Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Cannot Access Mcafee

Started by Leilou , Apr 25 2012 01:22 AM

  • Please log in to reply

#1
Leilou
Posted 25 April 2012 - 01:22 AM

Leilou

    New Member

  • Member
  • Pip
  • 1 posts
Hello there,

I was trying to watch some movies online yesterday-something I have not done before. Suddenly my computer started showing popups and redirecting me to sites I did not want. I tried to access Mcafee but I could not.I came to this website, downloaded combofix and spybot, I ran both of them but I still cannot access any antivirus website. I post the result of the combofix scan below. I would be really grateful if you could help me fix this problem. I have been a bit reckless not updating my antivirus, but after fixing this, I will make sure I do things by the book.

Thanks a lot for your help

ComboFix 12-04-24.05 - Training 04/25/2012 10:46:27.2.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.509 [GMT 4:00]
Running from: c:\documents and settings\Training\Desktop\123.exe
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\data
c:\data\default\us_sres.data
c:\documents and settings\All Users\Application Data\HBLiteSA
c:\documents and settings\Training\Application Data\HBLite
c:\program files\HBLite
c:\program files\HBLite\bin\12.0.2.0\HBLiteSAHook.dll
c:\program files\QuestScan
c:\program files\QuestScan\QuestScan_deleted_\questscan.dll
c:\program files\QuestScan\QuestScan_deleted_\questscan.exe
c:\program files\QuestScan\uninstall.exe
c:\program files\ShoppingReport2
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_QUESTSCAN_SERVICE
-------\Service_QuestScan Service
.
.
((((((((((((((((((((((((( Files Created from 2012-03-25 to 2012-04-25 )))))))))))))))))))))))))))))))
.
.
2012-04-24 21:25 . 2012-04-25 06:31 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2012-04-24 21:25 . 2012-04-24 21:25 -------- d-----w- c:\program files\Spybot - Search & Destroy
2012-04-24 19:47 . 2012-04-24 19:47 -------- d-----w- c:\documents and settings\Training\Local Settings\Application Data\Ilivid Player
2012-04-24 19:47 . 2012-04-24 19:47 -------- d-----w- c:\documents and settings\Training\AppData
2012-04-24 19:47 . 2012-04-24 19:47 -------- d-----w- c:\documents and settings\Training\Application Data\searchquband
2012-04-24 19:45 . 2012-04-24 19:45 -------- d-----w- c:\documents and settings\All Users\Application Data\boost_interprocess
2012-04-24 15:15 . 2012-04-24 15:15 -------- d-----w- c:\program files\Graboid
2012-04-18 19:59 . 2012-04-18 19:59 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-04-18 19:59 . 2012-04-18 19:59 418464 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-04-10 20:24 . 2012-04-10 20:24 -------- d-----w- c:\documents and settings\Training\Application Data\PDAppFlex
2012-04-09 20:25 . 2012-04-09 20:25 -------- d-----w- c:\documents and settings\Training\Application Data\com.adobe.downloadassistant.AdobeDownloadAssistant
2012-04-09 20:24 . 2012-04-09 20:24 -------- d-----w- c:\program files\Adobe Download Assistant
2012-04-05 09:02 . 2012-04-05 09:02 -------- d-----w- c:\documents and settings\Training\Local Settings\Application Data\WinZip Courier
2012-04-05 08:47 . 2012-04-05 08:47 -------- d-----w- c:\program files\Kaspersky Security Scan
2012-04-05 08:40 . 2012-04-05 08:40 -------- d-----w- c:\documents and settings\All Users\Application Data\WinZipEC
2012-04-05 08:40 . 2012-04-05 08:40 -------- d-----w- c:\program files\WinZip Courier
2012-04-05 08:40 . 2012-04-05 08:40 -------- d-----w- c:\windows\CD95F661A5C411AFB2CCABCD21A325B8.TMP
2012-04-05 08:39 . 2012-04-05 08:39 -------- d-----w- c:\program files\Conduit
2012-04-05 08:39 . 2012-04-24 13:33 -------- d-----w- c:\documents and settings\Training\Local Settings\Application Data\WinZipBar
2012-04-05 08:39 . 2012-04-05 08:39 -------- d-----w- c:\documents and settings\Training\Local Settings\Application Data\Conduit
2012-04-05 08:39 . 2012-04-05 08:47 -------- d-----w- c:\program files\WinZipBar
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-16 09:26 . 2012-02-16 09:26 36864 ----a-w- c:\windows\system32\pdf995mon.dll
