Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

My computers log! need help removing malware!


  • This topic is locked This topic is locked
21 replies to this topic

#1 strictlyJDM

strictlyJDM

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 19 December 2010 - 02:15 PM

Computer is sluggish at times and Google links redirect me!

here are my logs -


DDS (Ver_10-12-12.02) - NTFSx86
Run by Jordan at 18:35:35.96 on Sat 12/18/2010
Internet Explorer: 8.0.6001.18999 BrowserJavaVersion: 1.6.0_22
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.3070.1808 [GMT -8:00]

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\rundll32.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\Dwm.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k hpdevmgmt
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k regsvc
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Vongo\VongoService.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
C:\Windows\system32\svchost.exe -k HPService
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Windows\WindowsMobile\wmdSync.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\BitTorrent\bittorrent.exe
C:\Windows\system32\svchost.exe -k SDRSVC
c:\program files\windows defender\MpCmdRun.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\msfeedssync.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\Jordan\Desktop\dds.scr
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = about:blank
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=73&bd=Pavilion&pf=laptop
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=73&bd=Pavilion&pf=laptop
uInternet Settings,ProxyOverride = *.local
BHO: Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: Winamp Toolbar BHO: {25cee8ec-5730-41bc-8b58-22ddc8ab8c20} - c:\program files\winamp toolbar\winamptb.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
TB: Winamp Toolbar: {ebf2ba02-9094-4c5a-858b-bb198f3d8de2} - c:\program files\winamp toolbar\winamptb.dll
EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [Microsoft IT Update] COPYOF~3.EXE
uRun: [Windows Updates] c:\windows\system\Update.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [QPService] "c:\program files\hp\quickplay\QPService.exe"
mRun: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
mRun: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
mRun: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
mRun: [Acrobat Assistant 7.0] "c:\program files\adobe\acrobat 7.0\distillr\Acrotray.exe"
mRun: [<NO NAME>]
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
mRun: [SynTPStart] c:\program files\synaptics\syntp\SynTPStart.exe
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [hpqSRMon] c:\program files\hp\digital imaging\bin\hpqSRMon.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [HP Health Check Scheduler] c:\program files\hewlett-packard\hp health check\HPHC_Scheduler.exe
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
StartupFolder: c:\users\jordan\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adobea~1.lnk - c:\windows\installer\{ac76ba86-1033-0000-7760-100000000002}\SC_Acrobat.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\reader 8.0\reader\reader_sl.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adober~2.lnk - c:\program files\adobe\reader 8.0\reader\AdobeCollabSync.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: &Winamp Toolbar Search - c:\programdata\winamp toolbar\ietoolbar\resources\en-us\local\search.html
IE: Convert link target to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office10\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "c:\program files\common files\lightscribe\LSRunOnce.exe"

================= FIREFOX ===================

FF - ProfilePath - c:\users\jordan\appdata\roaming\mozilla\firefox\profiles\j5f55rqc.default\
FF - prefs.js: browser.startup.homepage - hxxp://en-US.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:en-US:official
FF - prefs.js: network.proxy.type - 4
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npbittorrent.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnu.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnupdater2.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npOGAPlugin.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - plugin: c:\program files\viewpoint\viewpoint media player\npViewpoint.dll
FF - plugin: c:\users\jordan\appdata\local\yahoo!\browserplus\2.9.8\plugins\npybrowserplus_2.9.8.dll
FF - plugin: c:\users\jordan\appdata\roaming\facebook\npfbplugin_1_0_3.dll
FF - plugin: c:\users\jordan\program files\dna\plugins\npbtdna.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
FF - Ext: Skype extension for Firefox: {B13721C7-F507-4982-B2E5-502A71474FED} - c:\program files\mozilla firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: XULRunner: {DBD5270D-609C-4D19-9DBA-779255F513FA} - c:\users\jordan\appdata\local\{DBD5270D-609C-4D19-9DBA-779255F513FA}

---- FIREFOX POLICIES ----
FF - user.js: network.protocol-handler.warn-external.dnupdate - false
============= SERVICES / DRIVERS ===============

