-09-22 16:08 70,992 a------- c:\windows\system32\XAPOFX1_2.dll
2009-09-22 16:08 235,856 a------- c:\windows\system32\xactengine3_3.dll
2009-09-22 16:08 23,376 a------- c:\windows\system32\X3DAudio1_5.dll
2009-09-22 15:50 <DIR> --d----- c:\program files\Drakensang
2009-09-21 09:14 <DIR> --d----- c:\program files\Oberon Media
2009-09-21 09:14 <DIR> --d----- c:\program files\MSN Games
2009-09-16 23:11 17,119 a------- c:\windows\system32\drivers\AegisP.sys
2009-09-16 23:11 374,752 a------- c:\windows\system32\WUSBGXP.sys
2009-09-16 23:11 339,488 a------- c:\windows\system32\WUSB20XP.sys
2009-09-16 23:11 147,328 a------- c:\windows\system32\rt2500usb.sys
2009-09-16 23:11 8,090 a------- c:\windows\system32\WUSB54G.cat
2009-09-16 23:11 8,014 a------- c:\windows\system32\rt2500usb.cat
2009-09-16 23:11 7,846 a------- c:\windows\system32\WUSB54GV2.cat
2009-09-16 23:11 147,328 a------- c:\windows\system32\drivers\rt2500usb.sys
2009-09-16 23:10 <DIR> --d----- c:\program files\Linksys Wireless-G USB Wireless Network Monitor
2009-09-16 23:10 1,774 a------- c:\windows\system32\WLAN.INI
2009-09-16 22:51 651,264 a------- c:\windows\system32\libeay32.dll
2009-09-16 22:51 507,904 a------- c:\windows\system32\AegisE5.dll
2009-09-16 22:51 147,456 a------- c:\windows\system32\ssleay32.dll
2009-09-16 22:51 94,208 a------- c:\windows\system32\GTW32N50.dll
2009-09-16 22:51 31,930 a------- c:\windows\system32\GTNDIS3.VXD
2009-09-16 22:51 15,872 a------- c:\windows\system32\GTNDIS5.sys
2009-09-16 22:51 15,781 a------- c:\windows\system32\drivers\mdc8021x.sys
2009-09-16 22:51 <DIR> --d----- c:\program files\BELKIN USB Wireless Monitor
2009-09-16 22:42 <DIR> --d----- c:\windows\Profiles
2009-09-16 22:41 306,688 a------- c:\windows\IsUninst.exe
2009-09-15 02:18 <DIR> --d----- C:\prs
2009-09-14 13:04 0 a------- c:\windows\mozy.flt
2009-09-14 13:04 0 a------- c:\windows\mozy.blk
2009-09-10 17:29 <DIR> --d----- c:\program files\Family Mystery - The Story of Amy

==================== Find3M ====================

2009-10-01 11:08 3,303,884 a--sh--- c:\windows\system32\drivers\fidbox.idx
2009-10-01 11:08 386,392,864 a--sh--- c:\windows\system32\drivers\fidbox.dat
2009-09-05 00:26 4,096 a------- c:\windows\d3dx.dat
2009-08-27 09:06 11,952 a------- c:\windows\system32\avgrsstx.dll
2009-08-27 09:06 335,240 a------- c:\windows\system32\drivers\avgldx86.sys
2009-08-22 15:13 717,296 a------- c:\windows\system32\drivers\sptd.sys
2009-08-13 23:33 22,720 a------- c:\windows\system32\emptyregdb.dat
2009-08-05 04:11 204,800 a------- c:\windows\system32\mswebdvd.dll
2009-07-28 23:53 119,808 a------- c:\windows\system32\t2embed.dll
2009-07-28 23:53 82,432 a------- c:\windows\system32\fontsub.dll
2009-07-28 09:21 1,788 a------- c:\windows\system32\tmp.reg
2009-07-23 20:57 41,872 a------- c:\windows\system32\xfcodec.dll
2009-07-18 01:18 4,212 a---h--- c:\windows\system32\zllictbl.dat
2009-07-17 13:55 58,880 a------- c:\windows\system32\atl.dll
2009-07-13 02:18 233,472 a------- c:\windows\system32\wmpdxm.dll
2009-07-11 17:16 124,404 a------- c:\windows\hpoins14.dat
2009-07-05 10:54 38,400 a--sh--- c:\windows\system32\dibojine.dll
2009-07-04 10:53 26,624 a--sh--- c:\windows\system32\guguseyu.dll
2009-07-04 10:53 1,048,611 a--sh--- c:\windows\system32\janivohu.exe
2009-07-04 10:54 50,688 a--sh--- c:\windows\system32\lazenuhu.dll
2009-07-05 10:54 88,576 a--sh--- c:\windows\system32\rawiyamo.dll
2009-07-04 10:53 36,864 a--sh--- c:\windows\system32\risohesi.dll
2009-07-04 22:54 1,048,611 a--sh--- c:\windows\system32\rulinole.exe
2009-07-04 10:53 50,688 a--sh--- c:\windows\system32\tumetoho.dll
2009-07-05 10:54 1,049,123 a--sh--- c:\windows\system32\vijemefu.exe
2009-07-04 10:54 50,688 a--sh--- c:\windows\system32\wenomosi.dll
2009-07-04 10:54 50,688 a--sh--- c:\windows\system32\zoremisi.dll
2009-07-04 22:54 38,400 a--sh--- c:\windows\system32\zugolije.dll

============= FINISH: 13:33:18.76 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 syler

syler

  • Malware Response Team
  • 8,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Warrington, UK
  • Local time:11:37 AM

Posted 22 October 2009 - 01:49 PM

Hello,

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and
we are trying our best to keep up.

My name is Syler and I will be helping you to solve your Malware issues. If you have since resolved your issues I would appreciate if you
would let me no so I can close this topic, if you still need help please let me no what issues you are still having, in your next reply.

  • Download random's system information tool (RSIT) by random/random from here and save it to your desktop.
  • Double click on RSIT.exe to run RSIT.
  • Click Continue at the disclaimer screen.
  • Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)
Then please post back here with the following:
  • log.txt
  • info.txt
Thanks

unite.jpg


#3 syler

syler

  • Malware Response Team
  • 8,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Warrington, UK
  • Local time:11:37 AM

Posted 26 October 2009 - 07:42 PM

Due to the lack of feedback this Topic is closed.

If you need this topic reopened, please request this by sending me a PM
with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.

unite.jpg





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users