2012-02-16 09:26 . 2012-02-16 09:26 1665536 ----a-w- c:\windows\system32\pdfmona.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-07-08_20.17.37 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-06-26 15:07 . 2009-06-26 15:07 59712 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_15fb92d3\mfc90rus.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 42816 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_15fb92d3\mfc90kor.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 43328 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_15fb92d3\mfc90jpn.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 61248 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_15fb92d3\mfc90ita.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 62784 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_15fb92d3\mfc90fra.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 61760 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_15fb92d3\mfc90esp.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 61760 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_15fb92d3\mfc90esn.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 53568 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_15fb92d3\mfc90enu.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 63296 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_15fb92d3\mfc90deu.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 36672 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_15fb92d3\mfc90cht.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 35648 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_15fb92d3\mfc90chs.dll
+ 2009-06-26 15:10 . 2009-06-26 15:10 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_a57b1f13\mfcm90u.dll
+ 2009-06-26 15:10 . 2009-06-26 15:10 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_a57b1f13\mfcm90.dll
+ 2007-11-06 18:51 . 2007-11-06 18:51 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_a173767a\mfcm90u.dll
+ 2007-11-06 18:51 . 2007-11-06 18:51 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_a173767a\mfcm90.dll
+ 2006-12-01 20:26 . 2006-12-01 20:26 57856 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll
+ 2006-12-01 20:25 . 2006-12-01 20:25 69632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll
+ 2012-02-16 09:26 . 2012-02-16 09:26 37888 c:\windows\system32\spool\drivers\w32x86\pdf995ui5.DLL
+ 2012-02-16 09:26 . 2012-02-16 09:26 37888 c:\windows\system32\spool\drivers\w32x86\3\pdf995ui5.DLL
+ 2010-10-25 11:13 . 2010-10-25 11:13 33680 c:\windows\system32\spool\drivers\w32x86\3\ADREGP.DLL
+ 2010-10-25 11:13 . 2010-10-25 11:13 22936 c:\windows\system32\spool\drivers\w32x86\3\AdobePDFUI.dll
+ 2010-10-25 11:13 . 2010-10-25 11:13 47512 c:\windows\system32\spool\drivers\w32x86\3\AdobePdf.dll
+ 2008-04-14 12:00 . 2012-04-25 06:32 68806 c:\windows\system32\perfc009.dat
- 2008-04-14 12:00 . 2011-07-08 20:13 68806 c:\windows\system32\perfc009.dat
+ 2010-10-25 11:13 . 2010-10-25 11:13 54680 c:\windows\system32\MFC71KOR.DLL
+ 2010-10-25 11:13 . 2010-10-25 11:13 54680 c:\windows\system32\MFC71JPN.DLL
+ 2010-10-25 11:13 . 2010-10-25 11:13 66968 c:\windows\system32\MFC71ITA.DLL
+ 2010-10-25 11:13 . 2010-10-25 11:13 66968 c:\windows\system32\MFC71FRA.DLL
+ 2010-10-25 11:13 . 2010-10-25 11:13 66968 c:\windows\system32\MFC71ESP.DLL
+ 2010-10-25 11:13 . 2010-10-25 11:13 62872 c:\windows\system32\MFC71ENU.DLL
+ 2010-10-25 11:13 . 2010-10-25 11:13 71064 c:\windows\system32\MFC71DEU.DLL
+ 2010-10-25 11:13 . 2010-10-25 11:13 50584 c:\windows\system32\MFC71CHT.DLL
+ 2010-10-25 11:13 . 2010-10-25 11:13 46488 c:\windows\system32\MFC71CHS.DLL
+ 2006-05-24 14:57 . 2006-05-24 14:57 45683 c:\windows\system32\drivers\btwhid.sys
+ 2010-04-04 16:36 . 2012-03-18 15:11 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
- 2010-04-04 16:36 . 2010-04-04 16:36 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