R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2007-11-23 24652]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\system32\drivers\ASPI32.SYS [2008-9-10 84832]
S3 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-10-5 21504]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S3 WSDPrintDevice;WSD Print Support via UMB;c:\windows\system32\drivers\WSDPrint.sys [2008-10-5 16896]

=============== Created Last 30 ================

2010-12-19 02:04:31 6273872 ----a-w- c:\progra~2\microsoft\windows defender\definition updates\{eda5e163-c039-4a42-899e-39162fe02278}\mpengine.dll
2010-11-30 01:38:30 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-11-30 01:38:30 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-11-24 23:49:30 7680 ----a-w- c:\program files\internet explorer\iecompat.dll

==================== Find3M ====================

2010-11-04 18:56:07 345600 ----a-w- c:\windows\system32\wmicmiplugin.dll
2010-11-04 18:55:38 352768 ----a-w- c:\windows\system32\taskschd.dll
2010-11-04 18:55:38 270336 ----a-w- c:\windows\system32\taskcomp.dll
2010-11-04 18:55:12 601600 ----a-w- c:\windows\system32\schedsvc.dll
2010-11-04 16:34:06 171520 ----a-w- c:\windows\system32\taskeng.exe
2010-11-02 06:01:54 916480 ----a-w- c:\windows\system32\wininet.dll
2010-11-02 05:57:41 43520 ----a-w- c:\windows\system32\licmgr10.dll
2010-11-02 05:57:27 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2010-11-02 05:57:11 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-11-02 05:57:11 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-11-02 05:01:31 385024 ----a-w- c:\windows\system32\html.iec
2010-11-02 04:26:10 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2010-11-02 04:24:44 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2010-10-28 15:44:56 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-10-28 13:27:47 292352 ----a-w- c:\windows\system32\atmfd.dll
2010-10-28 13:20:12 2048 ----a-w- c:\windows\system32\tzres.dll
2010-10-19 18:41:44 222080 ------w- c:\windows\system32\MpSigStub.exe
2010-10-18 13:37:35 81920 ----a-w- c:\windows\system32\consent.exe
2010-10-18 13:31:24 2038272 ----a-w- c:\windows\system32\win32k.sys
2010-10-07 20:23:02 91424 ----a-w- c:\windows\system32\dnssd.dll
2010-10-07 20:23:02 197920 ----a-w- c:\windows\system32\dnssdX.dll
2010-10-07 20:23:02 107808 ----a-w- c:\windows\system32\dns-sd.exe
2010-09-28 23:44:52 4184352 ----a-w- c:\windows\system32\usbaaplrc.dll

============= FINISH: 18:37:16.49 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 strictlyJDM

strictlyJDM
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 21 December 2010 - 06:46 PM

any help guys?

#3 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:02:19 AM

Posted 29 December 2010 - 09:09 PM

Hi,

Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.
  • Please subscribe to this topic, if you haven't already. You can subscribe by clicking the Options box to the right of your topic title and selecting Track This Topic.

  • Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

  • Please reply to this post so I know you are there.
The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.

Once I receive a reply then I will return with your first instructions.

Thanks :thumbup2:
Posted Image
m0le is a proud member of UNITE

#4 strictlyJDM

strictlyJDM
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 31 December 2010 - 04:07 PM

Hello! Im here ready to be helped!

thanks!

#5 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:02:19 AM

Posted 31 December 2010 - 04:45 PM

Please run TDSSKiller and MBRCheck for starters

  • Download TDSSKiller and save it to your Desktop.

  • Extract its contents to your desktop and make sure TDSSKiller.exe (the contents of the zipped file) is on the Desktop itself, not within a folder on the desktop.

  • Go to Start > Run (Or you can hold down your Windows key and press R) and copy and paste the following into the text field. (make sure you include the quote marks) Then press OK.

    "%userprofile%\Desktop\TDSSKiller.exe" -l report.txt

  • Now click Start Scan.
  • If Malicious objects are found, ensure Cure is selected then click Continue > Reboot now.
  • Click Close
  • Finally press Report and copy and paste the contents into your next reply. If you've rebooted then the log will be found at C:\


And

Please download MBRCheck to your desktop.

