Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan.Siggen2.B, Adware.Somoto,


  • This topic is locked This topic is locked
8 replies to this topic

#1 THtweey

THtweey

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:AL
  • Local time:02:49 AM

Posted 18 July 2013 - 09:25 PM

DDS (Ver_2012-11-20.01) - NTFS_x86 NETWORK
Internet Explorer: 8.0.6001.18702  BrowserJavaVersion: 10.21.2
Run by Tammy at 20:54:18 on 2013-07-18
#Option MBR scan  is disabled.
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.246.18 [GMT -5:00]
.
AV: AVG Internet Security 2013 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Internet Security 2013 *Disabled*
.
============== Running Processes ================
.
C:\WINDOWS\Explorer.EXE
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
mStart Page = hxxp://search.coupons.com/
uProxyOverride = <local>
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [dleamon.exe] "c:\program files\dell v310-v510 series\dleamon.exe"
mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
mRun: [vProt] "c:\program files\avg safeguard toolbar\vprot.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
uPolicies-Explorer: NoDriveTypeAutoRun = dword:255
mPolicies-Explorer: NoDriveTypeAutoRun = dword:255
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1359081386802
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1370567365291
DPF: {B479199A-1242-4E3C-AD81-7F0DF801B4AE} - hxxp://download.microsoft.com/download/C/9/C/C9C3D86D-84AC-4AF0-8584-842756A66467/MicrosoftDownloadManager.cab
TCP: NameServer = 97.64.209.36 97.64.168.13
TCP: Interfaces\{7CB5D409-D175-4855-9478-BEB60A6BED6B} : DHCPNameServer = 97.64.209.36 97.64.168.13
TCP: Interfaces\{F6C8D074-6FAE-42F5-8985-F1389A1F0FAC} : DHCPNameServer = 97.64.209.36 97.64.168.13
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\15.2.0\ViProtocol.dll
Notify: igfxcui - igfxdev.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\28.0.1500.72\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\tammy\application data\mozilla\firefox\profiles\ik9blvs4.default-1374024589796\
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\browser\nppdf32(2).dll
FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\15.2.0\npsitesafety.dll
FF - plugin: c:\program files\google\update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll
FF - plugin: c:\program files\millisecond software\inquisit 3.0 mozilla plugin\npInquisit_3060.dll
FF - plugin: c:\program files\millisecond software\inquisit 4.0 mozilla plugin\npInquisit.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_7_700_224.dll
FF - ExtSQL: 2013-05-21 20:32; avg@toolbar; c:\documents and settings\all users\application data\avg safeguard toolbar\firefoxext\15.2.0.5
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [2013-3-4 49248]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [2013-3-4 164736]
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2013-2-8 60216]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2013-2-8 245048]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2013-2-8 96568]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2013-2-8 39224]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2013-2-14 182072]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2013-3-25 37664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2013-5-23 119056]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2013-2-26 208184]
S1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2013-3-1 22328]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2013-2-8 170808]
S1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
S1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-3-4 66336]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2013-5-14 4937264]
S2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2013-4-18 283136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 dlea_device;dlea_device;c:\windows\system32\dleacoms.exe -service --> c:\windows\system32\dleacoms.exe -service [?]
S2 MBAMScheduler;MBAMScheduler;"c:\program files\malwarebytes' anti-malware\mbamscheduler.exe" --> c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [?]
S2 MBAMService;MBAMService;"c:\program files\malwarebytes' anti-malware\mbamservice.exe" --> c:\program files\malwarebytes' anti-malware\mbamservice.exe [?]
S2 Scutum50;Scutum50 NDIS Protocol Driver;c:\windows\system32\drivers\scutum50.sys --> c:\windows\system32\drivers\Scutum50.sys [?]
S2 vToolbarUpdater15.2.0;vToolbarUpdater15.2.0;c:\program files\common files\avg secure search\vtoolbarupdater\15.2.0\ToolbarUpdater.exe [2013-5-21 1015984]
S3 MBAMProtector;MBAMProtector;\??\c:\windows\system32\drivers\mbam.sys --> c:\windows\system32\drivers\mbam.sys [?]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2013-7-17 40776]