- 2010-04-04 16:36 . 2010-04-04 16:36 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2010-04-04 16:36 . 2012-03-18 15:11 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2010-04-04 16:36 . 2010-04-04 16:36 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2012-01-28 12:04 . 2012-03-18 15:11 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2010-10-25 11:13 . 2010-10-25 11:13 94608 c:\windows\system32\atl71.dll
+ 2011-10-15 10:50 . 2011-10-15 10:50 24064 c:\windows\Installer\aab8a.msi
+ 2012-04-09 20:54 . 2012-04-09 20:54 29184 c:\windows\Installer\35d9c4.msi
+ 2011-09-17 18:00 . 2011-09-17 18:00 28160 c:\windows\Installer\2059c41.msi
+ 2012-04-09 20:24 . 2012-04-09 20:24 21504 c:\windows\Installer\1d8a65.msi
+ 2012-03-22 06:11 . 2012-03-22 06:11 22016 c:\windows\Installer\1885da.msi
+ 2012-04-09 20:51 . 2012-04-09 20:51 10134 c:\windows\Installer\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}\ARPPRODUCTICON.exe
+ 2012-04-09 20:51 . 2012-04-09 20:51 10134 c:\windows\Installer\{D1A19B02-817E-4296-A45B-07853FD74D57}\ARPPRODUCTICON.exe
+ 2012-04-09 20:52 . 2012-04-09 20:52 10134 c:\windows\Installer\{B6D38690-755E-4F40-A35A-23F8BC2B86AC}\ARPPRODUCTICON.exe
+ 2012-04-09 20:51 . 2012-04-09 20:51 10134 c:\windows\Installer\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}\ARPPRODUCTICON.exe
+ 2012-04-09 20:52 . 2012-04-09 20:52 10134 c:\windows\Installer\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}\ARPPRODUCTICON.exe
+ 2012-04-09 20:55 . 2012-04-09 20:55 10134 c:\windows\Installer\{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}\ARPPRODUCTICON.exe
+ 2012-04-09 20:51 . 2012-04-09 20:51 10134 c:\windows\Installer\{08D2E121-7F6A-43EB-97FD-629B44903403}\ARPPRODUCTICON.exe
+ 2012-04-09 20:52 . 2012-04-09 20:52 10134 c:\windows\Installer\{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}\ARPPRODUCTICON.exe
+ 2011-06-06 08:55 . 2011-06-06 08:55 17304 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\ViewerPS.dll
+ 2011-06-06 08:55 . 2011-06-06 08:55 35736 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\reader_sl.exe
+ 2011-06-06 08:55 . 2011-06-06 08:55 88992 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\PDFPrevHndlr.dll
+ 2011-06-06 08:55 . 2011-06-06 08:55 94608 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\eula.exe
+ 2011-06-06 08:55 . 2011-06-06 08:55 49064 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\acrotextextractor.exe
+ 2011-06-06 08:55 . 2011-06-06 08:55 17824 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\AcroRd32Info.exe
+ 2011-06-06 08:55 . 2011-06-06 08:55 63912 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\acroiehelpershim.dll
+ 2011-06-06 08:55 . 2011-06-06 08:55 64928 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\AcroIEHelper.dll
+ 2011-06-06 08:55 . 2011-06-06 08:55 63384 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\Acrofx32.dll
+ 2012-04-05 08:47 . 2012-04-05 08:47 4710 c:\windows\Installer\{5D4875F6-89D1-4E9C-B7B9-9164C9D20C9C}\uninstall.1.0.0.500.ico.exe
+ 2012-04-05 08:47 . 2012-04-05 08:47 4710 c:\windows\Installer\{5D4875F6-89D1-4E9C-B7B9-9164C9D20C9C}\MmDefaultProductIcon.1.0.0.500.ico.exe
+ 2009-06-26 15:07 . 2009-06-26 15:07 653120 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_d494ac0e\msvcr90.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 569664 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_d494ac0e\msvcp90.dll
+ 2009-06-26 15:10 . 2009-06-26 15:10 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_d494ac0e\msvcm90.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 159032 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_35349982\atl90.dll
+ 2007-11-06 21:19 . 2007-11-06 21:19 161784 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_312cf0e9\atl90.dll
+ 2011-07-09 20:02 . 2011-05-30 13:42 240640 c:\windows\system32\xvidvfw.dll
+ 2011-07-09 20:02 . 2011-05-23 07:46 645632 c:\windows\system32\xvidcore.dll
+ 2012-02-16 09:26 . 2012-02-16 09:26 470608 c:\windows\system32\spool\drivers\w32x86\pscript5-32.dll
+ 2012-02-16 09:26 . 2012-02-16 09:26 225648 c:\windows\system32\spool\drivers\w32x86\Pscript.dll
+ 2012-02-16 09:26 . 2012-02-16 09:26 218816 c:\windows\system32\spool\drivers\w32x86\Pdf995ui.dll