1. Double click MBRCheck.exe to run it (Right click and run as Administrator for Vista).
2. It will open a black window, please do not fix anything (if it gives you an option).
3. Exit that window and it will produce a log (MBRCheck_date_time).
4. Please post that log when you reply.
Posted Image
m0le is a proud member of UNITE

#6 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:02:19 AM

Posted 02 January 2011 - 08:23 PM

Hi,

I have not had a reply from you for 3 days. Can you please tell me if you still need help with your computer as I am unable to help other members with their problems while I have your topic still open. The time taken between posts can also change the situation with your PC making it more difficult to help you.

If you like you can PM me.

Thanks,


m0le
Posted Image
m0le is a proud member of UNITE

#7 strictlyJDM

strictlyJDM
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 02 January 2011 - 10:20 PM

TDS - did not find anything

MBR - scanned and found something non standard...it didnt produce a log that I could copy and paste though

Edited by strictlyJDM, 02 January 2011 - 10:27 PM.


#8 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:02:19 AM

Posted 03 January 2011 - 11:55 AM

Please run MBRCheck again, hopefully you will get a log this time.
Posted Image
m0le is a proud member of UNITE

#9 strictlyJDM

strictlyJDM
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 03 January 2011 - 04:40 PM

Alright I got a Log this time -


MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows Vista Home Premium Edition
Windows Information: Service Pack 2 (build 6002), 32-bit
Base Board Manufacturer: Quanta
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: HP Pavilion dv9500 Notebook PC
Logical Drives Mask: 0x0000001c

