It's Cyber Monday - fantastic 70% discount

Buy Now

Limited time offer:

03

Days

/

00

Hrs

/

04

Min

/

04

Sec

Possible Phishing Virus

Posted 12/15/2012 1:27 AM
#94819
User avatar

Chooxen Member

Date Joined Nov 2016
Total Posts: 2
Hello there. <br/> <br/>I believe my laptop has a virus. <br/> <br/>For a start, it won't let me access most well-known antivirus websites. When I click links to them, it 404s or goes to Google homepage. I managed to download Bullguard, but it won't let me install it. <br/> <br/>The virus seems to have a practical purpose of phishing credit card information out of me when I log on to Facebook. I was having trouble getting some of Facebook's features to function in Chrome so logged on in IE and got redirected to this screen: <br/>http://i.imgur.com/17SyO.jpg <br/> <br/>The same happened in Firefox after I downloaded that. No issues in IE 64-bit funnily enough. <br/> <br/>I'm looking for advice as to how to remove this, if anyone would be so kind as to help. <br/> <br/>Thanks in advance, <br/>Ben
Posted 12/15/2012 7:12 AM
#94821
User avatar

Touch Advanced member

Date Joined Nov 2016
Total Posts: 12976
Hi Ben :-) <br/> <br/> <br/> <br/>Please follow this guide: <br/> <br/>[url] http://forum.bullguard.com/forum/9/Before-posting-a-log_43562.html [/url]

[color=black face="Courier New" sab="311">[2]Click here: Before-posting-a-log[/2][/url]

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
[/color]
Do not PM me with logfiles. They will be deleted.