+ 2012-02-16 09:26 . 2012-02-16 09:26 135248 c:\windows\system32\spool\drivers\w32x86\pdf995ps5ui.dll
+ 2012-04-17 11:44 . 2008-04-14 01:42 543232 c:\windows\system32\spool\drivers\w32x86\3\PSCRIPT5.DLL
+ 2012-02-16 09:26 . 2012-02-16 09:26 470608 c:\windows\system32\spool\drivers\w32x86\3\pscript5-32.dll
+ 2012-04-17 11:44 . 2008-04-14 01:42 728576 c:\windows\system32\spool\drivers\w32x86\3\PS5UI.DLL
+ 2012-02-16 09:26 . 2012-02-16 09:26 135248 c:\windows\system32\spool\drivers\w32x86\3\pdf995ps5ui.dll
+ 2010-10-25 11:13 . 2010-10-25 11:13 446864 c:\windows\system32\spool\drivers\w32x86\3\ADUIGP.DLL
+ 2008-04-14 12:00 . 2012-04-25 06:32 436328 c:\windows\system32\perfh009.dat
- 2008-04-14 12:00 . 2011-07-08 20:13 436328 c:\windows\system32\perfh009.dat
+ 2010-10-25 11:13 . 2010-10-25 11:13 353680 c:\windows\system32\msvcr71.dll
+ 2010-10-25 11:13 . 2010-10-25 11:13 505232 c:\windows\system32\msvcp71.dll
+ 2012-04-18 19:59 . 2012-04-18 19:59 353440 c:\windows\system32\Macromed\Flash\FlashUtil32_11_2_202_233_ActiveX.exe
+ 2012-04-18 19:59 . 2012-04-18 19:59 424608 c:\windows\system32\Macromed\Flash\FlashUtil32_11_2_202_233_ActiveX.dll
+ 2012-04-18 19:59 . 2012-04-18 19:59 253088 c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
+ 2011-08-13 13:15 . 2004-07-13 22:05 356431 c:\windows\system32\GDS32.DLL
+ 2012-04-09 20:55 . 2012-04-09 20:55 356352 c:\windows\Installer\35d9ca.msi
+ 2012-04-09 20:52 . 2012-04-09 20:52 319488 c:\windows\Installer\35d9be.msi
+ 2012-04-09 20:52 . 2012-04-09 20:52 315392 c:\windows\Installer\35d9b8.msi
+ 2012-04-09 20:52 . 2012-04-09 20:52 316928 c:\windows\Installer\35d9b2.msi
+ 2012-04-09 20:51 . 2012-04-09 20:51 356864 c:\windows\Installer\35d9ac.msi
+ 2012-04-09 20:51 . 2012-04-09 20:51 359424 c:\windows\Installer\35d9a6.msi
+ 2012-04-09 20:51 . 2012-04-09 20:51 356352 c:\windows\Installer\35d9a0.msi
+ 2012-04-09 20:51 . 2012-04-09 20:51 316416 c:\windows\Installer\35d99a.msi
+ 2012-04-05 08:40 . 2012-04-05 08:40 185344 c:\windows\Installer\{CD95F661-A5C4-11AF-B2CC-ABCD21A325B8}\IconCD95F6612.exe
+ 2012-04-05 08:40 . 2012-04-05 08:40 374784 c:\windows\Installer\{CD95F661-A5C4-11AF-B2CC-ABCD21A325B8}\IconCD95F6611.exe
+ 2011-09-21 13:07 . 2012-01-31 16:07 102400 c:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
+ 2012-04-05 08:47 . 2012-04-05 08:47 105984 c:\windows\Installer\{5D4875F6-89D1-4E9C-B7B9-9164C9D20C9C}\url.1.0.0.500.dll
+ 2012-04-05 08:47 . 2012-04-05 08:47 175985 c:\windows\Installer\{5D4875F6-89D1-4E9C-B7B9-9164C9D20C9C}\ico_kss.1.0.0.500.ico.exe
+ 2011-06-06 08:55 . 2011-06-06 08:55 249232 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\sqlite.dll
+ 2011-06-06 08:55 . 2011-06-06 08:55 394136 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\pdfshell.dll
+ 2011-06-06 08:55 . 2011-06-06 08:55 103848 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\PDFPrevHndlrShim.exe
+ 2011-06-06 08:55 . 2011-06-06 08:55 183696 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\nppdf32.dll
+ 2011-06-06 08:55 . 2011-06-06 08:55 104344 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\AiodLite.dll
+ 2011-06-06 08:55 . 2011-06-06 08:55 937920 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\adobearm.exe
+ 2011-06-06 08:55 . 2011-06-06 08:55 102808 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\AcroRdIF.dll
+ 2011-06-06 08:55 . 2011-06-06 08:55 755088 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\AcroPDF.dll
+ 2011-06-06 08:55 . 2011-06-06 08:55 296344 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\acrobroker.exe
+ 2011-06-06 08:55 . 2011-06-06 08:55 205720 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\a3dutils.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 3780416 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_a57b1f13\mfc90u.dll
+ 2009-06-26 15:07 . 2009-06-26 15:07 3765048 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_a57b1f13\mfc90.dll
+ 2007-11-06 21:19 . 2007-11-06 21:19 1162744 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_a173767a\mfc90u.dll