Kernel Drivers (total 152):
0x8223C000 \SystemRoot\system32\ntkrnlpa.exe
0x82209000 \SystemRoot\system32\hal.dll
0x80401000 \SystemRoot\system32\kdcom.dll
0x80408000 \SystemRoot\system32\PSHED.dll
0x80419000 \SystemRoot\system32\BOOTVID.dll
0x80421000 \SystemRoot\system32\CLFS.SYS
0x80462000 \SystemRoot\system32\CI.dll
0x80542000 \SystemRoot\system32\drivers\Wdf01000.sys
0x805BE000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80602000 \SystemRoot\system32\drivers\acpi.sys
0x80648000 \SystemRoot\system32\drivers\WMILIB.SYS
0x80651000 \SystemRoot\system32\drivers\msisadrv.sys
0x80659000 \SystemRoot\system32\drivers\pci.sys
0x80680000 \SystemRoot\System32\drivers\partmgr.sys
0x8068F000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x80692000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x8069C000 \SystemRoot\system32\drivers\volmgr.sys
0x806AB000 \SystemRoot\System32\drivers\volmgrx.sys
0x806F5000 \SystemRoot\system32\drivers\pciide.sys
0x806FC000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x8070A000 \SystemRoot\System32\drivers\mountmgr.sys
0x8071A000 \SystemRoot\system32\drivers\atapi.sys
0x80722000 \SystemRoot\system32\drivers\ataport.SYS
0x80740000 \SystemRoot\system32\drivers\fltmgr.sys
0x80772000 \SystemRoot\system32\drivers\fileinfo.sys
0x80782000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x8078B000 \SystemRoot\System32\Drivers\ksecdd.sys
0x8A006000 \SystemRoot\system32\drivers\ndis.sys
0x8A111000 \SystemRoot\system32\drivers\msrpc.sys
0x8A13C000 \SystemRoot\system32\drivers\NETIO.SYS
0x8A204000 \SystemRoot\System32\drivers\tcpip.sys
0x8A2EE000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8A402000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8A512000 \SystemRoot\system32\drivers\volsnap.sys
0x8A54B000 \SystemRoot\System32\Drivers\spldr.sys
0x8A553000 \SystemRoot\System32\Drivers\mup.sys
0x8A562000 \SystemRoot\System32\drivers\ecache.sys
0x8A589000 \SystemRoot\system32\drivers\disk.sys
0x8A59A000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x8A5BB000 \SystemRoot\system32\drivers\crcdisk.sys
0x8A5E4000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x8A5EF000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x8A309000 \SystemRoot\system32\DRIVERS\amdk8.sys
0x8A5F8000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x8A5FC000 \SystemRoot\system32\DRIVERS\cpqbttn.sys
0x8A319000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x8A329000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8A330000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x8A339000 \SystemRoot\system32\DRIVERS\nvsmu.sys
0x8A33C000 \SystemRoot\system32\DRIVERS\usbohci.sys
0x8A346000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8A384000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x8A393000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8A3AB000 \SystemRoot\System32\Drivers\GEARAspiWDM.sys
0x8EC06000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8EC93000 \SystemRoot\system32\DRIVERS\ohci1394.sys
0x8ECA3000 \SystemRoot\system32\DRIVERS\1394BUS.SYS
0x8ECB1000 \SystemRoot\system32\DRIVERS\sdbus.sys
0x8ECCB000 \SystemRoot\system32\DRIVERS\rimmptsk.sys
0x8ECDA000 \SystemRoot\system32\DRIVERS\rimsptsk.sys
0x8ECEE000 \SystemRoot\system32\DRIVERS\rixdptsk.sys
0x8EE0B000 \SystemRoot\system32\DRIVERS\nvmfdx32.sys
0x8F001000 \SystemRoot\system32\DRIVERS\bcmwl6.sys
0x8F20C000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x8F94E000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8F9EF000 \SystemRoot\System32\drivers\watchdog.sys
0x8F149000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8F200000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8F15C000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8F9FB000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8F18C000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8F197000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x8EF0B000 \SystemRoot\system32\DRIVERS\storport.sys
0x8F1C6000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8F1D1000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8F1E8000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8EF4C000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8EF6F000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8EF7E000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8EF92000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8EFA7000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8F9FD000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8EFB7000 \SystemRoot\system32\DRIVERS\ks.sys
0x8F1F3000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8EFE1000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8EFEE000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x8ED3F000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8ED74000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8ED85000 \SystemRoot\system32\drivers\CHDRT32.sys
0x8EDB8000 \SystemRoot\system32\drivers\portcls.sys
0x8A3B1000 \SystemRoot\system32\drivers\drmk.sys
0x8A177000 \SystemRoot\system32\DRIVERS\HSXHWAZL.sys
0x9000E000 \SystemRoot\system32\DRIVERS\HSX_DPV.sys
0x90111000 \SystemRoot\system32\DRIVERS\HSX_CNXT.sys
0x901C6000 \SystemRoot\system32\drivers\modem.sys
0x901D3000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x8A3D6000 \SystemRoot\System32\Drivers\usbvideo.sys
0x901EA000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x901F3000 \SystemRoot\System32\Drivers\Null.SYS
0x90000000 \SystemRoot\System32\Drivers\Beep.SYS
0x8EDE5000 \SystemRoot\System32\drivers\vga.sys
0x8A1B5000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8EFF7000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8EE00000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8EDF1000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8A1D6000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8A3F7000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8A1E4000 \SystemRoot\system32\DRIVERS\tdx.sys
0x805CB000 \SystemRoot\system32\DRIVERS\smb.sys
0x90209000 \SystemRoot\system32\drivers\afd.sys
0x90251000 \SystemRoot\System32\DRIVERS\netbt.sys
0x90283000 \SystemRoot\system32\DRIVERS\pacer.sys
0x90299000 \SystemRoot\system32\DRIVERS\netbios.sys
0x902A7000 \SystemRoot\system32\DRIVERS\eabfiltr.sys
0x902A9000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x902BC000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x902F8000 \SystemRoot\system32\drivers\nsiproxy.sys
0x90302000 \SystemRoot\System32\Drivers\dfsc.sys
0x90319000 \SystemRoot\System32\Drivers\crashdmp.sys
0x90326000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x90331000 \SystemRoot\System32\Drivers\dump_atapi.sys
0x99080000 \SystemRoot\System32\win32k.sys
0x90339000 \SystemRoot\System32\drivers\Dxapi.sys
0x992A0000 \SystemRoot\System32\TSDDD.dll
0x992C0000 \SystemRoot\System32\cdd.dll
0x992D0000 \SystemRoot\System32\ATMFD.DLL
0x90352000 \SystemRoot\system32\drivers\luafv.sys
0x9DE02000 \SystemRoot\system32\drivers\spsys.sys
0x9DEB2000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x9DEC2000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x9DEEC000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x9DEF6000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x9DF09000 \SystemRoot\system32\drivers\HTTP.sys
0x9DF76000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x9DF93000 \SystemRoot\system32\DRIVERS\bowser.sys
0x9DFAC000 \SystemRoot\System32\drivers\mpsdrv.sys
0x9DFC1000 \SystemRoot\system32\drivers\mrxdav.sys
0x90375000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x90394000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x9DFE2000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x903CD000 \SystemRoot\System32\DRIVERS\srv2.sys
0xA0E05000 \SystemRoot\System32\DRIVERS\srv.sys
0xA0E6B000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys
0xA0E6F000 \SystemRoot\system32\drivers\peauth.sys
0xA0F4D000 \SystemRoot\System32\Drivers\secdrv.SYS
0xA0F57000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA0F63000 \SystemRoot\system32\DRIVERS\xaudio.sys
0xA0F6B000 \SystemRoot\system32\DRIVERS\cdfs.sys
0xA0F8B000 \SystemRoot\system32\DRIVERS\WSDPrint.sys
0xA0FBE000 \SystemRoot\system32\DRIVERS\monitor.sys
0xA0FCD000 \SystemRoot\system32\DRIVERS\serscan.sys
0x76EB0000 \Windows\System32\ntdll.dll