S3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver;c:\windows\system32\drivers\rt2870.sys [2013-3-20 1249888]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-4-18 753504]
.
=============== Created Last 30 ================
.
2013-07-19 00:34:26    --------    d-----w-    C:\2b42e514f83b8232c7e63390
2013-07-19 00:31:11    --------    d-----w-    C:\0a015ecd2c09af748670be
2013-07-19 00:30:52    --------    d-----w-    C:\3c8965324af8f787de1b771fa3
2013-07-19 00:30:01    --------    d-----w-    C:\e63e4a8d798d0f751ae08625746c81
2013-07-19 00:21:33    --------    d-----w-    C:\a455d701f7a23c966cb031ff76
2013-07-18 09:19:25    --------    d-----w-    C:\0bb78b01fdeccdf4891960d6
2013-07-17 21:04:13    --------    d-----w-    c:\documents and settings\tammy\application data\ScanSpyware
2013-07-17 20:38:54    40776    ----a-w-    c:\windows\system32\drivers\mbamswissarmy.sys
2013-07-17 16:58:35    --------    d-----w-    c:\documents and settings\tammy\application data\SUPERAntiSpyware.com
2013-07-17 16:58:02    --------    d-----w-    c:\program files\SUPERAntiSpyware
2013-07-17 16:58:02    --------    d-----w-    c:\documents and settings\all users\application data\SUPERAntiSpyware.com
2013-07-17 00:37:44    4188160    ----a-w-    c:\program files\GUT109.tmp
2013-07-17 00:37:44    --------    d-----w-    c:\program files\GUM108.tmp
2013-07-16 23:45:19    --------    d-----w-    c:\windows\system32\wbem\repository\FS
2013-07-16 23:45:19    --------    d-----w-    c:\windows\system32\wbem\Repository
2013-07-16 23:33:11    --------    d--h--w-    C:\$AVG
2013-07-16 23:33:07    --------    d-----w-    c:\documents and settings\tammy\local settings\application data\Avg2013
2013-07-16 23:33:07    --------    d-----w-    c:\documents and settings\tammy\application data\AVG2013
2013-07-16 23:32:08    --------    d-----w-    c:\documents and settings\all users\application data\AVG2013
2013-07-16 23:26:06    --------    d--h--w-    c:\windows\ie8
2013-07-16 23:06:05    --------    d-----w-    c:\program files\iPod
2013-07-16 23:06:03    --------    d-----w-    c:\program files\iTunes
2013-07-11 09:05:00    --------    d-----w-    C:\a92bed5abb943c395008
2013-07-11 04:11:34    --------    d-----w-    C:\77c2f43581e1fca10f9635f3ee1643ed
2013-07-11 03:54:25    --------    dc----w-    c:\windows\ie8(2)
2013-07-07 21:16:38    --------    d-----w-    c:\documents and settings\tammy\application data\AVG2013(2)
2013-07-07 21:12:27    --------    d-----w-    C:\$AVG(2)
2013-07-07 21:12:26    --------    d-----w-    c:\documents and settings\all users\application data\AVG2013(2)
2013-07-07 21:07:36    --------    d-----w-    c:\documents and settings\tammy\local settings\application data\Avg2013(2)
2013-07-07 04:13:41    --------    d-----w-    c:\windows\system32\Adobe
2013-07-05 05:36:18    --------    d-----w-    c:\documents and settings\tammy\application data\SpeedAnalysis2
2013-07-05 05:36:15    --------    d-----w-    c:\documents and settings\tammy\application data\PlusWinks
2013-07-01 20:50:49    --------    d-----w-    c:\program files\Java(2)
.
==================== Find3M  ====================
.
2013-06-12 21:05:29    71048    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-12 21:05:29    692104    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2013-06-08 04:55:44    385024    ----a-w-    c:\windows\system32\html.iec
2013-06-07 21:56:06    920064    ----a-w-    c:\windows\system32\wininet.dll
2013-06-07 21:56:06    43520    ----a-w-    c:\windows\system32\licmgr10.dll
2013-06-07 21:56:05    1469440    ----a-w-    c:\windows\system32\inetcpl.cpl
2013-06-04 07:23:02    562688    ----a-w-    c:\windows\system32\qedit.dll
2013-06-04 01:40:45    1876736    ----a-w-    c:\windows\system32\win32k.sys
2013-05-22 01:31:43    37664    ----a-w-    c:\windows\system32\drivers\avgtpx86.sys
2013-05-03 01:26:26    2193536    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-05-03 00:38:18    2070144    ----a-w-    c:\windows\system32\ntkrnlpa.exe
2013-04-25 22:41:22    810496    ----a-w-    c:\windows\system32\wmvdmod.dll
.
============= FINISH: 20:55:11.28 ===============
 

 

 

 

I cannot attach my zip file. I keep getting the this error message: Error You aren't permitted to upload this kind of file

 



BC AdBot (Login to Remove)

 


#2 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:49 AM

Posted 19 July 2013 - 12:39 AM

Hi there,
my name is Marius and I will be assisting you with your Malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

 

 

 

 

Scan with Gmer rootkit scanner

Please download Gmer from here by clicking on the "Download EXE" Button.