+ 2007-11-06 21:19 . 2007-11-06 21:19 1156600 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_a173767a\mfc90.dll
+ 2006-12-01 20:25 . 2006-12-01 20:25 1093120 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll
+ 2006-12-01 20:25 . 2006-12-01 20:25 1101824 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll
+ 2010-10-25 11:13 . 2010-10-25 11:13 1053072 c:\windows\system32\mfc71u.dll
+ 2010-10-25 11:13 . 2010-10-25 11:13 1066384 c:\windows\system32\mfc71.dll
+ 2010-04-04 18:47 . 2012-04-18 10:29 3566280 c:\windows\system32\FNTCACHE.DAT
+ 2012-04-05 08:47 . 2012-04-05 08:47 1060864 c:\windows\Installer\927f63.msi
+ 2012-04-05 08:40 . 2012-04-05 08:40 1785344 c:\windows\Installer\927f5d.msi
+ 2012-01-31 16:07 . 2012-01-31 16:07 2283520 c:\windows\Installer\18b1877.msi
+ 2012-04-18 10:49 . 2012-04-18 10:49 2295808 c:\windows\Installer\121459.msi
+ 2011-06-06 08:55 . 2011-06-06 08:55 2215312 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\rt3d.dll
+ 2011-06-06 08:55 . 2011-06-06 08:55 1189004 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\JSByteCodeWin.bin
+ 2011-06-06 08:55 . 2011-06-06 08:55 6543768 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\authplay.dll
+ 2011-06-06 08:55 . 2011-06-06 08:55 1240992 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\AdobeCollabSync.exe
+ 2011-06-06 08:55 . 2011-06-06 08:55 1480600 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\AcroRd32.exe
+ 2012-01-03 17:44 . 2012-01-03 17:44 15929344 c:\windows\Installer\7983bb.msp
+ 2012-04-04 11:17 . 2012-04-04 11:17 16613376 c:\windows\Installer\12145a.msp
+ 2011-06-06 08:55 . 2011-06-06 08:55 24731544 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\AcroRd32.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-01-03 1514152]
"{50fafaf0-70a9-419d-a109-fa4b4ffd4e37}"= "c:\program files\WinZipBar\prxtbWin0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
.
[HKEY_CLASSES_ROOT\clsid\{50fafaf0-70a9-419d-a109-fa4b4ffd4e37}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{50fafaf0-70a9-419d-a109-fa4b4ffd4e37}]
2011-05-09 08:49 176936 ----a-w- c:\program files\WinZipBar\prxtbWin0.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2012-01-03 13:31 1514152 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-01-03 1514152]
"{50fafaf0-70a9-419d-a109-fa4b4ffd4e37}"= "c:\program files\WinZipBar\prxtbWin0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CLASSES_ROOT\clsid\{50fafaf0-70a9-419d-a109-fa4b4ffd4e37}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-01-03 1514152]
"{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}"= "c:\program files\WinZipBar\prxtbWin0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CLASSES_ROOT\clsid\{50fafaf0-70a9-419d-a109-fa4b4ffd4e37}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Messenger (Yahoo!)"="c:\progra~1\Yahoo!\Messenger\YahooMessenger.exe" [2010-06-01 5252408]
"CrossRiderPlugin"="c:\program files\CrossriderWebApps\Crossrider.exe" [2011-05-15 478720]
"Xvid"="c:\program files\Xvid\CheckUpdate.exe" [2011-01-17 8192]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-10-15 39408]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SigmatelSysTrayApp"="c:\program files\SigmaTel\C-Major Audio\WDM\stsystra.exe" [2007-05-10 405504]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-08 761947]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-03-30 138008]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-03-30 162584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-03-30 138008]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2007-10-09 2183168]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"ApnUpdater"="c:\program files\Ask.com\Updater\Updater.exe" [2012-01-03 1391272]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-04-04 843712]
.
c:\documents and settings\Training\Start Menu\Programs\Startup\
fliptoast.lnk - c:\program files\fliptoast\fliptoast.exe [N/A]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2006-5-24 622653]
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2010-4-5 24576]