Processes (total 78):
0 System Idle Process
4 System
424 C:\Windows\System32\smss.exe
556 csrss.exe
608 C:\Windows\System32\wininit.exe
620 csrss.exe
652 C:\Windows\System32\services.exe
668 C:\Windows\System32\lsass.exe
680 C:\Windows\System32\lsm.exe
748 C:\Windows\System32\winlogon.exe
844 C:\Windows\System32\svchost.exe
888 C:\Windows\System32\nvvsvc.exe
920 C:\Windows\System32\svchost.exe
956 C:\Windows\System32\svchost.exe
1044 C:\Windows\System32\svchost.exe
1104 C:\Windows\System32\svchost.exe
1136 C:\Windows\System32\svchost.exe
1208 C:\Windows\System32\audiodg.exe
1232 C:\Windows\System32\svchost.exe
1256 C:\Windows\System32\SLsvc.exe
1296 C:\Windows\System32\svchost.exe
1388 C:\Windows\System32\rundll32.exe
1508 C:\Windows\System32\svchost.exe
1720 C:\Windows\System32\wlanext.exe
1836 C:\Windows\System32\spoolsv.exe
1908 C:\Windows\System32\svchost.exe
1916 C:\Windows\System32\dwm.exe
1960 C:\Windows\explorer.exe
548 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1068 C:\Program Files\Bonjour\mDNSResponder.exe
1280 C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
1424 C:\Windows\System32\taskeng.exe
1996 C:\Windows\System32\taskeng.exe
2296 C:\Windows\System32\svchost.exe
2312 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
2464 C:\Windows\System32\svchost.exe
2484 C:\Windows\System32\svchost.exe
2532 C:\Windows\System32\svchost.exe
2596 C:\Program Files\Viewpoint\Common\ViewpointService.exe
2672 C:\Program Files\Vongo\VongoService.exe
2720 C:\Windows\System32\svchost.exe
2784 C:\Windows\System32\SearchIndexer.exe
2800 C:\Windows\System32\drivers\XAudio.exe
2824 C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
3868 C:\Windows\System32\svchost.exe
1340 C:\Program Files\Windows Defender\MSASCui.exe
1240 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
1216 C:\Program Files\HP\QuickPlay\QPService.exe
3096 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
852 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
3132 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
2992 C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
2628 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
2652 C:\Windows\WindowsMobile\wmdSync.exe
1264 C:\Program Files\Synaptics\SynTP\SynTPStart.exe
2856 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
2776 C:\Windows\System32\rundll32.exe
1576 C:\Program Files\Common Files\Java\Java Update\jusched.exe
2604 C:\Program Files\iTunes\iTunesHelper.exe
3336 C:\Windows\ehome\ehtray.exe
3272 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
3580 C:\Windows\System32\wbem\unsecapp.exe
2060 WmiPrvSE.exe
3908 C:\Windows\ehome\ehmsas.exe
2108 C:\Windows\System32\svchost.exe
2948 C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
3044 C:\Program Files\iPod\bin\iPodService.exe
1072 C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
2508 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
3028 C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
1360 C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
4208 C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
1336 C:\Windows\System32\svchost.exe
4480 taskeng.exe
3524 C:\Windows\System32\svchost.exe
4588 C:\Program Files\Mozilla Firefox\firefox.exe
3144 C:\Users\Jordan\Desktop\MBRCheck.exe
2476 C:\Program Files\Skype\Toolbars\Shared\SkypeNames.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000023`28c5ee00 (NTFS)

