Bullguard Antivirus Forum Download A Free Copy Of Bullguard Antivirus Software
Free Antivirus Forum - Learn about antivirus, firewalls and personal security Free Antivirus Forum - Learn about antivirus, firewalls and personal security
 HomeLog InRegisterCommunity CalendarSearch the ForumView The Member ListHelp
Hijack this log please!!
   
BullGuard Antivirus Forum > General Security > Updates and Patches > Hijack this log please!!  
Forum Quick Jump
 
New Topic Post reply to : Hijack this log please!! Printable version of : Hijack this log please!!
[ << Previous Thread | Next Thread >> ]

rizzo
New Member


Date Joined Jan 2005
Total Posts : 1
  		   Posted 1-12-2005 3:54 (GMT +1)    Quote: Hijack this log please!!Alert an admin about: Hijack this log please!!
 Please hijack this log for me, I have a churning PC!
 
 
Logfile of HijackThis v1.99.0
Scan saved at 19:06:43, on 10/01/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
 
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Sophos SWEEP for NT\SWNETSUP.EXE
C:\Program Files\Sophos SWEEP for NT\SWEEPSRV.SYS
C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe
c:\windows\system32\explorer.exe
c:\windows\explorer.exe
c:\windows\system32\IEXPLORE.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRAM FILES\REAL\REALPLAYER\RealPlay.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\PROGRA~1\ntl\BROADB~1\SMARTB~1\MotiveSB.exe
C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-us\msnappau.exe
C:\PROGRA~1\MYTOTA~1\bar\1.bin\mtsoemon.exe
C:\WINDOWS\System32\Software\software.exe
C:\WINDOWS\eosqfrx.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WKCALREM.EXE
C:\Program Files\Sophos SWEEP for NT\ICMON.EXE
C:\Program Files\SpywareGuard\sgmain.exe
C:\Program Files\ntl\broadband medic\bin\mpbtn.exe
C:\Program Files\SpywareGuard\sgbhp.exe
C:\PROGRA~1\Webshots\webshots.scr
c:\windows\rundll32.exe
C:\Program Files\HijackThis\HijackThis.exe
 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://213.159.117.134/index.php
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://213.159.117.134/index.php
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchURL = 47 40 0E B6 5D 5D 20 0B 3
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search-all.net/sp.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R3 - URLSearchHook: (no name) - _{00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file)
F2 - REG:system.ini: UserInit=c:\windows\system32\userinit32.exe
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {B72F75B8-93F3-429D-B13E-660B206D897A} - C:\WINDOWS\System32\wnim.dll
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [RealTray] C:\PROGRAM FILES\REAL\REALPLAYER\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\ntl\BROADB~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-us\msnappau.exe"
O4 - HKLM\..\Run: [MyTotalSearch Email Plugin] C:\PROGRA~1\MYTOTA~1\bar\1.bin\mtsoemon.exe
O4 - HKLM\..\Run: [ControlPanel] C:\WINDOWS\System32\twink64.exe internat.dll,LoadKeyboardProfile
O4 - HKLM\..\Run: [MMSystem] c:\windows\rundll32.exe "c:\windows\system32\mmsystem.dll"", RunDll32
O4 - HKLM\..\Run: [VBouncer] C:\PROGRA~1\VBOUNCER\VirtualBouncer.exe
O4 - HKLM\..\Run: [SpySpotter] C:\Program Files\SpySpotter\SpySpotter.exe
O4 - HKLM\..\Run: [Software] C:\WINDOWS\System32\Software\software.exe
O4 - HKLM\..\Run: [JVDNg3IeQ] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [W0y8c7UCl] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [50oCH] C:\WINDOWS\pckugwln.exe
O4 - HKLM\..\Run: [kG4clF] C:\WINDOWS\pckugwln.exe
O4 - HKLM\..\Run: [wEuTa] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [UeN4gvQ0] C:\WINDOWS\tbdfe.exe
O4 - HKLM\..\Run: [Ecmw1mcXh] C:\WINDOWS\tilbu.exe
O4 - HKLM\..\Run: [OW8y] C:\WINDOWS\qmpmy.exe
O4 - HKLM\..\Run: [RCuTh] C:\WINDOWS\eetyoyjv.exe
O4 - HKLM\..\Run: [cnax] C:\WINDOWS\cnax.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [RylSrv32] C:\WINDOWS\rylsrv.exe
O4 - HKLM\..\Run: [6uJeJ8CX] C:\WINDOWS\mocbdnkp.exe
O4 - HKLM\..\Run: [¢‰¸u0–4C
