Welcome guest. Before posting on our computer help forum, you must register. Click here it's easy and free.

« previous next »
Pages: [1]   Go Down

Author Topic: Email Virus  (Read 4482 times)

0 Members and 1 Guest are viewing this topic.

XxTreceZxX

    Topic Starter


    Starter

    • Experience: Beginner
    • OS: Unknown
    Email Virus
    « on: June 01, 2011, 05:10:21 AM »
    hey uhh...I'm just new here in this forum and I've already been into 2 other forums which didnt help..... (| (| (|
    ok so here's the problem...I recently opened my email and recieved about 5 messages from FedEx....it says that they will deliver something within 5 business days...there is an attachment there which was "document.zip" so I downloaded it thinking it says there what they will deliver because I really dont have any idea what that was ???....ok, so I unzipped it and there is another file inside of it...it was "document.exe" with an icon of a .pdf file so I really thought that it was pdf (well what my wrong is I didnt look up if it was a .exe file  :||x :||x :||x ). So there, the virus or what it is called infect my computer...my pc automatically started disable the windows firewall and the internet and the "document.exe" file was gone....I reboot the computer and still the same...I tried system restore but there was no system restore point present...I tried running AVG 2011 and it wont scan (I dunno what's wrong with it), so I get my laptop and downloaded some portable and full versions of anti-viruses,anti-malware and other anti things (this is what I downloaded as I remember: hijackthis, superantispyware, ccleaner, avira anti virus, avg portable and combo fix which wont open)) and there was no virus/malware detected...my xp cd was lost so I decided to download an xp sp2 cd (I have winxp sp2) and tried to repair install my computer but there was no option only delete, etc...


    pls. I am currently doing something important and needs to be finished ASAP  :||x :||x :||x
    hope you guys can help me  |V| |V| |V|
    If you need some logs like my hijackthis log or superantispyware log maybe I can give it.....

    Thanks.

    EDIT: system restore now won't be able to help. it says that it wont be able to help my computer blah blah blah and the taskbar was gone and isnt visible permanently....
    note: in safemode the taskbar shows about 10% so I can right-click from there but there it still wont show...
    Logged

    Allan

    • Moderator

      • Mastermind
      • Thanked: 1260
    • Experience: Guru
    • OS: Windows 10
    Re: Email Virus
    « Reply #1 on: June 01, 2011, 05:19:00 AM »
    Please follow the instructions in the following link and post your logs:
    http://www.computerhope.com/forum/index.php/topic,46313.0.html

    And please, no more emoticons.
    Logged

    XxTreceZxX

      Topic Starter


      Starter

      • Experience: Beginner
      • OS: Unknown
      Re: Email Virus
      « Reply #2 on: June 01, 2011, 05:50:30 AM »
      sorry about the emoticons....

      here's the hijackthis log:

      Quote
      Logfile of Trend Micro HijackThis v2.0.4
      Scan saved at 8:04:36 AM, on 11/7/2005
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v8.00 (8.00.6001.18702)
      Boot mode: Normal