  • Double click on the randomly named GMER.exe. If asked to allow gmer.sys driver to load, please consent.
  • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.
  • In the right panel, you will see several boxes that have been checked. Uncheck the following ...
    • Sections
    • IAT/EAT
    • Show All ( should be unchecked by default )
  • Leave everything else as it is.
  • Close all other running programs as well as your Browser.
  • Click the Scan button & wait for it to finish.
  • Once done click on the Save.. button, and in the File name area, type in "ark.txt" or it will save as a .log file which cannot be uploaded to your post.
  • Save it where you can easily find it, such as your desktop.
  • Please post the content of the ark.txt here.

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#3 THtweey

THtweey
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:AL
  • Local time:02:49 AM

Posted 19 July 2013 - 08:23 PM

Thank you so much. And I appologise for the seeming slowness, but it literally took from 10:30 am this morning until about an hour ago to do the scan. Everything is that slow to load and work on my computer right now. Following is the ark log created as requested:

 

GMER 2.1.19163 - http://www.gmer.net
Rootkit scan 2013-07-19 20:09:41
Windows 5.1.2600 Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e WDC_WD800JD-75HKA1 rev.14.03G14 74.51GB
Running: ywx00nhw.exe; Driver: C:\DOCUME~1\Tammy\LOCALS~1\Temp\fwkdifow.sys


---- System - GMER 2.1 ----

SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                                   ZwNotifyChangeKey [0xF98F75D0]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                                   ZwNotifyChangeMultipleKeys [0xF98F7700]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                                   ZwOpenProcess [0xF98F7010]
SSDT            \??\C:\WINDOWS\system32\drivers\avgtpx86.sys                                                                                   ZwQueryValueKey [0xAA22B1D6]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                                   ZwSuspendProcess [0xF98F7300]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                                   ZwSuspendThread [0xF98F73E0]
SSDT            \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS                                                                             ZwTerminateProcess [0xA73D1640]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                                   ZwTerminateThread [0xF98F7210]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                                   ZwWriteVirtualMemory [0xF98F74D0]

---- Devices - GMER 2.1 ----

AttachedDevice  \Driver\Tcpip \Device\Ip                                                                                                       avgtdix.sys
AttachedDevice  \Driver\Tcpip \Device\Tcp                                                                                                      avgtdix.sys
AttachedDevice  \Driver\Tcpip \Device\Udp                                                                                                      avgtdix.sys
AttachedDevice  \Driver\Tcpip \Device\RawIp                                                                                                    avgtdix.sys
AttachedDevice  \FileSystem\Fastfat \Fat                                                                                                       fltmgr.sys

---- Registry - GMER 2.1 ----

Reg             HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch                                                                12179
Reg             HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7CB5D409-D175-4855-9478-BEB60A6BED6B}@LeaseObtainedTime    1374258884
Reg             HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7CB5D409-D175-4855-9478-BEB60A6BED6B}@T1                   1374260684
Reg             HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7CB5D409-D175-4855-9478-BEB60A6BED6B}@T2                   1374262034
Reg             HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7CB5D409-D175-4855-9478-BEB60A6BED6B}@LeaseTerminatesTime  1374262484
Reg             HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7CB5D409-D175-4855-9478-BEB60A6BED6B}@DhcpRetryTime        1790
Reg             HKLM\SYSTEM\CurrentControlSet\Services\{7CB5D409-D175-4855-9478-BEB60A6BED6B}\Parameters\Tcpip@LeaseObtainedTime               1374258884
Reg             HKLM\SYSTEM\CurrentControlSet\Services\{7CB5D409-D175-4855-9478-BEB60A6BED6B}\Parameters\Tcpip@T1                              1374260684
Reg             HKLM\SYSTEM\CurrentControlSet\Services\{7CB5D409-D175-4855-9478-BEB60A6BED6B}\Parameters\Tcpip@T2                              1374262034
Reg             HKLM\SYSTEM\CurrentControlSet\Services\{7CB5D409-D175-4855-9478-BEB60A6BED6B}\Parameters\Tcpip@LeaseTerminatesTime             1374262484
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update@UnableToDetectTime                                    2013-07-19 00:43:26
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Detect@LastSuccessTime                        2013-07-17 23:19:09
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Detect@LastError                              -2145107924

---- EOF - GMER 2.1 ----
 

Thank you! I'll await further instructions.



#4 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:49 AM

Posted 20 July 2013 - 05:15 AM

Post up the content of attach.txt in your next reply.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#5 THtweey

THtweey
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:AL
  • Local time:02:49 AM

Posted 20 July 2013 - 09:40 AM

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 1/24/2013 7:53:51 PM
System Uptime: 7/18/2013 8:35:37 PM (0 hours ago)
.
Motherboard: Dell Inc.           |  | 0G5611
Processor:               Intel® Pentium® 4 CPU 3.20GHz | Microprocessor | 3192/800mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 74 GiB total, 2.895 GiB free.
D: is CDROM (CDFS)
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Broadcom NetXtreme 57xx Gigabit Controller
Device ID: PCI\VEN_14E4&DEV_1677&SUBSYS_01791028&REV_01\4&1D7EFF9E&0&00E0
Manufacturer: Broadcom
Name: Broadcom NetXtreme 57xx Gigabit Controller
PNP Device ID: PCI\VEN_14E4&DEV_1677&SUBSYS_01791028&REV_01\4&1D7EFF9E&0&00E0
Service: b57w2k
.
==== System Restore Points ===================
.
RP190: 6/12/2013 10:22:19 PM - Removed Windows 7 Upgrade Advisor
RP191: 6/12/2013 10:24:06 PM - Removed Google Earth Plug-in.
RP192: 6/13/2013 4:00:40 AM - Software Distribution Service 3.0
RP193: 6/14/2013 4:54:34 AM - System Checkpoint
RP194: 6/15/2013 9:27:54 AM - System Checkpoint
RP195: 6/16/2013 10:07:14 AM - System Checkpoint
RP196: 6/17/2013 10:27:59 AM - System Checkpoint
RP197: 6/18/2013 11:04:03 AM - System Checkpoint
RP198: 6/19/2013 11:06:01 AM - System Checkpoint
RP199: 6/20/2013 12:20:23 PM - System Checkpoint
RP200: 6/21/2013 12:56:33 PM - System Checkpoint
RP201: 6/22/2013 3:00:43 PM - System Checkpoint
RP202: 6/23/2013 3:49:40 PM - System Checkpoint
RP203: 6/24/2013 7:15:30 PM - System Checkpoint
RP204: 6/25/2013 10:38:33 PM - System Checkpoint
RP205: 6/27/2013 2:28:24 AM - System Checkpoint
RP206: 6/28/2013 2:54:46 AM - Installed Finding Nemo: Nemo's Underwater World of Fun Special E
RP207: 6/29/2013 2:59:19 AM - System Checkpoint
RP208: 6/30/2013 5:41:15 PM - System Checkpoint
RP209: 7/1/2013 3:50:01 PM - Removed Java 7 Update 17
RP210: 7/1/2013 3:50:47 PM - Installed Java 7 Update 25
RP211: 7/3/2013 2:06:48 AM - System Checkpoint
RP212: 7/4/2013 3:21:27 AM - System Checkpoint
RP213: 7/5/2013 1:51:23 PM - Installed AVG 2013
RP214: 7/6/2013 2:59:21 PM - System Checkpoint
RP215: 7/7/2013 4:11:12 PM - Installed AVG 2013
RP216: 7/7/2013 4:11:50 PM - Installed AVG 2013
RP217: 7/9/2013 2:47:16 AM - System Checkpoint
RP218: 7/10/2013 3:03:53 AM - System Checkpoint
RP219: 7/10/2013 9:56:10 PM - Installed VIPdesk Scan Utility
RP220: 7/10/2013 10:57:15 PM - Installed Windows Internet Explorer 8.
RP221: 7/10/2013 11:09:47 PM - Software Distribution Service 3.0
RP222: 7/11/2013 4:02:03 AM - Software Distribution Service 3.0
RP223: 7/11/2013 4:15:17 AM - Software Distribution Service 3.0
RP224: 7/12/2013 5:12:02 AM - System Checkpoint
RP225: 7/13/2013 5:21:57 AM - System Checkpoint
RP226: 7/14/2013 5:36:36 AM - System Checkpoint
RP227: 7/15/2013 6:19:42 AM - System Checkpoint
RP228: 7/15/2013 5:23:46 PM - AVG Regisry Defrag - before defragmentation
RP229: 7/16/2013 5:08:13 PM - Removed iTunes
RP230: 7/16/2013 5:13:19 PM - Removed Apple Application Support
RP231: 7/16/2013 5:14:23 PM - Removed Apple Software Update
RP232: 7/16/2013 6:02:49 PM - Restore Operation
RP233: 7/17/2013 6:16:08 AM - Installed Qustodio
RP234: 7/18/2013 4:17:38 AM - Software Distribution Service 3.0
RP235: 7/18/2013 7:13:45 PM - Software Distribution Service 3.0
.
==== Installed Programs ======================
.
Adobe Digital Editions 2.0
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader XI (11.0.02)
Amazon Kindle
Apple Application Support
Apple Software Update
AVG 2013
CCleaner
gBurner
Google Chrome
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Windows XP (KB954550-v5)
ImgBurn
iTunes
Java 7 Update 21
Java Auto Updater
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Software Update for Web Folders  (English) 12
Microsoft VC9 runtime libraries
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Monopoly
Mozilla Firefox 21.0 (x86 en-US)
Mozilla Maintenance Service
Plants vs. Zombies
QuickTime
Ralink RT2870 Wireless LAN Card
Ralink RT6x Wireless LAN Card
ScanSpyware 3.9.2.2
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2761465)
Security Update for Windows Internet Explorer 8 (KB2792100)
Security Update for Windows Internet Explorer 8 (KB2797052)
Security Update for Windows Internet Explorer 8 (KB2799329)
Security Update for Windows Internet Explorer 8 (KB2809289)
Security Update for Windows Internet Explorer 8 (KB2817183)
Security Update for Windows Internet Explorer 8 (KB2829530)
Security Update for Windows Internet Explorer 8 (KB2838727)
Security Update for Windows Internet Explorer 8 (KB2846071)
Security Update for Windows Internet Explorer 8 (KB2847204)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2803821)
Security Update for Windows XP (KB2834886)
Security Update for Windows XP (KB2839229)
Security Update for Windows XP (KB2845187)
Security Update for Windows XP (KB2850851)
SUPERAntiSpyware
The Sims 2
Transcription Editor
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817327) 32-Bit Edition
Update for Windows Internet Explorer 8 (KB976662)
VLC media player 2.0.6
WebFldrs XP
WinZip 15.0
.
==== Event Viewer Messages From Past Week ========
.
7/18/2013 7:29:54 PM, error: Service Control Manager [7034]  - The AVG WatchDog service terminated unexpectedly.  It has done this 1 time(s).
7/18/2013 7:29:54 PM, error: Service Control Manager [7031]  - The AVG WatchDog service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.
7/18/2013 7:09:53 PM, error: Service Control Manager [7034]  - The AVGIDSAgent service terminated unexpectedly.  It has done this 1 time(s).
7/18/2013 7:06:15 PM, error: Service Control Manager [7034]  - The Application Layer Gateway Service service terminated unexpectedly.  It has done this 1 time(s).
7/18/2013 7:03:58 PM, error: Service Control Manager [7034]  - The WebClient service terminated unexpectedly.  It has done this 1 time(s).
7/18/2013 7:03:58 PM, error: Service Control Manager [7034]  - The vToolbarUpdater15.2.0 service terminated unexpectedly.  It has done this 1 time(s).
7/18/2013 6:47:52 PM, error: Service Control Manager [7001]  - The MBAMService service depends on the MBAMProtector service which failed to start because of the following error:  The system cannot find the file specified.
7/18/2013 6:47:52 PM, error: Service Control Manager [7000]  - The MBAMScheduler service failed to start due to the following error:  The system cannot find the path specified.
7/18/2013 6:47:52 PM, error: Service Control Manager [7000]  - The MBAMProtector service failed to start due to the following error:  The system cannot find the file specified.
7/17/2013 6:00:33 AM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008 x86 (KB2835393).
7/17/2013 5:34:59 AM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 3.5 SP1 on Windows XP, Server 2003, Vista, Server 2008 x86 (KB2840629).
7/17/2013 5:19:52 AM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2833940).
7/17/2013 5:17:30 AM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070652: Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817563).
7/17/2013 4:49:30 AM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070652: Security Update for Microsoft Office 2007 suites (KB2687309).
7/17/2013 4:30:26 AM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Server 2008 x86 (KB2832407).
7/17/2013 4:19:27 PM, error: DCOM [10005]  - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
7/17/2013 4:19:12 AM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008 x86 (KB2840628).
7/17/2013 4:07:45 AM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft Silverlight (KB2847559).
7/17/2013 4:07:19 AM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2844285).
7/17/2013 4:05:18 AM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 3.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2832411).
7/17/2013 3:28:51 PM, error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AVGIDSDriver AVGIDSShim Avgldx86 Fips intelppm SASDIFSV SASKUTIL
7/17/2013 3:28:35 PM, error: DCOM [10005]  - DCOM got error "%1084" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}
7/17/2013 3:28:16 PM, error: DCOM [10005]  - DCOM got error "%1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
7/17/2013 2:45:52 PM, error: Service Control Manager [7006]  - The ScRegSetValueExW call failed for FailureActions with the following error:  Access is denied.
7/16/2013 7:39:05 PM, error: sr [1]  - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume2'.  It has stopped monitoring the volume.
7/16/2013 7:16:37 PM, error: Service Control Manager [7024]  - The AVGIDSAgent service terminated with service-specific error 3758162040 (0xE0010078).
7/16/2013 7:02:35 PM, error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  Avgldx86
7/16/2013 7:02:35 PM, error: Service Control Manager [7024]  - The Java Quick Starter service terminated with service-specific error 1 (0x1).
7/16/2013 7:02:35 PM, error: Service Control Manager [7024]  - The AVGIDSAgent service terminated with service-specific error 3758213660 (0xE001CA1C).
7/16/2013 4:30:44 PM, error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  PCIIde
7/16/2013 4:29:13 PM, error: Service Control Manager [7009]  - Timeout (30000 milliseconds) waiting for the MBAMScheduler service to connect.
7/16/2013 4:29:13 PM, error: Service Control Manager [7000]  - The MBAMScheduler service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
7/16/2013 2:06:49 PM, error: DCOM [10005]  - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
7/16/2013 2:06:44 PM, error: DCOM [10005]  - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
7/16/2013 2:06:04 PM, error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFD AVGIDSDriver AVGIDSShim Avgldx86 Avgtdix Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip
7/16/2013 2:06:04 PM, error: Service Control Manager [7001]  - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error:  A device attached to the system is not functioning.
7/16/2013 2:06:04 PM, error: Service Control Manager [7001]  - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error:  A device attached to the system is not functioning.
7/16/2013 2:06:04 PM, error: Service Control Manager [7001]  - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:  A device attached to the system is not functioning.
7/16/2013 2:06:04 PM, error: Service Control Manager [7001]  - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error:  A device attached to the system is not functioning.
7/16/2013 2:06:04 PM, error: Service Control Manager [7001]  - The AVGIDSAgent service depends on the AVGIDSDriver service which failed to start because of the following error:  A device attached to the system is not functioning.
7/15/2013 6:06:46 PM, error: Service Control Manager [7000]  - The Scutum50 NDIS Protocol Driver service failed to start due to the following error:  The system cannot find the file specified.
7/15/2013 5:09:49 PM, error: Service Control Manager [7022]  - The AVGIDSAgent service hung on starting.
7/15/2013 3:01:47 PM, error: Service Control Manager [7009]  - Timeout (30000 milliseconds) waiting for the IMAPI CD-Burning COM Service service to connect.
7/15/2013 3:01:47 PM, error: Service Control Manager [7000]  - The IMAPI CD-Burning COM Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
.
==== End Of File ===========================
 



#6 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:49 AM

Posted 21 July 2013 - 07:40 AM

Download ComboFix from one of these locations:

Link 1
Link 2


* IMPORTANT- Save ComboFix.exe to your Desktop

====================================================


Disable your AntiVirus and AntiSpyware applications as they will interfere with our tools and the removal. If you are unsure how to do this, please refer to our sticky topic How to disable your security applications


====================================================


Double click on ComboFix.exe & follow the prompts.

  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.


RC_update.png


Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:


cfRC_screen_2.png


Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply for further review.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#7 THtweey

THtweey
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:AL
  • Local time:02:49 AM

Posted 21 July 2013 - 03:21 PM

Does ComboFix have to be loaded and scan in normal mode or can I try to run it in safe mode? The reason being is, I managed to get it downloaded, installed and started but it gave me the warning:

 

The following real time scanners are still active

AVG Internet Security 2013

 

I tried to disable AVG, but cannot get it disabled. When I try to end the process in Task Manager, I keep getting Access Denied. Please let me know what to do.  Thank you!



#8 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:49 AM

Posted 21 July 2013 - 11:34 PM

Try to run it in safe mode and ignore the messages.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#9 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:49 AM

Posted 25 July 2013 - 03:12 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users