Posted 12/15/2012 5:12 PM
#94823
User avatar

Chooxen Member

Date Joined Nov 2016
Total Posts: 2
Hiya, below are logs. Issues I was having seem to be resolved for the timebeing. I am curious as to what this is though: <br/> <br/>uRun: [Desiy] C:\Users\Ben\AppData\Roaming\Aspye\afepq.exe <br/> <br/>Malwarebytes picked it up as a trojan and it crashed in Safe mode. Looks a bit suspect. <br/> <br/>------ <br/> <br/>Logfile of Trend Micro HijackThis v2.0.2 <br/>Scan saved at 16:59:31, on 15/12/2012 <br/>Platform: Unknown Windows (WinNT 6.01.3504) <br/>MSIE: Internet Explorer v9.00 (9.00.8112.16457) <br/>Boot mode: Normal <br/> <br/>Running processes: <br/>C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe <br/>C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe <br/>C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe <br/>C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe <br/>C:\Program Files (x86)\iTunes\iTunesHelper.exe <br/>C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe <br/>C:\PROGRA~2\Jetico\BCWipe\BCResident.exe <br/>C:\Windows\SysWOW64\RunDll32.exe <br/>C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe <br/>C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe <br/> <br/>R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPNOT/2 <br/>R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPNOT/2 <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPNOT/2 <br/>R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = <br/>R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = <br/>R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm <br/>R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local <br/>R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = <br/>R3 - URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll <br/>F2 - REG:system.ini: UserInit=userinit.exe, <br/>O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll <br/>O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll <br/>O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll <br/>O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll <br/>O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll <br/>O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll <br/>O2 - BHO: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll <br/>O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll <br/>O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll <br/>O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll <br/>O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun <br/>O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe <br/>O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" <br/>O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" <br/>O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe <br/>O4 - HKLM\..\Run: [BCWipeTM Startup] "C:\Program Files (x86)\Jetico\BCWipe\BCWipeTM.exe" startup <br/>O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime <br/>O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" <br/>O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW <br/>O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" <br/>O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe <br/>O4 - HKCU\..\Run: [Google Update] "C:\Users\Ben\AppData\Local\Google\Update\GoogleUpdate.exe" /c <br/>O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background <br/>O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe <br/>O4 - HKCU\..\Run: [Desiy] C:\Users\Ben\AppData\Roaming\Aspye\afepq.exe <br/>O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Ben\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver <br/>O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" <br/>O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') <br/>O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') <br/>O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') <br/>O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') <br/>O4 - Global Startup: Bluetooth.lnk = ? <br/>O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm <br/>O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm <br/>O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll <br/>O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll <br/>O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm <br/>O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm <br/>O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll <br/>O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll <br/>O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics <br/>O13 - Gopher Prefix: <br/>O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll <br/>O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL <br/>O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe <br/>O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) <br/>O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) <br/>O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe <br/>O23 - Service: BCWipe service (BCWipeSvc) - Jetico, Inc. - C:\Program Files (x86)\Jetico\BCWipe\BCWipeSvc.exe <br/>O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe <br/>O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe <br/>O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) <br/>O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe <br/>O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) <br/>O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe <br/>O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe <br/>O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe <br/>O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe <br/>O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe <br/>O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing) <br/>O23 - Service: HPWMISVC - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe <br/>O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe <br/>O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) <br/>O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe <br/>O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe <br/>O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe <br/>O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) <br/>O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) <br/>O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) <br/>O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) <br/>O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) <br/>O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe <br/>O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) <br/>O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe <br/>O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) <br/>O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) <br/>O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe <br/>O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe <br/>O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) <br/>O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) <br/>O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) <br/>O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) <br/>O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) <br/>O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) <br/>O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) <br/>O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) <br/> <br/>-- <br/>End of file - 12972 bytes <br/> <br/>--------- <br/> <br/>Malwarebytes Anti-Malware (Trial) 1.65.1.1000 <br/>www.malwarebytes.org <br/> <br/>Database version: v2012.12.15.04 <br/> <br/>Windows 7 x64 NTFS <br/>Internet Explorer 9.0.8112.16421 <br/>Ben :: BEN-HP [administrator] <br/> <br/>Protection: Enabled <br/> <br/>15/12/2012 14:31:47 <br/>mbam-log-2012-12-15 (14-31-47).txt <br/> <br/>Scan type: Full scan (C:\|D:\|) <br/>Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM <br/>Scan options disabled: P2P <br/>Objects scanned: 541393 <br/>Time elapsed: 1 hour(s), 46 minute(s), 27 second(s) <br/> <br/>Memory Processes Detected: 0 <br/>(No malicious items detected) <br/> <br/>Memory Modules Detected: 0 <br/>(No malicious items detected) <br/> <br/>Registry Keys Detected: 0 <br/>(No malicious items detected) <br/> <br/>Registry Values Detected: 0 <br/>(No malicious items detected) <br/> <br/>Registry Data Items Detected: 0 <br/>(No malicious items detected) <br/> <br/>Folders Detected: 0 <br/>(No malicious items detected) <br/> <br/>Files Detected: 1 <br/>C:\Users\Ben\Downloads\Setup (1).exe (PUP.Bundle.Installer.OI) -> Quarantined and deleted successfully. <br/> <br/>(end) <br/> <br/>-------- <br/> <br/>DDS (Ver_2012-11-20.01) - NTFS_AMD64 <br/>Internet Explorer: 9.0.8112.16457 <br/>Run by Ben at 16:24:56 on 2012-12-15 <br/>Microsoft Windows 7 Home Premium 6.1.7600.0.1252.44.1033.18.2811.1186 [GMT 0:00] <br/>. <br/>SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} <br/>. <br/>============== Running Processes =============== <br/>. <br/>C:\Windows\system32\lsm.exe <br/>C:\Windows\system32\svchost.exe -k DcomLaunch <br/>C:\Windows\system32\svchost.exe -k RPCSS <br/>C:\Windows\system32\atiesrxx.exe <br/>C:\Program Files (x86)\Jetico\BCWipe\BCWipeSvc.exe <br/>C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted <br/>C:\Program Files (x86)\Jetico\BCWipe\BCWipeTM.exe <br/>C:\Program Files (x86)\Jetico\BCWipe\BCWipeTM.exe <br/>C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted <br/>C:\Windows\system32\svchost.exe -k netsvcs <br/>C:\Program Files\IDT\WDM\STacSV64.exe <br/>C:\Windows\system32\svchost.exe -k LocalService <br/>C:\Windows\system32\atieclxx.exe <br/>C:\Windows\system32\Hpservice.exe <br/>C:\Windows\system32\svchost.exe -k NetworkService <br/>C:\Windows\system32\WLANExt.exe <br/>C:\Windows\System32\spoolsv.exe <br/>C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork <br/>C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation <br/>C:\Program Files\IDT\WDM\AESTSr64.exe <br/>C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe <br/>C:\Program Files (x86)\Bonjour\mDNSResponder.exe <br/>C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe <br/>C:\Windows\SysWOW64\ezSharedSvcHost.exe <br/>C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe <br/>C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe <br/>C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe <br/>C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe <br/>C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe <br/>C:\Windows\system32\svchost.exe -k imgsvc <br/>C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE <br/>C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe <br/>C:\Windows\system32\SearchIndexer.exe <br/>C:\Windows\system32\svchost.exe -k bthsvcs <br/>C:\Windows\system32\taskhost.exe <br/>C:\Windows\system32\Dwm.exe <br/>C:\Windows\Explorer.EXE <br/>C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe <br/>C:\Windows\system32\SearchProtocolHost.exe <br/>C:\Windows\system32\taskeng.exe <br/>C:\Program Files\Synaptics\SynTP\SynTPEnh.exe <br/>C:\Program Files\IDT\WDM\sttray64.exe <br/>C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe <br/>C:\Program Files\Synaptics\SynTP\SynTPHelper.exe <br/>C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe <br/>C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe <br/>C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe <br/>C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe <br/>C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe <br/>C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe <br/>C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe <br/>C:\Program Files (x86)\iTunes\iTunesHelper.exe <br/>C:\PROGRA~2\Jetico\BCWipe\BCResident.exe <br/>C:\Windows\system32\wbem\wmiprvse.exe <br/>C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe <br/>C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe <br/>C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe <br/>C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe <br/>C:\Windows\SysWOW64\RunDll32.exe <br/>C:\Program Files\iPod\bin\iPodService.exe <br/>C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe <br/>C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe <br/>C:\Windows\system32\taskeng.exe <br/>C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe <br/>C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe <br/>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe <br/>C:\Windows\system32\sppsvc.exe <br/>C:\Windows\System32\svchost.exe -k secsvcs <br/>C:\Windows\system32\wbem\wmiprvse.exe <br/>C:\Program Files\Windows Media Player\wmpnetwk.exe <br/>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe <br/>C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Users\Ben\AppData\Local\Google\Chrome\Application\chrome.exe <br/>C:\Windows\system32\wuauclt.exe <br/>C:\Windows\servicing\TrustedInstaller.exe <br/>C:\Windows\system32\SearchFilterHost.exe <br/>\\?\C:\Windows\system32\wbem\WMIADAP.EXE <br/>C:\Windows\System32\cscript.exe <br/>. <br/>============== Pseudo HJT Report =============== <br/>. <br/>uStart Page = about:blank <br/>uURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll <br/>mURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll <br/>mWinlogon: Userinit = userinit.exe, <br/>BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll <br/>BHO: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll <br/>BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll <br/>BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll <br/>BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll <br/>BHO: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll <br/>BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll <br/>TB: uTorrentBar Toolbar: {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll <br/>TB: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll <br/>TB: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll <br/>uRun: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe <br/>uRun: [Google Update] "C:\Users\Ben\AppData\Local\Google\Update\GoogleUpdate.exe" /c <br/>uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background <br/>uRun: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe <br/>uRun: [Desiy] C:\Users\Ben\AppData\Roaming\Aspye\afepq.exe <br/>uRun: [Facebook Update] "C:\Users\Ben\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver <br/>uRun: [Spotify Web Helper] "C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" <br/>mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun <br/>mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe <br/>mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" <br/>mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" <br/>mRun: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe <br/>mRun: [BCWipeTM Startup] "C:\Program Files (x86)\Jetico\BCWipe\BCWipeTM.exe" startup <br/>mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime <br/>mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" <br/>mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW <br/>mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" <br/>StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe <br/>mPolicies-Explorer: NoActiveDesktop = dword:1 <br/>mPolicies-Explorer: NoActiveDesktopChanges = dword:1 <br/>mPolicies-Explorer: EnableShellExecuteHooks = dword:1 <br/>mPolicies-System: ConsentPromptBehaviorAdmin = dword:5 <br/>mPolicies-System: ConsentPromptBehaviorUser = dword:3 <br/>mPolicies-System: EnableUIADesktopToggle = dword:0 <br/>IE: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm <br/>IE: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm <br/>IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll <br/>IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm <br/>DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab <br/>DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab <br/>DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab <br/>TCP: NameServer = 192.168.0.1 <br/>TCP: Interfaces\{3C633186-97F5-451F-8FAA-CAF260892FB1} : DHCPNameServer = 192.168.42.129 <br/>TCP: Interfaces\{6283C56E-0CBC-4522-B27A-E4A6A4D0FD01} : DHCPNameServer = 192.168.0.1 <br/>TCP: Interfaces\{6283C56E-0CBC-4522-B27A-E4A6A4D0FD01}\244584F6D65684572623D2347435B4 : DHCPNameServer = 192.168.1.254 <br/>TCP: Interfaces\{6283C56E-0CBC-4522-B27A-E4A6A4D0FD01}\244584F6D65684572623D26434A563 : DHCPNameServer = 192.168.1.254 <br/>TCP: Interfaces\{6283C56E-0CBC-4522-B27A-E4A6A4D0FD01}\4457E6465656241636B6071636B6562737 : DHCPNameServer = 192.168.1.254 <br/>TCP: Interfaces\{6283C56E-0CBC-4522-B27A-E4A6A4D0FD01}\55F644F575966496 : DHCPNameServer = 134.36.2.60 134.36.12.60 <br/>TCP: Interfaces\{6283C56E-0CBC-4522-B27A-E4A6A4D0FD01}\7596649602A5F6E65602D2024586560234C6F65746 : DHCPNameServer = 10.5.160.31 10.5.160.32 <br/>TCP: Interfaces\{6283C56E-0CBC-4522-B27A-E4A6A4D0FD01}\D697E65647 : DHCPNameServer = 192.168.0.1 <br/>Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll <br/>Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll <br/>SSODL: WebCheck - <orphaned> <br/>SEH: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll <br/>mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe" <br/>x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll <br/>x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll <br/>x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe <br/>x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe <br/>x64-Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background <br/>x64-Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden <br/>x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm <br/>x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab <br/>x64-DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab <br/>x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab <br/>x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned> <br/>x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> <br/>x64-SSODL: WebCheck - <orphaned> <br/>. <br/>================= FIREFOX =================== <br/>. <br/>FF - ProfilePath - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\wud752pl.default\ <br/>FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll <br/>FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll <br/>FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll <br/>FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll <br/>FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll <br/>FF - plugin: C:\Program Files (x86)\Sony\Media Go\npmediago.dll <br/>FF - plugin: C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll <br/>FF - plugin: C:\Users\Ben\AppData\Local\Facebook\Messenger\2.1.4651.0\npFbDesktopPlugin.dll <br/>FF - plugin: C:\Users\Ben\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll <br/>FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll <br/>FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll <br/>. <br/>---- FIREFOX POLICIES ---- <br/>FF - user.js: network.cookie.cookieBehavior - 0 <br/>FF - user.js: privacy.clearOnShutdown.cookies - false <br/>FF - user.js: security.warn_viewing_mixed - false <br/>FF - user.js: security.warn_viewing_mixed.show_once - false <br/>FF - user.js: security.warn_submit_insecure - false <br/>FF - user.js: security.warn_submit_insecure.show_once - false <br/>. <br/>============= SERVICES / DRIVERS =============== <br/>. <br/>R0 fsh;fsh;C:\Windows\System32\drivers\fsh.sys [2010-3-18 58432] <br/>R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2010-12-17 89600] <br/>R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2010-4-16 202752] <br/>R2 BCWipeSvc;BCWipe service;C:\Program Files (x86)\Jetico\BCWipe\BCWipeSvc.exe [2011-3-28 95544] <br/>R2 ezSharedSvc;Easybits Services for Windows;C:\Windows\System32\ezSharedSvcHost.exe --> C:\Windows\System32\ezSharedSvcHost.exe [?] <br/>R2 HP Wireless Assistant Service;HP Wireless Assistant Service;C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-6-18 103992] <br/>R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2010-6-25 92216] <br/>R2 hpsrv;HP Service;C:\Windows\System32\hpservice.exe [2009-7-8 30520] <br/>R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-6-30 27192] <br/>R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-15 399432] <br/>R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-15 676936] <br/>R3 btwampfl;Bluetooth AMP USB Filter;C:\Windows\System32\drivers\btwampfl.sys [2010-12-17 342056] <br/>R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2010-12-17 39464] <br/>R3 clwvd;HP Webcam Splitter;C:\Windows\System32\drivers\clwvd.sys [2010-6-25 32880] <br/>R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2012-12-15 25928] <br/>R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2010-12-17 38456] <br/>S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] <br/>S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] <br/>S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944] <br/>S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\netw5v64.sys [2009-6-10 5434368] <br/>S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2010-12-17 239136] <br/>S3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2010-12-17 295424] <br/>S3 Sony PC Companion;Sony PC Companion;C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-5-8 155320] <br/>S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864] <br/>S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312] <br/>S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864] <br/>S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-6-12 1255736] <br/>S3 WinRing0_1_2_0;WinRing0_1_2_0;C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [2012-11-13 14544] <br/>S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-6-10 389120] <br/>S4 BCSWAP;BCSWAP;C:\Windows\System32\drivers\bcswap.sys [2010-3-18 101952] <br/>. <br/>=============== Created Last 30 ================ <br/>. <br/>2012-12-15 14:27:31 -------- d-----w- C:\Users\Ben\AppData\Roaming\Malwarebytes <br/>2012-12-15 14:27:20 -------- d-----w- C:\ProgramData\Malwarebytes <br/>2012-12-15 14:27:19 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys <br/>2012-12-15 14:27:19 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware <br/>2012-12-15 13:57:58 -------- d-----w- C:\Program Files\CCleaner <br/>2012-12-14 15:19:20 9125352 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6684E60E-0D6E-4113-85B5-0DA6B22DE30D}\mpengine.dll <br/>2012-12-12 03:00:59 763424 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe <br/>2012-12-11 21:40:39 2048 ----a-w- C:\Windows\SysWow64\tzres.dll <br/>2012-12-11 21:39:59 478208 ----a-w- C:\Windows\System32\dpnet.dll <br/>2012-12-11 21:39:59 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll <br/>2012-12-11 21:39:58 295792 ----a-w- C:\Windows\System32\drivers\volsnap.sys <br/>2012-12-10 15:42:34 -------- d-----w- C:\Users\Ben\AppData\Local\Razer <br/>. <br/>==================== Find3M ==================== <br/>. <br/>2012-11-22 08:20:36 3147264 ----a-w- C:\Windows\System32\win32k.sys <br/>2012-11-14 06:11:44 2312704 ----a-w- C:\Windows\System32\jscript9.dll <br/>2012-11-14 06:04:11 1392128 ----a-w- C:\Windows\System32\wininet.dll <br/>2012-11-14 06:02:49 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl <br/>2012-11-14 05:57:46 599040 ----a-w- C:\Windows\System32\vbscript.dll <br/>2012-11-14 05:57:35 173056 ----a-w- C:\Windows\System32\ieUnatt.exe <br/>2012-11-14 05:52:40 2382848 ----a-w- C:\Windows\System32\mshtml.tlb <br/>2012-11-14 02:09:22 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll <br/>2012-11-14 01:58:15 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl <br/>2012-11-14 01:57:37 