}ïÁzî­[8C:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [Admilli Service] C:\Program Files\Admilli Service\AdmilliServ.exe
O4 - HKLM\..\Run: [W0Ô@ÔÁß]­ú"ü‰üžigÝYC:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [WEU8eV] C:\WINDOWS\kppnarpw.exe
O4 - HKLM\..\Run: [WfwjSrv32] C:\WINDOWS\wfwjsrv.exe
O4 - HKLM\..\Run: [FaxSrv32] C:\WINDOWS\faxsrv.exe
O4 - HKLM\..\Run: [W0ÔÁß]­ú"ü‰üžigÝY] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [izmrut] C:\WINDOWS\izmrut.exe
O4 - HKLM\..\Run: [B8XAU] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [50Ô@ÔÁß]­ú"ü‰üžigÝYC:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\pckugwln.exe
O4 - HKLM\..\Run: [Systems Restart] Rundll32.exe wnim.dll, DllRegisterServer
O4 - HKLM\..\Run: [¢‰¸u0–4C
}ïÁzîžg³C:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\eosqfrx.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MMSystem] c:\windows\rundll32.exe "c:\windows\system32\mmsystem.dll"", RunDll32
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O4 - Startup: Webshots.lnk = C:\Program Files\Webshots\Launcher.exe
O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
O4 - Global Startup: broadband medic.lnk = C:\Program Files\ntl\broadband medic\bin\matcli.exe
O4 - Global Startup: MyTotalSearch Email Plugin.lnk = C:\Program Files\MyTotalSearch\bar\1.bin\MTSOEMON.EXE
O4 - Global Startup: InterCheck Monitor.LNK = C:\Program Files\Sophos SWEEP for NT\ICMON.EXE
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O12 - Plugin for .wav: C:\PROGRA~1\INTERN~1\PLUGINS\npqtplugin.dll
O15 - Trusted Zone: *.awmdabest.com
O15 - Trusted Zone: *.c4tdownload.com
O15 - Trusted Zone: *.finefind.net
O15 - Trusted Zone: *.iframe.biz
O15 - Trusted Zone: *.megapornix.com
O15 - Trusted Zone: *.newiframe.biz
O15 - Trusted Zone: *.overpro.com
O15 - Trusted Zone: *.sp2admin.biz
O15 - Trusted Zone: *.sp2fucked.biz
O15 - Trusted Zone: *.windupdates.com
O15 - Trusted Zone: *.windupdates.com (HKLM)
O15 - Trusted IP range:  (HKLM)
O16 - DPF: {025DBAAD-7C25-4206-8D35-F4089A2D1826} (EPILanguageLite ActiveX) - http://www.idstation.com/library/activex/EPILang.cab
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/v45/yacscom.cab
O16 - DPF: {30CE93AE-4987-483C-9ABE-F2BD5301AB70} - http://64.156.31.79/100039/uk/ringtone/ringtone.exe
O16 - DPF: {5D9E4B6D-CD17-4D85-99D4-6A52B394EC3B} (WSDownloader Control) - http://www.webshots.com/samplers/WSDownloader.ocx
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1101756186137
O16 - DPF: {91433D86-9F27-402C-B5E3-DEBDD122C339} - http://www.netvenda.com/sites/gamc8-gb/gbc8/games4.cab
O16 - DPF: {AB29A544-D6B4-4E36-A1F8-D3E34FC7B00A} - http://install.wildtangent.com/bgn/partners/nike/nikefz4/install.cab
O16 - DPF: {CA034DCC-A580-4333-B52F-15F98C42E04C} (Downloader Class) - http://www.stopzilla.com/_download/Auto_Installer/dwnldr.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/vso/en-us/tools/mcfscan/1,5,0,4287/mcfscan.cab
O16 - DPF: {F17EDBC0-3EB2-11D3-AB74-00A0C5A512B4} - http://www.powertoolbar.com/uninstall.exe
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O16 - DPF: {FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0} - http://download.spyspotter.com/spyspotter/SpSp29952.22opt/SpySpotterInstall.cab
O16 - DPF: {FFFF0003-0001-101A-A3C9-08002B23E0CC} - http://direct.data-line.us/gbn217.exe
O16 - DPF: {FFFF0003-0001-101A-A3C9-08002B23E0CD} - http://direct.data-line.us/gbn217.exe
O18 - Filter: text/html - {B72F75B8-93F3-429D-B13E-660B206D897A} - C:\WINDOWS\System32\wnim.dll
O18 - Filter: text/plain - {B72F75B8-93F3-429D-B13E-660B206D897A} - C:\WINDOWS\System32\wnim.dll
O23 - Service: STOPzilla Local Service - Unknown - C:\Program Files\STOPzilla!\szntsvc.exe (file missing)
O23 - Service: Sophos Anti-Virus Network - Sophos Plc - C:\Program Files\Sophos SWEEP for NT\SWNETSUP.EXE
O23 - Service: Sophos Anti-Virus - Sophos Plc - C:\Program Files\Sophos SWEEP for NT\SWEEPSRV.SYS
O23 - Service: TrueVector Internet Monitor - Zone Labs Inc. - C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe
O23 - Service: ZESOFT - Unknown - C:\WINDOWS\zeta.exe (file missing)
 
Thank-you!
 