Kaspersky Security Scan.lnk - c:\program files\Kaspersky Security Scan\KSS.exe [2010-11-29 2402696]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\FinalMediaPlayer\\FMPCheckForUpdates.exe"=
"c:\\Program Files\\TeamViewer\\Version5\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version5\\TeamViewer_Service.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"2588:TCP"= 2588:TCP:xdwvtw
.
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [10/15/2011 2:50 PM 136176]
S2 OracleOraDb10g_home1TNSListener;OracleOraDb10g_home1TNSListener;c:\oracle\product\10.2.0\db_1\BIN\TNSLSNR --> c:\oracle\product\10.2.0\db_1\BIN\TNSLSNR [?]
S2 OracleServiceORCL;OracleServiceORCL;c:\oracle\product\10.2.0\db_1\bin\ORACLE.EXE ORCL --> c:\oracle\product\10.2.0\db_1\bin\ORACLE.EXE ORCL [?]
S2 sknopdb;Windows Helper;c:\windows\system32\svchost.exe -k netsvcs [4/14/2008 4:00 PM 14336]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [4/18/2012 11:59 PM 253088]
S3 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_1_5\bin\fbguard.exe -s --> c:\program files\Firebird\Firebird_1_5\bin\fbguard.exe -s [?]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_1_5\bin\fbserver.exe -s --> c:\program files\Firebird\Firebird_1_5\bin\fbserver.exe -s [?]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [10/15/2011 2:50 PM 136176]
S4 OracleJobSchedulerORCL;OracleJobSchedulerORCL;c:\oracle\product\10.2.0\db_1\Bin\extjob.exe ORCL --> c:\oracle\product\10.2.0\db_1\Bin\extjob.exe ORCL [?]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
sknopdb
.
Contents of the 'Scheduled Tasks' folder
.
2012-04-25 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-18 19:59]
.
2012-04-25 c:\windows\Tasks\Final Media Player Update Checker.job
- c:\program files\FinalMediaPlayer\FMPCheckForUpdates.exe [2011-09-17 12:24]
.
2012-04-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-10-15 10:50]
.
2012-04-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-10-15 10:50]
.
2012-04-25 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2012-01-03 13:31]
.
2012-04-25 c:\windows\Tasks\User_Feed_Synchronization-{C6A0FFE3-F4AC-4DBF-878E-4DD5EEABBA52}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 01:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.co.uk/
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Append Link Target to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
TCP: DhcpNameServer = 192.168.0.1
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-10 - (no file)
HKLM-Run-HBLiteSA - c:\program files\hblite\bin\12.0.2.0\HBLiteSA.exe
AddRemove-ARO 2011_is1 - c:\program files\ARO 2011\unins000.exe
AddRemove-QuestScan - c:\program files\QuestScan\uninstall.exe
AddRemove-{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA} - c:\documents and settings\All Users\Application Data\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}\bm_installer.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-04-25 10:51
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\OracleOraDb10g_home1TNSListener]
"ImagePath"="c:\oracle\product\10.2.0\db_1\BIN\TNSLSNR "
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\sknopdb]
"ServiceDll"="c:\windows\system32\iucaulz.dll"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(932)
c:\windows\System32\BCMLogon.dll
.
- - - - - - - > 'explorer.exe'(3616)
c:\windows\system32\WININET.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCR80.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\System32\WLTRYSVC.EXE
c:\windows\System32\bcmwltry.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\Yahoo!\SoftwareUpdate\YahooAUService.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\igfxsrvc.exe
c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
c:\progra~1\Yahoo!\Messenger\ymsgr_tray.exe
.
**************************************************************************
.
Completion time: 2012-04-25 10:54:04 - machine was rebooted
ComboFix-quarantined-files.txt 2012-04-25 06:54
ComboFix2.txt 2011-07-08 20:18
.
Pre-Run: 20,012,929,024 bytes free
Post-Run: 22,597,439,488 bytes free
.
- - End Of File - - F6C9C10C80B6AA7B56CD5A30F50C72E0
  • 0