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll <br/>2012-11-14 01:49:25 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe <br/>2012-11-14 01:48:27 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll <br/>2012-11-14 01:44:42 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb <br/>2012-11-09 05:34:27 2048 ----a-w- C:\Windows\System32\tzres.dll <br/>2012-11-05 16:25:51 46080 ----a-w- C:\Windows\System32\atmlib.dll <br/>2012-11-05 14:17:16 367616 ----a-w- C:\Windows\System32\atmfd.dll <br/>2012-11-05 14:03:21 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll <br/>2012-11-05 14:03:13 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll <br/>2012-10-16 21:20:49 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll <br/>2012-10-16 21:20:46 347648 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll <br/>2012-10-16 20:34:37 559104 ----a-w- C:\Windows\apppatch\AcLayers.dll <br/>2012-10-04 17:38:56 362496 ----a-w- C:\Windows\System32\wow64win.dll <br/>2012-10-04 17:38:56 243200 ----a-w- C:\Windows\System32\wow64.dll <br/>2012-10-04 17:38:56 13312 ----a-w- C:\Windows\System32\wow64cpu.dll <br/>2012-10-04 17:38:24 215040 ----a-w- C:\Windows\System32\winsrv.dll <br/>2012-10-04 17:35:22 16384 ----a-w- C:\Windows\System32\ntvdm64.dll <br/>2012-10-04 17:32:16 425984 ----a-w- C:\Windows\System32\KernelBase.dll <br/>2012-10-04 16:54:18 5120 ----a-w- C:\Windows\SysWow64\wow32.dll <br/>2012-10-04 16:54:17 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll <br/>2012-10-04 15:19:57 338432 ----a-w- C:\Windows\System32\conhost.exe <br/>2012-10-04 14:49:27 25600 ----a-w- C:\Windows\SysWow64\setup16.exe <br/>2012-10-04 14:49:24 7680 ----a-w- C:\Windows\SysWow64\instnm.exe <br/>2012-10-04 14:49:22 2048 ----a-w- C:\Windows\SysWow64\user.exe <br/>2012-10-04 14:49:22 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll <br/>2012-10-04 14:44:29 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll <br/>2012-10-04 14:44:29 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll <br/>2012-10-04 14:44:29 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll <br/>2012-10-04 14:44:29 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll <br/>2012-09-25 22:39:14 95744 ----a-w- C:\Windows\System32\synceng.dll <br/>2012-09-25 21:55:17 78336 ----a-w- C:\Windows\SysWow64\synceng.dll <br/>. <br/>============= FINISH: 16:26:20.15 =============== <br/> <br/>------ <br/> <br/>. <br/>UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. <br/>IF REQUESTED, ZIP IT UP & ATTACH IT <br/>. <br/>DDS (Ver_2012-11-20.01) <br/>. <br/>Microsoft Windows 7 Home Premium <br/>Boot Device: \Device\HarddiskVolume1 <br/>Install Date: 10/06/2011 16:34:52 <br/>System Uptime: 15/12/2012 16:20:16 (0 hours ago) <br/>. <br/>Motherboard: Hewlett-Packard | | 1441 <br/>Processor: AMD Athlon(tm) II P340 Dual-Core Processor | Socket S1G4 | 2200/200mhz <br/>. <br/>==== Disk Partitions ========================= <br/>. <br/>C: is FIXED (NTFS) - 447 GiB total, 22.466 GiB free. <br/>D: is FIXED (NTFS) - 19 GiB total, 2.745 GiB free. <br/>E: is CDROM () <br/>. <br/>==== Disabled Device Manager Items ============= <br/>. <br/>==== System Restore Points =================== <br/>. <br/>RP249: 07/12/2012 15:24:52 - Windows Update <br/>RP250: 11/12/2012 11:18:58 - Windows Update <br/>RP251: 12/12/2012 03:00:15 - Windows Update <br/>RP252: 14/12/2012 03:00:12 - Windows Update <br/>. <br/>==== Installed Programs ====================== <br/>. <br/>7-Zip 9.20 <br/>7-Zip 9.21 <br/>Acrobat.com <br/>ActiveCheck component for HP Active Support Library <br/>Adobe AIR <br/>Adobe Flash Player 10 Plugin <br/>Adobe Flash Player 11 ActiveX <br/>Adobe Reader 9.3 MUI <br/>Adobe Shockwave Player 11.5 <br/>Agatha Christie - Death on the Nile <br/>AMD USB Filter Driver <br/>Apple Application Support <br/>Apple Mobile Device Support <br/>Apple Software Update <br/>ATI Catalyst Install Manager <br/>µTorrent <br/>BCWipe 5.0 <br/>Bejeweled 2 Deluxe <br/>Blackhawk Striker 2 <br/>Bonjour <br/>Broadcom 2070 Bluetooth 3.0 <br/>Broadcom 802.11 Wireless LAN Adapter <br/>Call of Duty: Modern Warfare 2 <br/>Call of Duty: Modern Warfare 2 - Multiplayer <br/>Call of Duty: Modern Warfare 3 <br/>Call of Duty: Modern Warfare 3 - Multiplayer <br/>Catalyst Control Center - Branding <br/>Catalyst Control Center Core Implementation <br/>Catalyst Control Center Graphics Full Existing <br/>Catalyst Control Center Graphics Full New <br/>Catalyst Control Center Graphics Light <br/>Catalyst Control Center Graphics Previews Common <br/>Catalyst Control Center Graphics Previews Vista <br/>Catalyst Control Center InstallProxy <br/>Catalyst Control Center Localization All <br/>ccc-core-static <br/>ccc-utility64 <br/>CCC Help Chinese Standard <br/>CCC Help Chinese Traditional <br/>CCC Help Czech <br/>CCC Help Danish <br/>CCC Help Dutch <br/>CCC Help English <br/>CCC Help Finnish <br/>CCC Help French <br/>CCC Help German <br/>CCC Help Greek <br/>CCC Help Hungarian <br/>CCC Help Italian <br/>CCC Help Japanese <br/>CCC Help Korean <br/>CCC Help Norwegian <br/>CCC Help Polish <br/>CCC Help Portuguese <br/>CCC Help Russian <br/>CCC Help Spanish <br/>CCC Help Swedish <br/>CCC Help Thai <br/>CCC Help Turkish <br/>CCleaner <br/>Chuzzle Deluxe <br/>Civ IV Mods - Total Realism - Warlords <br/>Conduit Engine <br/>Curse Client <br/>CyberLink DVD Suite <br/>Dear Esther <br/>DivX Setup <br/>Dora's Carnival Adventure <br/>DVD Menu Pack for HP MediaSmart Video <br/>Energy Star Digital Logo <br/>Escape Rosecliff Island <br/>ESU for Microsoft Windows 7 <br/>Explorer Suite III <br/>Facebook Messenger 2.1.4651.0 <br/>FATE <br/>Final Drive Nitro <br/>Google Chrome <br/>HP 3D DriveGuard <br/>HP Customer Experience Enhancements <br/>HP Documentation <br/>HP DVB-T TV Tuner 8.0.64.43 <br/>HP Game Console <br/>HP Games <br/>HP MediaSmart DVD <br/>HP MediaSmart Movies and TV <br/>HP MediaSmart Music <br/>HP MediaSmart Photo <br/>HP MediaSmart SmartMenu <br/>HP MediaSmart Video <br/>HP MediaSmart Webcam <br/>HP Photo Creations <br/>HP Power Manager <br/>HP Quick Launch <br/>HP Setup <br/>HP Software Framework <br/>HP Support Assistant <br/>HP Wireless Assistant <br/>HPAsset component for HP Active Support Library <br/>IDT Audio <br/>iTunes <br/>Java Auto Updater <br/>Java(TM) 6 Update 20 (64-bit) <br/>Java(TM) 6 Update 27 <br/>Jewel Quest - Heritage <br/>LabelPrint <br/>LightScribe System Software <br/>Magic Desktop <br/>Malwarebytes Anti-Malware version 1.65.1.1000 <br/>Media Go <br/>Media Go Video Playback Engine 1.88.106.12050 <br/>Microsoft .NET Framework 1.1 <br/>Microsoft .NET Framework 4 Client Profile <br/>Microsoft .NET Framework 4 Extended <br/>Microsoft Games for Windows - LIVE <br/>Microsoft Games for Windows - LIVE Redistributable <br/>Microsoft Office 2010 <br/>Microsoft Silverlight <br/>Microsoft Visual C++ 2005 Redistributable <br/>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 <br/>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 <br/>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 <br/>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 <br/>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 <br/>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 <br/>Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 <br/>Movie Theme Pack for HP MediaSmart Video <br/>Mozilla Firefox 17.0.1 (x86 en-US) <br/>MSXML 4.0 SP2 (KB954430) <br/>MSXML 4.0 SP2 (KB973688) <br/>MUSHclient (remove only) <br/>OpenOffice.org 3.3 <br/>Pando Media Booster <br/>Penguins! <br/>PhotoNow! <br/>Plants vs. Zombies <br/>PlayStation(R)Network Downloader <br/>PlayStation(R)Store <br/>Poker Superstars III <br/>Polar Bowler <br/>Polar Golfer <br/>Power2Go <br/>PowerDirector <br/>QuickTime <br/>Razer Game Booster <br/>Realtek Ethernet Controller Driver For Windows 7 <br/>Realtek USB 2.0 Card Reader <br/>Recovery Manager <br/>Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) <br/>Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) <br/>Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) <br/>Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) <br/>Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) <br/>Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) <br/>Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) <br/>Security Update for Microsoft .NET Framework 4 Extended (KB2487367) <br/>Security Update for Microsoft .NET Framework 4 Extended (KB2656351) <br/>Sid Meier's Civilization 4 <br/>Sid Meier's Civilization 4 - Warlords <br/>Sid Meier's Civilization IV <br/>Sid Meier's Civilization IV: Beyond the Sword <br/>Sid Meier's Civilization IV: Realism:Invictus <br/>Sid Meier's Civilization IV: Warlords <br/>Sid Meier's Civilization V <br/>Skype Toolbars <br/>Skype™ 5.10 <br/>Sony PC Companion 2.10.108 <br/>SoulSeek 157 NS 13e <br/>Spotify <br/>Steam <br/>Synaptics Pointing Device Driver <br/>The Lord of the Rings Online™ v03.03.05.8039 <br/>Update for Microsoft .NET Framework 4 Client Profile (KB2468871) <br/>Update for Microsoft .NET Framework 4 Client Profile (KB2533523) <br/>Update for Microsoft .NET Framework 4 Client Profile (KB2600217) <br/>Update for Microsoft .NET Framework 4 Extended (KB2468871) <br/>Update for Microsoft .NET Framework 4 Extended (KB2533523) <br/>Update for Microsoft .NET Framework 4 Extended (KB2600217) <br/>uTorrentBar Toolbar <br/>VC80CRTRedist - 8.0.50727.6195 <br/>Ventrilo Client <br/>Virtual Villagers - The Secret City <br/>VLC media player 1.1.10 <br/>WebEx <br/>Windows Live ID Sign-in Assistant <br/>Windows Live Sync <br/>Windows Live Upload Tool <br/>World of Warcraft <br/>Xfire (remove only) <br/>Zuma Deluxe <br/>. <br/>==== Event Viewer Messages From Past Week ======== <br/>. <br/>15/12/2012 14:25:01, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030} <br/>15/12/2012 14:25:01, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} <br/>15/12/2012 14:25:00, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} <br/>15/12/2012 14:24:58, Error: Microsoft-Windows-WLAN-AutoConfig [10000] - WLAN Extensibility Module has failed to start. Module Path: C:\Windows\System32\bcmihvsrv64.dll Error Code: 21 <br/>15/12/2012 14:24:54, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC} <br/>15/12/2012 14:24:40, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: discache spldr Wanarpv6 <br/>15/12/2012 14:22:23, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the HPWMISVC service. <br/>15/12/2012 14:22:06, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error: An instance of the service is already running. <br/>15/12/2012 14:21:36, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. <br/>15/12/2012 14:21:36, Error: Service Control Manager [7024] - The Windows Search service terminated with service-specific error %%-1073473535. <br/>15/12/2012 13:22:00, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the PlugPlay service. <br/>13/12/2012 04:13:07, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MMCSS service. <br/>13/12/2012 04:13:07, Error: Service Control Manager [7000] - The Multimedia Class Scheduler service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. <br/>13/12/2012 04:12:19, Error: Service Control Manager [7022] - The Windows Update service hung on starting. <br/>13/12/2012 04:09:33, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the eventlog service. <br/>13/12/2012 04:08:04, Error: Service Control Manager [7022] - The Windows Defender service hung on starting. <br/>11/12/2012 22:14:11, Error: BTHUSB [17] - The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded. <br/>11/12/2012 20:20:54, Error: Microsoft-Windows-Application-Experience [205] - The Program Compatibility Assistant service failed to perform the phase two initialization. <br/>. <br/>==== End Of File ===========================
Posted 12/16/2012 12:37 AM
#94828
User avatar

Touch Advanced member

Date Joined Nov 2016
Total Posts: 12976
<SPAN style="FONT-FAMILY: Arial; COLOR: black; FONT-SIZE: 10.5pt; mso-ansi-language: EN-GB" lang=EN-GB> <br/> <br/>C:\Users\Ben\AppData\Roaming\Aspye\afepq.exe <br/> <br/> <br/> <br/> <br/> <br/>It also looks suspicious to me............ <br/> <br/>[/quote] <br/> <br/><SPAN style="FONT-FAMILY: Arial; COLOR: black; FONT-SIZE: 10.5pt; mso-ansi-language: EN-GB" lang=EN-GB>Please download AdwCleaner:<SPAN style="FONT-FAMILY: Tahoma; mso-ansi-language: EN-GB" lang=EN-GB>[3] [/3]</o:p> <br/> <br/><SPAN style="FONT-FAMILY: Tahoma; mso-ansi-language: EN-GB" lang=EN-GB><o:p>[3] [/3]</o:p> <br/><SPAN style="FONT-FAMILY: Arial; FONT-SIZE: 13pt; mso-ansi-language: EN-GB" lang=EN-GB> <br/><UL style="MARGIN-TOP: 0cm" type=disc> <br/><LI style="LINE-HEIGHT: 13.5pt; MARGIN: 0cm 0cm 0pt; BACKGROUND: white; COLOR: black; mso-list: l0 level1 lfo1; tab-stops: list 36.0pt" class=MsoNormal><SPAN style="FONT-FAMILY: Arial; COLOR: red; FONT-SIZE: 13pt; mso-ansi-language: EN-GB" lang=EN-GB>***Note: Windows <?xml:namespace prefix = st1 ns = "urn:schemas-microsoft-com:office:smarttags" /><st1:place w:st="on">Vista</st1:place> and Windows 7 users:<SPAN class=apple-converted-space><SPAN style="FONT-FAMILY: Arial; FONT-SIZE: 13pt; mso-ansi-language: EN-GB" lang=EN-GB> <SPAN style="FONT-FAMILY: Arial; FONT-SIZE: 13pt; mso-ansi-language: EN-GB" lang=EN-GB> <br/>Right click in the<SPAN class=apple-converted-space> adwCleaner.exe<SPAN class=apple-converted-space> and select<SPAN class=apple-converted-space> – Run as admin<SPAN class=apple-converted-space> <o:p></o:p></LI></UL> <br/><SPAN style="FONT-FAMILY: Arial; FONT-SIZE: 13pt">Click<SPAN class=apple-converted-space> Delete.<SPAN class=apple-converted-space> <o:p></o:p> <br/> <br/><UL style="MARGIN-TOP: 0cm" type=disc> <br/><LI style="LINE-HEIGHT: 13.5pt; MARGIN: 0cm 0cm 0pt; BACKGROUND: white; COLOR: black; mso-list: l1 level1 lfo2; tab-stops: list 36.0pt" class=MsoNormal><SPAN style="FONT-FAMILY: Arial; FONT-SIZE: 13pt; mso-ansi-language: EN-GB" lang=EN-GB>Everything<SPAN class=apple-converted-space><SPAN style="FONT-FAMILY: Arial; FONT-SIZE: 13pt; mso-ansi-language: EN-GB" lang=EN-GB> <SPAN style="FONT-FAMILY: Arial; FONT-SIZE: 13pt; mso-ansi-language: EN-GB" lang=EN-GB>that was found will be deleted.<SPAN class=apple-converted-space> <o:p></o:p> <br/><LI style="LINE-HEIGHT: 13.5pt; MARGIN: 0cm 0cm 0pt; BACKGROUND: white; COLOR: black; mso-list: l1 level1 lfo2; tab-stops: list 36.0pt" class=MsoNormal><SPAN style="FONT-FAMILY: Arial; FONT-SIZE: 13pt; mso-ansi-language: EN-GB" lang=EN-GB>Save any open files and approve the reboot. A text file will open after the restart.<SPAN class=apple-converted-space> </LI></UL> <br/><SPAN style="FONT-FAMILY: Arial; FONT-SIZE: 13pt; mso-ansi-language: EN-GB" lang=EN-GB><SPAN class=apple-converted-space>Post the log, along with a combofix log - <br/> <br/><SPAN style="FONT-FAMILY: Arial; FONT-SIZE: 13pt; mso-ansi-language: EN-GB" lang=EN-GB><SPAN class=apple-converted-space> <br/> <br/><SPAN style="FONT-FAMILY: Arial; FONT-SIZE: 13pt; mso-ansi-language: EN-GB" lang=EN-GB><SPAN class=apple-converted-space> <br/><SPAN style="FONT-FAMILY: Arial; FONT-SIZE: 13pt; mso-ansi-language: EN-GB" lang=EN-GB><SPAN class=apple-converted-space> <br/><SPAN class=postbody><SPAN style="FONT-FAMILY: Verdana; COLOR: black; FONT-SIZE: 9pt; mso-ansi-language: EN-GB; mso-bidi-font-family: Tahoma" lang=EN-GB>Please download Combofix from: http://download.bleepingcomputer.com/sUBs/ComboFix.exe <br/> <br/><SPAN class=postbody><SPAN style="FONT-FAMILY: Verdana; COLOR: black; FONT-SIZE: 9pt; mso-ansi-language: EN-GB; mso-bidi-font-family: Tahoma" lang=EN-GB><SPAN style="mso-spacerun: yes"> And save to the desktop.<o:p></o:p> <br/> <br/><SPAN class=postbody><SPAN style="FONT-FAMILY: Verdana; COLOR: black; FONT-SIZE: 9pt; mso-ansi-language: EN-GB; mso-bidi-font-family: Tahoma" lang=EN-GB><o:p> </o:p> <br/> <br/>Open notepad and copy/paste the text in bold in below into it: <br/> <br/> <br/> <br/>Snapshot:: <br/>Collect:: <br/>C:\Users\Ben\AppData\Roaming\Aspye\afepq.exe <br/>ClearJavaCache:: <br/> <br/> <br/> <br/>Save this as:CFScript <br/> <br/> <br/> <br/>User image <br/> <br/> <br/> <br/>Once saved, refering to the picture above, drag CFScript.txt into ComboFix.exe. <br/> <br/> <br/>Combofix will create a logfile and display it after your computer has rebooted. <br/> <br/>Usually located in c:\combofix.txt, please post it to your next reply. <br/> <br/> <br/> <br/>When CF finishes running, the ComboFix log will open along with a message box--do not be alarmed. <br/> <br/>With the above script, ComboFix will capture a file to submit for analysis. <br/> <br/> <br/> <br/> <br/><SPAN style="FONT-FAMILY: Tahoma; mso-ansi-language: EN-GB" lang=EN-GB><o:p>[3] [/3]</o:p>

[color=black face="Courier New" sab="311">[2]Click here: Before-posting-a-log[/2][/url]

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
[/color]
Do not PM me with logfiles. They will be deleted.


  • Unread posts or replies
  • No unread posts or replies
  • Unread Posts (Read Only Forum)
  • No Unread Posts (Read Only Forum)

Forum Information

Currently it is Sunday, December 4, 2016, 11:17 PM (GMT +1)
There are a total of 61,160 posts in 13,449 threads.
In the last 3 days there were 3 new threads and 4 reply posts.

Who's online

This forum has 37,968 registered members. Please welcome our newest member, Old shape.
There are currently no users on-line.