Back to Top
 

Emilio (SVK)
Forum Moderator




Date Joined Jan 2005
Total Posts : 1876
  		   Posted 1-12-2005 4:37 (GMT +1)    Quote: Hijack this log please!!Alert an admin about: Hijack this log please!!
Hi.....

Download Mwav
http://www.spywareinfo.dk/download/mwav.exe

Dr.Delete
http://www.docsdownloads.com/Tier1/dr-delete.htm

Checkmark this entries in Hijackthis:
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://213.159.117.134/index.php
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://213.159.117.134/index.php
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchURL = 47 40 0E B6 5D 5D 20 0B 3
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search-all.net/sp.html
R3 - URLSearchHook: (no name) - _{00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file)
F2 - REG:system.ini: UserInit=c:\windows\system32\userinit32.exe
O2 - BHO: (no name) - {B72F75B8-93F3-429D-B13E-660B206D897A} - C:\WINDOWS\System32\wnim.dll
O4 - HKLM\..\Run: [ControlPanel] C:\WINDOWS\System32\twink64.exe internat.dll,LoadKeyboardProfile
O4 - HKLM\..\Run: [MMSystem] c:\windows\rundll32.exe "c:\windows\system32\mmsystem.dll"", RunDll32
O4 - HKLM\..\Run: [JVDNg3IeQ] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [W0y8c7UCl] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [50oCH] C:\WINDOWS\pckugwln.exe
O4 - HKLM\..\Run: [kG4clF] C:\WINDOWS\pckugwln.exe
O4 - HKLM\..\Run: [wEuTa] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [UeN4gvQ0] C:\WINDOWS\tbdfe.exe
O4 - HKLM\..\Run: [Ecmw1mcXh] C:\WINDOWS\tilbu.exe
O4 - HKLM\..\Run: [OW8y] C:\WINDOWS\qmpmy.exe
O4 - HKLM\..\Run: [RCuTh] C:\WINDOWS\eetyoyjv.exe
O4 - HKLM\..\Run: [cnax] C:\WINDOWS\cnax.exe
O4 - HKLM\..\Run: [RylSrv32] C:\WINDOWS\rylsrv.exe
O4 - HKLM\..\Run: [6uJeJ8CX] C:\WINDOWS\mocbdnkp.exe
O4 - HKLM\..\Run: [¢‰¸u0–4C
}ïÁzî­[8C:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [Admilli Service] C:\Program Files\Admilli Service\AdmilliServ.exe
O4 - HKLM\..\Run: [W0Ô@ÔÁß]­ú"ü‰üžigÝYC:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [WEU8eV] C:\WINDOWS\kppnarpw.exe
O4 - HKLM\..\Run: [WfwjSrv32] C:\WINDOWS\wfwjsrv.exe
O4 - HKLM\..\Run: [FaxSrv32] C:\WINDOWS\faxsrv.exe
O4 - HKLM\..\Run: [W0ÔÁß]­ú"ü‰üžigÝY] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [izmrut] C:\WINDOWS\izmrut.exe
O4 - HKLM\..\Run: [B8XAU] C:\WINDOWS\eosqfrx.exe
O4 - HKLM\..\Run: [50Ô@ÔÁß]­ú"ü‰üžigÝYC:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\pckugwln.exe
O4 - HKLM\..\Run: [Systems Restart] Rundll32.exe wnim.dll, DllRegisterServer
O4 - HKLM\..\Run: [¢‰¸u0–4C
}ïÁzîžg³C:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\eosqfrx.exe
O4 - HKCU\..\Run: [MMSystem] c:\windows\rundll32.exe "c:\windows\system32\mmsystem.dll"", RunDll32
O4 - Global Startup: MyTotalSearch Email Plugin.lnk = C:\Program Files\MyTotalSearch\bar\1.bin\MTSOEMON.EXE
O15 - Trusted Zone: *.awmdabest.com
O15 - Trusted Zone: *.c4tdownload.com
O15 - Trusted Zone: *.finefind.net
O15 - Trusted Zone: *.iframe.biz
O15 - Trusted Zone: *.megapornix.com
O15 - Trusted Zone: *.newiframe.biz
O15 - Trusted Zone: *.overpro.com
O15 - Trusted Zone: *.sp2admin.biz
O15 - Trusted Zone: *.sp2fucked.biz
O15 - Trusted Zone: *.windupdates.com
O15 - Trusted Zone: *.windupdates.com (HKLM)
O15 - Trusted IP range: (HKLM)
O16 - DPF: {5D9E4B6D-CD17-4D85-99D4-6A52B394EC3B} (WSDownloader Control) - http://www.webshots.com/samplers/WSDownloader.ocx
O16 - DPF: {FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0} - http://download.spyspotter.com/spyspotter/SpSp29952.22opt/SpySpotterInstall.cab
O16 - DPF: {FFFF0003-0001-101A-A3C9-08002B23E0CC} - http://direct.data-line.us/gbn217.exe
O16 - DPF: {FFFF0003-0001-101A-A3C9-08002B23E0CD} - http://direct.data-line.us/gbn217.exe
O18 - Filter: text/html - {B72F75B8-93F3-429D-B13E-660B206D897A} - C:\WINDOWS\System32\wnim.dll
O18 - Filter: text/plain - {B72F75B8-93F3-429D-B13E-660B206D897A} - C:\WINDOWS\System32\wnim.dll
O23 - Service: STOPzilla Local Service - Unknown - C:\Program Files\STOPzilla!\szntsvc.exe (file missing)
O23 - Service: ZESOFT - Unknown - C:\WINDOWS\zeta.exe (file missing)
FIX CHECKED.....

Disable System Restore
http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm

reboot...safe mode...delete this files manually or Dr.Delete if you have some problem:

Show hidden files:
http://www.xtra.co.nz/help/0,,4155-1916458,00.html=

c:\windows\system32\IEXPLORE.EXE
c:\windows\explorer.exe
C:\PROGRA~1\MYTOTA~1\bar\1.bin\mtsoemon.exe
C:\WINDOWS\System32\Software\software.exe
C:\WINDOWS\eosqfrx.exe
c:\windows\rundll32.exe
C:\WINDOWS\kppnarpw.exe
C:\WINDOWS\wfwjsrv.ex
C:\WINDOWS\System32\wnim.dll
C:\WINDOWS\izmrut.exe
C:\Program Files\MyTotalSearch\bar\1.bin\MTSOEMON.EXE (also irectory My ToatlSearch)
c:\windows\rundll32.exe
c:\windows\system32\mmsystem.dll
C:\Program Files\ISTsvc\istsvc.exe (also directory ISTsvc)
C:\WINDOWS\pckugwln.exe
C:\Program Files\Admilli Service\AdmilliServ.exe (also directory Admilli Service)
C:\WINDOWS\tbdfe.exe
C:\WINDOWS\tilbu.exe
C:\WINDOWS\qmpmy.exe
C:\WINDOWS\eetyoyjv.exe
C:\WINDOWS\cnax.exe
C:\WINDOWS\rylsrv.exe
C:\WINDOWS\mocbdnkp.exe

Delete files/folder from the following directories (But not the directory itself, for example delete all files/folder IN temp.
C:\Windows\Temp\
C:\Documents and Settings\<Your Profile>\Local Settings\Temp\
C:\Documents and Settings\<All other users Profile>\Local Settings\Temp\
C:\Documents and Settings\<Your Profile>\Local Settings\Temporary Internet Files\ <<<This will delete your files in your internet cache--including cookies.
C:\Documents and Settings\<All other users Profile>\Local Settings\Temporary Internet Files\
Empty your "Recycle Bin"

There are usally a couple of files that you will not be able to delete..this is normal.

run Mwav scan with all option scan......

reactivate system restore...reboot...post new log here

Emilio24

Back to Top
 

CNS PC Doctor
New Member


Date Joined Feb 2005
Total Posts : 6
  		   Posted 2-7-2005 5:57 (GMT +1)    Quote: Hijack this log please!!Alert an admin about: Hijack this log please!!
Webshots is in your startup, I'd eliminate this as well.

DPSkiman
Back to Top
 
New Topic Post reply to : Hijack this log please!! Printable version of : Hijack this log please!!
 
Forum Information
Currently it is Wednesday, December 03, 2008 6:54 AM (GMT +1)
There are a total of 64.512 posts in 15.910 threads.
In the last 3 days there were 19 new threads and 77 reply posts. View Active Threads
Who's Online
This forum has 27326 registered members. Please welcome our newest member, DooN.
49 Guest(s), 0 Registered Member(s) are currently online.  Details
5 Latest Threads
Help with a (win32 trojan gen other) (0)03-12-2008 02:25:45 (finz)
Ok...I'm infected, now what? (24)03-12-2008 02:11:28 (Zalen)
Antivirus disabled/URL Redirect Malware.Wont let me install MALEWAREBYTES (3)03-12-2008 02:08:19 (cgamm)
Trojan Horse Generic 12.KAO (5)03-12-2008 02:01:58 (Taryn)
No Safe Mode, explorer.exe crashes, no internet (0)03-12-2008 00:49:20 (roygbp)


Need Support? Write to: | Forum Help Manual

Download free trial version of Bullguard