PhysicalDrive0 Model Number: TOSHIBAMK1637GSX, Rev: DL032C

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: D94F393960D1CD66C2071F2D7260A5196DF105AC


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:

Done!

#10 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:02:19 AM

Posted 03 January 2011 - 06:50 PM

1. Put the Windows Vista or Windows 7 installation disc in the disc drive, and then start the computer.
2. Press a key when you are prompted.
3. Select a language, a time, a currency, a keyboard or an input method, and then click Next.
4. Click Repair your computer.
5. Click the operating system that you want to repair, and then click Next.
6. In the System Recovery Options dialog box, click Command Prompt.
7. Type Bootrec.exe, and then press ENTER.
8. Type Bootrec.exe /FixMbr
Posted Image
m0le is a proud member of UNITE

#11 strictlyJDM

strictlyJDM
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 04 January 2011 - 07:05 PM

What happens if I dont have a windows CD? I was never given one when I bought my computer

#12 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:02:19 AM

Posted 04 January 2011 - 07:42 PM

There are other ways. First let's try the MBRCheck fix

The MBR has been rewritten.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Important Note: While fixing the Master Boot Record (MBR) is generally safe, there is a small risk of damaging the operating system so that it will not boot up or the partitions may become corrupted. I recommend you have your Windows CD available which will allow recovering the boot code via the Windows Recovery Console in case of any problems or install the XP Recovery Console before proceeding with the above fix. Then if any problems occur, the links below explain how to use and repair the MBR:If you do not have a Vista recovery disk then please burn one as shown here


Run MBRCheck.exe
  • Run MBRCheck.exe
  • Wait until you see the following line: Enter 'Y' and hit ENTER for more options, or 'N' to exit:
  • Please push the 'Y' key and then press Enter
  • When program ask you Enter 2 and press the Enter key
  • Now the program will ask you "Enter the physical disk number to fix (0-99, -1 to cancel):"
  • Enter 0 and press the Enter key.
  • The program will show Available MBR codes:, followed by a list of operating systems. Please enter the correct number for your operating system, and then press Enter.
  • when asked Do you want to fix the MRB code? type in YES and press enter
  • Restart your PC.
After you restart the PC
  • Double click MBRCheck.exe to run (vista and Win 7 right click and select Run as Administrator)
  • It will show a Black screen with some data on it
  • a report called MBRcheck will be on your desktop
  • open this report
  • Right click on the screen and select > Select All
  • Press Control+C
  • now please copy that report to this thread

Posted Image
m0le is a proud member of UNITE

#13 strictlyJDM

strictlyJDM
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 06 January 2011 - 02:40 PM

alright, i will do what as stated and get back to you!

#14 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:02:19 AM

Posted 06 January 2011 - 07:32 PM

:thumbup2:
Posted Image
m0le is a proud member of UNITE

#15 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:02:19 AM

Posted 10 January 2011 - 08:12 PM

How's things going?
Posted Image
m0le is a proud member of UNITE




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users