Advertisements

#2
RKinner
Posted 25 April 2012 - 05:21 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
Copy the text between the lines of stars by highlighting and Ctrl + c.

******************************************

Killall::

AtJob::

DirLook::
C:\Program Files\Common
%user%\library

File::
c:\windows\system32\iucaulz.dll
c:\windows\Tasks\Scheduled Update for Ask Toolbar.job

Driver::
sknopdb

Registry::
[-HKEY_LOCAL_MACHINE\System\ControlSet001\Services\sknopdb]

******************************************

Now open notepad (Start, Run, notepad, OK) and Ctrl + V to paste the text into Notepad. Make sure you got it all then File, SAVE AS, (to your Desktop), CFScript , OK. Close notepad. (Overwrite the old one if it's still there.) You should see a file CFScript.txt on your desktop.

Pause your anti-virus.

Drag CFScript.txt over to Combofix and let go Combofix should start on its own.

Post the new log.

Download TDSSKiller:
http://support.kaspe.../tdsskiller.exe
Save it to your desktop then run it.
Double click on TDSSKiller.exe (Vista or Win 7 must right click and Run As Admin)
If TDSSKiller alerts you that the system needs to reboot, please consent.
When done, a log file should be created on your C: drive named "TDSSKiller.txt" please copy and paste the contents in your next reply.


Run TDSSKiller again but this time:
before you hit the Scan hit Change Parameters and check the two items under Additional Options. OK then Scan.
In this mode it is prone to false positives so do not change the SKIP option to DELETE unless it says TDSS.
When done, a log file should be created on your C: drive named "TDSSKiller.txt" please copy and paste the contents in your next reply.


Download aswMBR.exe ( 511KB ) to your desktop.
Double click aswMBR.exe
uncheck trace disk IO calls
Click the "Scan" button to start scan (Accept the Avast Engine)
On completion of the scan if the Fix button is enabled (not the FixMBR button) press it and then run a new scan and click save log, save it to your desktop and post in your next reply
If the Fix button is not enabled then just click save log, save it to your desktop and post in your next reply



Malwarebytes' Anti-Malware
:!: If you have a previous version of MalwareBytes', remove it via Add or Remove Programs and download a fresh copy. :!:
http://www.malwareby...lwarebytes_free

SAVE Malwarebytes' Anti-Malware to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.

* Be sure that everything is checked, and click Remove Selected.

* When completed, a log will open in Notepad. Please save it to a convenient location.
* The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt
* Post that log back here.


Copy the text in the code box:


nnetsvcs
%SYSTEMDRIVE%\*.exe
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.exe
%APPDATA%\*.
/md5start
atapi.sys
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
consrv.dll
/md5stop
%systemroot%\*. /mp /s
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
CREATERESTOREPOINT

Run OTL (Vista or Win 7 => right click and Run As Administrator)

Paste (Ctrl + v) the copied text in the box where it says Custom Scan/Fixes

Select the All option in the Extra Registry group then Run Scan.

You should get two logs. Please copy and paste both of them.


Right click on (My) Computer and select Manage (Continue) Then the Event Viewer. Next select Windows Logs. Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.


1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Double-click VEW.exe
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.

Ron
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP