Inactive-A Virus and malware removal

[stephen forbes]

I followed the steps here are my results:

attach
Digidesign HFS+ Disk Support
Digidesign Pro Tools LE 8.0
DivX Setup
Dropbox
FM Genie Scout 13 version 1.0 13.3.3
Football Manager 2013
Free DigiRack Plug-Ins 8.0
GeekBuddy
Google Chrome
Google Earth Plug-in
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Intel(R) PRO Network Connections 12.1.11.0
Intelewin filter
Interlok driver setup x32
Malwarebytes Anti-Malware version 1.75.0.1300
McAfee Security Scan Plus
Microsoft .NET Framework 3.5 SP1
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional Plus 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
NVIDIA 3D Vision Controller Driver 306.97
NVIDIA 3D Vision Driver 311.06
NVIDIA Control Panel 311.06
NVIDIA Graphics Driver 311.06
NVIDIA Install Application
NVIDIA PhysX
NVIDIA PhysX System Software 9.12.0604
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 1.11.3
NVIDIA Update Components
Open Metronome
PCM Native Reverb RTAS Plug-in
PrivDog
Real Alternative 2.0.2
RealDownloader
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealNetworks - Microsoft Visual C++ 2010 Runtime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.1
Reason 5.0
Rosetta Stone Version 3
Skype™ 6.14
Spotify
Steam
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
VC80CRTRedist - 8.0.50727.4053
VLC media player 1.1.11
webXvid Codec
Xvid Video Codec
.
==== Event Viewer Messages From Past Week ========
.
26/02/2014 12:15:02, Error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
26/02/2014 12:15:02, Error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure.
05/03/2014 19:21:14, Error: Service Control Manager [7009] - A timeout was reached (120000 milliseconds) while waiting for the Intelewin filter service to connect.

DDS

Handler: skype4com - <Clsid value has no data>
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
.
============= SERVICES / DRIVERS ===============
.
R0 MDFSYSNT;MacDrive file system driver;c:\windows\system32\drivers\MDFSYSNT.SYS [2008-7-22 288768]
R0 MDPMGRNT;MacDrive partition driver;c:\windows\system32\drivers\MDPMGRNT.SYS [2007-2-28 19072]
R1 CFRMD;CFRMD;c:\windows\system32\drivers\CFRMD.sys [2013-5-7 35064]
R1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\drivers\cmderd.sys [2013-9-24 20072]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdguard.sys [2013-11-14 584496]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2013-9-24 43728]
R1 HMD;COMODO livePCsupport Hardware Monitor Driver;c:\windows\system32\drivers\hmd.sys [2013-10-7 15400]
R2 CLPSLauncher;COMODO LPS Launcher;c:\program files\common files\comodo\launcher_service.exe [2013-10-11 70352]
R2 DigiNet;Digidesign Ethernet Support;c:\windows\system32\drivers\diginet.sys [2011-4-13 16400]
R2 DragonUpdater;COMODO Dragon Update Service;c:\program files\comodo\dragon\dragon_updater.exe [2014-1-28 2135232]
R2 GeekBuddyRSP;GeekBuddyRSP Server;c:\program files\common files\comodo\GeekBuddyRSP.exe [2013-10-11 2327248]
R2 MacDriveServiceD;MacDrive service for Digidesign;c:\program files\mediafour\macdrive 7\MacDriveServiceD.exe [2008-9-18 152064]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\realnetworks\realdownloader\rndlresolversvc.exe [2013-8-14 39056]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2013-1-18 383264]
R3 Blackberry Device Manager;BlackBerry Device Manager;c:\program files\common files\research in motion\usb drivers\BbDevMgr.exe [2013-1-18 577536]
R3 PAC207;CIF USB Camera;c:\windows\system32\drivers\PFC027.SYS [2012-12-19 505984]
R3 RTL8192su;B-Link RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8192su.sys [2012-10-15 606056]
S2 ef65f95a;Intelewin filter;c:\windows\system32\rundll32.exe [2006-11-2 44544]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-10-23 172192]
S3 cmdvirth;COMODO Virtual Service Manager;c:\program files\comodo\comodo internet security\cmdvirth.exe [2013-9-24 131288]
S3 dalwdmservice;dal service;c:\windows\system32\drivers\Dalwdm.sys [2011-4-13 97808]
S3 MBX2DFU;MBX2DFU;c:\windows\system32\drivers\mbx2dfu.sys [2011-4-13 21648]
S3 MBX2MIDK;Digidesign Mbox 2 Midi Driver;c:\windows\system32\drivers\mbx2midk.sys [2011-4-13 21904]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.8.141\McCHSvc.exe [2014-1-16 235696]
S3 SPC530;Philips SPC530NC PC Camera;c:\windows\system32\drivers\SPC530.sys [2013-8-30 486912]
S3 SPC530m;Philips SPC530NC PC Cameram;c:\windows\system32\drivers\SPC530m.sys [2013-8-30 7680]
.
=============== Created Last 30 ================
.
2014-03-05 18:59:30 -------- d-----w- c:\users\stephen\appdata\roaming\Malwarebytes
2014-03-05 18:59:10 -------- d-----w- c:\programdata\Malwarebytes
2014-03-05 18:59:09 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-03-05 18:59:09 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2014-03-05 18:42:25 563313 ----a-w- c:\windows\system32\drivers\sfi.dat
2014-03-05 18:39:00 -------- d-s---w- c:\programdata\Shared Space
2014-03-05 18:37:24 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2014-03-05 18:35:06 -------- d-----w- c:\program files\AdTrustMedia
2014-03-05 18:35:05 -------- d-----w- c:\programdata\Adtrustmedia
2014-03-05 18:35:00 -------- d-----w- c:\programdata\COMODO
2014-03-05 18:34:34 -------- d-----w- c:\program files\common files\COMODO
2014-03-05 18:34:15 -------- d-----w- c:\users\stephen\appdata\local\Comodo
2014-03-05 18:34:10 -------- d-----w- C:\first_launch
2014-03-05 18:34:08 48392 ----a-w- c:\windows\system32\certsentry.dll
2014-03-05 18:33:57 -------- d-----w- c:\program files\Comodo
2014-03-05 18:33:47 -------- d-----w- c:\programdata\Comodo Downloader
2014-03-05 14:14:32 -------- d-----w- c:\users\stephen\appdata\local\Skype
2014-03-05 14:13:29 -------- d-----r- c:\program files\Skype
2014-02-28 11:01:13 -------- d-----w- c:\programdata\AlllChueaPPrice
2014-02-19 13:21:12 -------- d-----w- c:\program files\UTTuboeADBloCka
2014-02-19 13:20:16 -------- d-----w- c:\program files\JonniCooUUpon
2014-02-19 13:20:06 -------- d-----w- c:\program files\ExstRaSaavinnggS
2014-02-15 04:30:01 -------- d-----w- c:\program files\McAfee Security Scan
2014-02-14 01:49:48 -------- d-----w- C:\Poker
.
==================== Find3M ====================
.
2014-01-07 00:19:14 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-01-07 00:19:14 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-04 12:28:20 325960 ----a-w- c:\program files\lua5.1.dll
2013-06-04 12:28:20 1344512 ----a-w- c:\program files\uninstall.exe
.
============= FINISH: 19:26:56.89 ===============

MBAM

Objects scanned: 233425
Time elapsed: 14 minute(s), 28 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 13
HKCR\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7} (PUP.Optional.SearchQu) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7} (PUP.Optional.SearchQu) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.Optional.VShareRedir) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.Optional.VShareRedir) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.Optional.VShareRedir) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.Optional.VShareRedir) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{851552F5-B878-4B03-904F-2AD6A4CC8994} (PUP.Optional.Zwangi) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0} (PUP.Optional.Bandoo.A) -> No action taken.
HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252} (PUP.Optional.GreatSaver.A) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1D2ABF6A-2B19-3E94-0991-5B5BDB7134DA} (PUP.Optional.ShoppingChip) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5A1D3F9E-73B5-95EC-1233-6646E1358965} (PUP.Optional.MultiPlug.A) -> No action taken.
HKCU\Software\AppDataLow\SProtector (PUP.Optional.SProtector.A) -> No action taken.
HKCU\Software\AppDataLow\Software\PriceGong (PUP.Optional.PriceGong.A) -> No action taken.

Registry Values Detected: 8
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser|{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.Optional.VShareRedir) -> Data: ;áÃzÊ;XA³0öm»Áµ -> No action taken.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser|{851552F5-B878-4B03-904F-2AD6A4CC8994} (PUP.Optional.Zwangi) -> Data: õR…x¸KO*֤̉” -> No action taken.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{851552F5-B878-4B03-904F-2AD6A4CC8994} (PUP.Optional.Zwangi) -> Data: -> No action taken.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.Optional.VShareRedir) -> Data: -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|run (Trojan.Agent) -> Data: C:\Windows\system32\config\Win.exe -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|dc2k5 (IM.Worm) -> Data: C:\Windows\SVIQ.EXE -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Fun (IM.Worm) -> Data: C:\Windows\system\Fun.exe -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|dc (IM.Worm) -> Data: C:\Windows\dc.exe -> No action taken.

Registry Data Items Detected: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs (Trojan.SProtector) -> Bad: (c:\progra~2\intele~1\intele~1.dll) Good: () -> No action taken.

Folders Detected: 1
C:\ProgramData\ShoppingChip (PUP.Optional.MultiPlug.A) -> No action taken.

Files Detected: 13
C:\ProgramData\Intelewin filter\Intelewinfilter.dll (Trojan.SProtector) -> No action taken.
C:\ProgramData\Intelewin filter\IntelewinfilterSvc.dll (Trojan.SProtector) -> No action taken.
C:\ProgramData\AlllChueaPPrice\eYLEX.exe (PUP.Optional.MultiPlug.A) -> No action taken.
c:\users\stephen\desktop\downloads\documents\downloads\trailer_park_boys_season_1 (1).exe (PUP.Optional.Bandoo.A) -> No action taken.
c:\users\stephen\desktop\downloads\documents\downloads\trailer_park_boys_season_1.exe (PUP.Optional.Bandoo.A) -> No action taken.
C:\Users\Stephen\Desktop\Downloads\Documents\Downloads\Windows_WGA_Patcher_Permanent_Kit.exe (Adware.DirectDownload) -> No action taken.
C:\Users\Stephen\Desktop\Downloads\Documents\Downloads\Windows_XP_Pro_Keygen.exe (Adware.DirectDownload) -> No action taken.
C:\$Recycle.Bin\S-1-5-21-3426693014-566441172-3061912103-1000\$RELZ7DR.exe (PUP.Optional.OneClickDownloader.A) -> No action taken.
C:\$Recycle.Bin\S-1-5-21-3426693014-566441172-3061912103-1000\$RI8XJQZ.exe (PUP.Optional.InstallMonetizer) -> No action taken.
C:\$Recycle.Bin\S-1-5-21-3426693014-566441172-3061912103-1000\$RJ1ZV82.exe (PUP.Optional.OneClickDownloader.A) -> No action taken.
C:\$Recycle.Bin\S-1-5-21-3426693014-566441172-3061912103-1000\$R722B5C.exe (PUP.Optional.OneClickDownloader.A) -> No action taken.
C:\$Recycle.Bin\S-1-5-21-3426693014-566441172-3061912103-1000\$RZ38GFB.exe (PUP.Optional.Amonetize) -> No action taken.
C:\$Recycle.Bin\S-1-5-21-3426693014-566441172-3061912103-1000\$RAL4H2W.exe (PUP.Optional.YourfileDownloader) -> No action taken.

(end)

.

 

[Broni]

Welcome aboard

Please, observe following rules:

• Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
• If you're stuck, or you're not sure about certain step, always ask before doing anything else.
• Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
• Never run more than one scan at a time.
• Keep updating me regarding your computer behavior, good, or bad.
• The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
• If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
• I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

================================

Both DDS logs are incomplete (cut off).
Please post entire logs.

Your MBAM log says "No action taken".
Re-run MBAM fix all issues and post new log.

You're not saying what your computer issues are.

 

[stephen forbes]

Oh sorry.... I cant get rid of an extension on google (ExstRaSaavinnggS4.2) no matter how many times I delete it its keeps coming back? I've deleted it in control panel also and in extension section in google settings..... its very annoying keeps putting adds of every page and making the internet crash! thanks for your help very much appreciated!

 

[stephen forbes]

Oh and theres my MBAM


Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.03.05.09

Windows Vista x86 NTFS
Internet Explorer 7.0.6000.16982
Stephen :: STEPHEN-PC [administrator]

05/03/2014 19:00:39
mbam-log-2014-03-05 (19-00-39).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 233425
Time elapsed: 14 minute(s), 28 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 13
HKCR\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7} (PUP.Optional.SearchQu) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7} (PUP.Optional.SearchQu) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.Optional.VShareRedir) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.Optional.VShareRedir) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.Optional.VShareRedir) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.Optional.VShareRedir) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{851552F5-B878-4B03-904F-2AD6A4CC8994} (PUP.Optional.Zwangi) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0} (PUP.Optional.Bandoo.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252} (PUP.Optional.GreatSaver.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1D2ABF6A-2B19-3E94-0991-5B5BDB7134DA} (PUP.Optional.ShoppingChip) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5A1D3F9E-73B5-95EC-1233-6646E1358965} (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.
HKCU\Software\AppDataLow\SProtector (PUP.Optional.SProtector.A) -> Quarantined and deleted successfully.
HKCU\Software\AppDataLow\Software\PriceGong (PUP.Optional.PriceGong.A) -> Quarantined and deleted successfully.

Registry Values Detected: 8
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser|{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.Optional.VShareRedir) -> Data: ;áÃzÊ;XA³0öm»Áµ -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser|{851552F5-B878-4B03-904F-2AD6A4CC8994} (PUP.Optional.Zwangi) -> Data: õR…x¸KO*֤̉” -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{851552F5-B878-4B03-904F-2AD6A4CC8994} (PUP.Optional.Zwangi) -> Data: -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.Optional.VShareRedir) -> Data: -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|run (Trojan.Agent) -> Data: C:\Windows\system32\config\Win.exe -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|dc2k5 (IM.Worm) -> Data: C:\Windows\SVIQ.EXE -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Fun (IM.Worm) -> Data: C:\Windows\system\Fun.exe -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|dc (IM.Worm) -> Data: C:\Windows\dc.exe -> Quarantined and deleted successfully.

Registry Data Items Detected: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs (Trojan.SProtector) -> Bad: (c:\progra~2\intele~1\intele~1.dll) Good: () -> Quarantined and repaired successfully.

Folders Detected: 1
C:\ProgramData\ShoppingChip (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.

Files Detected: 13
C:\ProgramData\Intelewin filter\Intelewinfilter.dll (Trojan.SProtector) -> Delete on reboot.
C:\ProgramData\Intelewin filter\IntelewinfilterSvc.dll (Trojan.SProtector) -> Delete on reboot.
C:\ProgramData\AlllChueaPPrice\eYLEX.exe (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.
c:\users\stephen\desktop\downloads\documents\downloads\trailer_park_boys_season_1 (1).exe (PUP.Optional.Bandoo.A) -> Quarantined and deleted successfully.
c:\users\stephen\desktop\downloads\documents\downloads\trailer_park_boys_season_1.exe (PUP.Optional.Bandoo.A) -> Quarantined and deleted successfully.
C:\Users\Stephen\Desktop\Downloads\Documents\Downloads\Windows_WGA_Patcher_Permanent_Kit.exe (Adware.DirectDownload) -> Quarantined and deleted successfully.
C:\Users\Stephen\Desktop\Downloads\Documents\Downloads\Windows_XP_Pro_Keygen.exe (Adware.DirectDownload) -> Quarantined and deleted successfully.
C:\$Recycle.Bin\S-1-5-21-3426693014-566441172-3061912103-1000\$RELZ7DR.exe (PUP.Optional.OneClickDownloader.A) -> Quarantined and deleted successfully.
C:\$Recycle.Bin\S-1-5-21-3426693014-566441172-3061912103-1000\$RI8XJQZ.exe (PUP.Optional.InstallMonetizer) -> Quarantined and deleted successfully.
C:\$Recycle.Bin\S-1-5-21-3426693014-566441172-3061912103-1000\$RJ1ZV82.exe (PUP.Optional.OneClickDownloader.A) -> Quarantined and deleted successfully.
C:\$Recycle.Bin\S-1-5-21-3426693014-566441172-3061912103-1000\$R722B5C.exe (PUP.Optional.OneClickDownloader.A) -> Quarantined and deleted successfully.
C:\$Recycle.Bin\S-1-5-21-3426693014-566441172-3061912103-1000\$RZ38GFB.exe (PUP.Optional.Amonetize) -> Quarantined and deleted successfully.
C:\$Recycle.Bin\S-1-5-21-3426693014-566441172-3061912103-1000\$RAL4H2W.exe (PUP.Optional.YourfileDownloader) -> Quarantined and deleted successfully.

(end)

 

[Broni]

Both DDS logs are incomplete (cut off).
Please post entire logs.

 

[stephen forbes]

I ran the dds again and these are my entire logs;

attach:
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 22/09/2010 15:22:18
System Uptime: 05/03/2014 19:18:42 (4 hours ago)
.
Motherboard: Dell Inc. | | 0RY007
Processor: Intel(R) Core(TM)2 Duo CPU E6550 @ 2.33GHz | Socket 775 | 2331/333mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 170 GiB total, 48.505 GiB free.
D: is FIXED (NTFS) - 128 GiB total, 98.753 GiB free.
E: is CDROM ()
F: is FIXED (NTFS) - 932 GiB total, 236.603 GiB free.
H: is Removable
I: is Removable
J: is Removable
L: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP984: 24/02/2014 08:27:44 - Scheduled Checkpoint
RP985: 27/02/2014 14:01:39 - Scheduled Checkpoint
RP986: 28/02/2014 16:06:19 - Scheduled Checkpoint
RP987: 05/03/2014 18:39:16 - Device Driver Package Install: COMODO Network Service
.
==== Installed Programs ======================
.
7-Zip 4.65
AC3Filter (remove only)
Adobe Flash Player 11 Plugin
Adobe Reader 9.4.1
Apple Application Support
Astroburn Lite
µTorrent
Bit Che
BlackBerry Desktop Software 7.1
Blue Cat's Chorus RTAS 3.63
Card Recovery Pro 2012 v2.1.5.0 Final Full
CIF USB Camera
Comodo Dragon
COMODO Internet Security Premium
Dell Resource CD
Digidesign Audio Drivers 8.0
Digidesign HFS+ Disk Support
Digidesign Pro Tools LE 8.0
DivX Setup
Dropbox
FM Genie Scout 13 version 1.0 13.3.3
Football Manager 2013
Free DigiRack Plug-Ins 8.0
GeekBuddy
Google Chrome
Google Earth Plug-in
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Intel(R) PRO Network Connections 12.1.11.0
Intelewin filter
Interlok driver setup x32
Malwarebytes Anti-Malware version 1.75.0.1300
McAfee Security Scan Plus
Microsoft .NET Framework 3.5 SP1
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional Plus 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
NVIDIA 3D Vision Controller Driver 306.97
NVIDIA 3D Vision Driver 311.06
NVIDIA Control Panel 311.06
NVIDIA Graphics Driver 311.06
NVIDIA Install Application
NVIDIA PhysX
NVIDIA PhysX System Software 9.12.0604
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 1.11.3
NVIDIA Update Components
Open Metronome
PCM Native Reverb RTAS Plug-in
PrivDog
Real Alternative 2.0.2
RealDownloader
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealNetworks - Microsoft Visual C++ 2010 Runtime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.1
Reason 5.0
Rosetta Stone Version 3
Skype™ 6.14
Spotify
Steam
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
VC80CRTRedist - 8.0.50727.4053
VLC media player 1.1.11
webXvid Codec
Xvid Video Codec
.
==== Event Viewer Messages From Past Week ========
.
26/02/2014 12:15:02, Error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
26/02/2014 12:15:02, Error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure.
05/03/2014 19:21:14, Error: Service Control Manager [7009] - A timeout was reached (120000 milliseconds) while waiting for the Intelewin filter service to connect.
.
==== End Of File ===========================

 

[stephen forbes]

And now the dds:

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 7.0.6000.16982
Run by Stephen at 23:50:17 on 2014-03-05
#Option MBR scan is disabled.
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.44.1033.18.2046.1022 [GMT 0:00]
.
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\Windows\system32\SLsvc.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Digidesign\Drivers\MMERefresh.exe
C:\Program Files\Comodo\Dragon\dragon_updater.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Mediafour\MacDrive 7\MacDriveServiceD.exe
C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Mediafour\MacDrive 7\MacDriveD.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Real\RealPlayer\Update\realsched.exe
C:\Windows\Pixart\Pac207\Monitor.exe
C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files\Comodo\COMODO Internet Security\CisTray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Users\Stephen\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Users\Stephen\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Comodo\COMODO Internet Security\cis.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Common Files\COMODO\launcher_service.exe
C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe
C:\Program Files\COMODO\GeekBuddy\unit_manager.exe
C:\Program Files\COMODO\GeekBuddy\unit.exe
C:\Windows\system32\DllHost.exe
C:\Users\Stephen\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Stephen\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Stephen\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Stephen\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Stephen\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Stephen\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
.
============== Pseudo HJT Report ===============
.
uSearch Bar = hxxp://www.bing.com/search?q={searchTerms}
uSearch Page = hxxp://www.bing.com/search?q={searchTerms}
uSearchAssistant = hxxp://www.bing.com/search?q={searchTerms}
mURLSearchHooks: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - <orphaned>
uWindows: Load = c:\windows\inf\Other.exe
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - c:\program files\mcafee security scan\3.8.141\McAfeeMSS_IE.dll
BHO: AlllChueaPPrice: {8FD8ABE1-11DB-B713-282C-9FB8F43D3034} -
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [Spotify Web Helper] "c:\users\stephen\appdata\roaming\spotify\data\SpotifyWebHelper.exe"
uRun: [Google Update] "c:\users\stephen\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
mRun: [Windows Defender] c:\program files\windows defender\MSASCui.exe -hide
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [DigidesignMMERefresh] c:\program files\digidesign\drivers\MMERefresh.exe
mRun: [MacDrive application for Digidesign] "c:\program files\mediafour\macdrive 7\MacDriveD.exe"
mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [Monitor] c:\windows\pixart\pac207\Monitor.exe
mRun: [RIMBBLaunchAgent.exe] c:\program files\common files\research in motion\usb drivers\RIMBBLaunchAgent.exe
mRun: [COMODO Internet Security] c:\program files\comodo\comodo internet security\cistray.exe
mRun: [tvncontrol] "c:\program files\common files\comodo\GeekBuddyRSP.exe" -controlservice -slave
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\3.8.141\SSScheduler.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\startg~1.lnk - c:\program files\comodo\geekbuddy\launcher.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: NameServer = 194.168.4.100 194.168.8.100
TCP: Interfaces\{1FD11A26-8B1F-4841-AA05-BD9E42B9F010} : DHCPNameServer = 194.168.4.100 194.168.8.100
TCP: Interfaces\{7342D21A-50A1-441B-B20F-59F726C7767C} : DHCPNameServer = 192.168.42.129
Handler: skype4com - <Clsid value has no data>
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
.
============= SERVICES / DRIVERS ===============
.
R0 MDFSYSNT;MacDrive file system driver;c:\windows\system32\drivers\MDFSYSNT.SYS [2008-7-22 288768]
R0 MDPMGRNT;MacDrive partition driver;c:\windows\system32\drivers\MDPMGRNT.SYS [2007-2-28 19072]
R1 CFRMD;CFRMD;c:\windows\system32\drivers\CFRMD.sys [2013-5-7 35064]
R1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\drivers\cmderd.sys [2013-9-24 20072]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdguard.sys [2013-11-14 584496]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2013-9-24 43728]
R1 HMD;COMODO livePCsupport Hardware Monitor Driver;c:\windows\system32\drivers\hmd.sys [2013-10-7 15400]
R2 CLPSLauncher;COMODO LPS Launcher;c:\program files\common files\comodo\launcher_service.exe [2014-2-27 70352]
R2 DigiNet;Digidesign Ethernet Support;c:\windows\system32\drivers\diginet.sys [2011-4-13 16400]
R2 DragonUpdater;COMODO Dragon Update Service;c:\program files\comodo\dragon\dragon_updater.exe [2014-1-28 2135232]
R2 GeekBuddyRSP;GeekBuddyRSP Server;c:\program files\common files\comodo\GeekBuddyRSP.exe [2014-2-27 2327248]
R2 MacDriveServiceD;MacDrive service for Digidesign;c:\program files\mediafour\macdrive 7\MacDriveServiceD.exe [2008-9-18 152064]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\realnetworks\realdownloader\rndlresolversvc.exe [2013-8-14 39056]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2013-1-18 383264]
R3 Blackberry Device Manager;BlackBerry Device Manager;c:\program files\common files\research in motion\usb drivers\BbDevMgr.exe [2013-1-18 577536]
R3 PAC207;CIF USB Camera;c:\windows\system32\drivers\PFC027.SYS [2012-12-19 505984]
R3 RTL8192su;B-Link RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8192su.sys [2012-10-15 606056]
S2 ef65f95a;Intelewin filter;c:\windows\system32\rundll32.exe [2006-11-2 44544]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-10-23 172192]
S3 cmdvirth;COMODO Virtual Service Manager;c:\program files\comodo\comodo internet security\cmdvirth.exe [2013-9-24 131288]
S3 dalwdmservice;dal service;c:\windows\system32\drivers\Dalwdm.sys [2011-4-13 97808]
S3 MBX2DFU;MBX2DFU;c:\windows\system32\drivers\mbx2dfu.sys [2011-4-13 21648]
S3 MBX2MIDK;Digidesign Mbox 2 Midi Driver;c:\windows\system32\drivers\mbx2midk.sys [2011-4-13 21904]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.8.141\McCHSvc.exe [2014-1-16 235696]
S3 SPC530;Philips SPC530NC PC Camera;c:\windows\system32\drivers\SPC530.sys [2013-8-30 486912]
S3 SPC530m;Philips SPC530NC PC Cameram;c:\windows\system32\drivers\SPC530m.sys [2013-8-30 7680]
.
=============== Created Last 30 ================
.
2014-03-05 19:32:49 -------- d-----w- c:\program files\common files\COMODO
2014-03-05 18:59:30 -------- d-----w- c:\users\stephen\appdata\roaming\Malwarebytes
2014-03-05 18:59:10 -------- d-----w- c:\programdata\Malwarebytes
2014-03-05 18:59:09 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-03-05 18:59:09 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2014-03-05 18:42:25 777537 ----a-w- c:\windows\system32\drivers\sfi.dat
2014-03-05 18:39:00 -------- d-s---w- c:\programdata\Shared Space
2014-03-05 18:37:24 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2014-03-05 18:35:06 -------- d-----w- c:\program files\AdTrustMedia
2014-03-05 18:35:05 -------- d-----w- c:\programdata\Adtrustmedia
2014-03-05 18:35:00 -------- d-----w- c:\programdata\COMODO
2014-03-05 18:34:15 -------- d-----w- c:\users\stephen\appdata\local\Comodo
2014-03-05 18:34:10 -------- d-----w- C:\first_launch
2014-03-05 18:34:08 48392 ----a-w- c:\windows\system32\certsentry.dll
2014-03-05 18:33:57 -------- d-----w- c:\program files\Comodo
2014-03-05 18:33:47 -------- d-----w- c:\programdata\Comodo Downloader
2014-03-05 14:14:32 -------- d-----w- c:\users\stephen\appdata\local\Skype
2014-03-05 14:13:29 -------- d-----r- c:\program files\Skype
2014-02-28 11:01:13 -------- d-----w- c:\programdata\AlllChueaPPrice
2014-02-19 13:21:12 -------- d-----w- c:\program files\UTTuboeADBloCka
2014-02-19 13:20:16 -------- d-----w- c:\program files\JonniCooUUpon
2014-02-19 13:20:06 -------- d-----w- c:\program files\ExstRaSaavinnggS
2014-02-15 04:30:01 -------- d-----w- c:\program files\McAfee Security Scan
2014-02-14 01:49:48 -------- d-----w- C:\Poker
.
==================== Find3M ====================
.
2014-01-07 00:19:14 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-01-07 00:19:14 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-04 12:28:20 325960 ----a-w- c:\program files\lua5.1.dll
2013-06-04 12:28:20 1344512 ----a-w- c:\program files\uninstall.exe
.
============= FINISH: 23:51:03.06 ===============

 

[stephen forbes]

Hope this helps

 

[Broni]

Thank you

Uninstall McAfee Security Scan Plus, typical foistware.

Download RogueKiller from one of the following links and save it to your Desktop:

• Link 1
• Link 2

• Close all the running programs
• Windows Vista/7 users: right click on RogueKiller.exe, click Run as Administrator
• Otherwise just double-click on RogueKiller.exe
• Pre-scan will start. Let it finish.
• Click on SCAN button.
• Wait until the Status box shows Scan Finished
• Click on Delete.
• Wait until the Status box shows Deleting Finished.
• Click on Report and copy/paste the content of the Notepad into your next reply.
• RKreport.txt could also be found on your desktop.
• If more than one log is produced post all logs.
• If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again

Create new restore point before proceeding with the next step....
How to: http://www.smartestcomputing.us.com/topic/63983-how-to-create-new-restore-point-all-windows/

Download Malwarebytes Anti-Rootkit (MBAR) from HERE

• Unzip downloaded file.
• Open the folder where the contents were unzipped and run mbar.exe
• Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
• Click on the Cleanup button to remove any threats and reboot if prompted to do so.
• Wait while the system shuts down and the cleanup process is performed.
• Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
• When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt

 

[stephen forbes]

Cheers thanks for everything!

 

[Broni]

You're welcome but I'd like see logs I asked for.

 

[Broni]

Still with me?

 

[Broni]

This topic is marked as abandoned and closed due to inactivity.

This member will NOT be eligible to receive any more help in malware removal forum.

 

[Broni]

Reopened.

 

[Broni]

This topic is marked as abandoned and closed due to inactivity.

This member will NOT be eligible to receive any more help in malware removal forum.