      Running processes:
      C:\windows\System32\smss.exe
      C:\windows\system32\winlogon.exe
      C:\windows\system32\services.exe
      C:\windows\system32\lsass.exe
      C:\windows\system32\nvsvc32.exe
      C:\windows\system32\svchost.exe
      C:\windows\system32\svchost.exe
      C:\windows\System32\svchost.exe
      C:\windows\system32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\AVG\AVG10\avgwdsvc.exe
      C:\Program Files\Prevx\prevx.exe
      C:\Program Files\Java\jre6\bin\jqs.exe
      C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
      C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
      C:\Program Files\AVG\AVG10\avgnsx.exe
      C:\Program Files\AVG\AVG10\avgchsvx.exe
      C:\Program Files\Prevx\prevx.exe
      C:\windows\Explorer.exe
      C:\WINDOWS\VM303_STI.exe
      C:\Program Files\Autorun Eater\oldmcdonald.exe
      C:\Program Files\AVG\AVG10\avgtray.exe
      C:\windows\system32\ctfmon.exe
      C:\Program Files\Internet Download Manager\IDMan.exe
      C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
      C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
      C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
      C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
      C:\Program Files\Autorun Eater\billy.exe
      C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
      C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
      C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/yc...
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/yc...
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSou...
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?Lin...
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?Lin...
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?Lin...
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?Lin...
      R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/yc...
      R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
      R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
      R3 - URLSearchHook: NCH Toolbar - {c2db4fe6-8409-45ce-8010-189a7b5cce86} - C:\Program Files\NCH\tbNCH.dll
      R3 - URLSearchHook: XfireXO Toolbar - {5e5ab302-7f65-44cd-8211-c1d4caaccea3} - C:\Program Files\XfireXO\prxtbXfir.dll
      O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
      O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll
      O2 - BHO: XfireXO - {5e5ab302-7f65-44cd-8211-c1d4caaccea3} - C:\Program Files\XfireXO\prxtbXfir.dll
      O2 - BHO: SafeOnline BHO - {69D72956-317C-44bd-B369-8E44D4EF9801} - C:\windows\system32\PxSecure.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
      O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
      O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
      O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
      O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers\YontooIEClient.dll
      O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll
      O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
      O3 - Toolbar: NCH Toolbar - {c2db4fe6-8409-45ce-8010-189a7b5cce86} - C:\Program Files\NCH\tbNCH.dll
      O3 - Toolbar: Quick Media Converter Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
      O3 - Toolbar: XfireXO Toolbar - {5e5ab302-7f65-44cd-8211-c1d4caaccea3} - C:\Program Files\XfireXO\prxtbXfir.dll
      O3 - Toolbar: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.exe C:\WINDOWS\system32\NvCpl.dll,NvStartup
      O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.exe VIMICRO USB PC Camera (ZC0301PLH)
      O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
      O4 - HKLM\..\Run: [Autorun Eater] C:\Program Files\Autorun Eater\oldmcdonald.exe
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
      O4 - HKLM\..\Run: [ISUSPM] C:\ISUSPM.exe -scheduler
      O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe
      O4 - HKCU\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe
      O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
      O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
      O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
      O4 - HKCU\..\Run: [S60 PC Suite Tray] "C:\Program Files\Samsung\Samsung PC Studio 7\PCSuite.exe" -onlytray
      O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
      O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
      O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
      O4 - HKUS\S-1-5-21-606747145-1500820517-725345543-1003\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe (User '?')
      O4 - HKUS\S-1-5-21-606747145-1500820517-725345543-1003\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount (User '?')
      O4 - HKUS\S-1-5-21-606747145-1500820517-725345543-1003\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot (User '?')
      O4 - HKUS\S-1-5-21-606747145-1500820517-725345543-1003\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User '?')
      O4 - HKUS\S-1-5-21-606747145-1500820517-725345543-1003\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray (User '?')
      O4 - HKUS\S-1-5-21-606747145-1500820517-725345543-1003\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" (User '?')
      O4 - HKUS\S-1-5-21-606747145-1500820517-725345543-1003\..\Run: [S60 PC Suite Tray] "C:\Program Files\Samsung\Samsung PC Studio 7\PCSuite.exe" -onlytray (User '?')
      O4 - HKUS\S-1-5-21-606747145-1500820517-725345543-1003\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet (User '?')
      O4 - HKUS\S-1-5-21-606747145-1500820517-725345543-1003\..\Run: [Google Update] "C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c (User '?')
      O4 - HKUS\S-1-5-21-606747145-1500820517-725345543-1003\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (User '?')
      O4 - S-1-5-21-606747145-1500820517-725345543-1003 Startup: ViStart (2).lnk = C:\Documents and Settings\LABIGA\My Documents\Boy2\Vista\WINDOWS 7\VISTART WIN7\ViStart.exe (User '?')
      O4 - Startup: ViStart (2).lnk = C:\Documents and Settings\LABIGA\My Documents\Boy2\Vista\WINDOWS 7\VISTART WIN7\ViStart.exe
      O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
      O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
      O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
      O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
      O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
      O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
      O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
      O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
      O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\windows\system32\shdocvw.dll
      O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\windows\system32\shdocvw.dll
      O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
      O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
      O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\windows\system32\shdocvw.dll
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - (no file)
      O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll
      O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
      O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
      O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
      O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\windows\system32\browseui.dll
      O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
      O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe
      O23 - Service: CSIScanner - Prevx - C:\Program Files\Prevx\prevx.exe
      O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
      O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
      O23 - Service: Microsoft Office Groove Audit Service - Unknown owner - C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe (file missing)
      O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
      O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\windows\system32\GameMon.des.exe (file missing)
      O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\windows\system32\nvsvc32.exe
      O23 - Service: Microsoft Office Diagnostics Service (odserv) - Unknown owner - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.exe (file missing)
      O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
      O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
      O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
      O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\windows\System32\TuneUpDefragService.exe
      O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

      --
      End of file - 13429 bytes

      I'm currently scanning my computer with Superantispyware because the log was gone and I cant find it anymore....if you need anymore logs except combofix I may be able to give it....thanks for the immediate reply!
      Logged

      XxTreceZxX

        Topic Starter


        Starter

        • Experience: Beginner
        • OS: Unknown
        Re: Email Virus
        « Reply #3 on: June 01, 2011, 06:53:57 AM »
        ok so here is the log for super anti spyware

        Quote
        SUPERAntiSpyware Scan Log
        http://www.superantispyware.com

        Generated 06/01/2011 at 08:58 PM

        Application Version : 4.47.1000

        Core Rules Database Version : 7174
        Trace Rules Database Version: 4986

        Scan type       : Complete Scan
        Total Scan Time : 00:58:24

        Memory items scanned      : 197
        Memory threats detected   : 1
        Registry items scanned    : 937
        Registry threats detected : 1
        File items scanned        : 31637
        File threats detected     : 319

        System.BrokenFileAssociation
           HKCR\.exe

        Adware.Vundo/Variant-MSFake
           X:\I386\SYSTEM32\ESENT.DLL
           X:\I386\SYSTEM32\ESENT.DLL

        Adware.Tracking Cookie
           .overture.com [ C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\fs85e0is.default\cookies.sqlite ]
           .overture.com [ C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\fs85e0is.default\cookies.sqlite ]
           .yieldmanager.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .chitika.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .mm.chitika.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .collective-media.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .keygenguru.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .keygenguru.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .keygenguru.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .adxpose.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .microsoftsto.112.2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ru4.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ru4.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .serving-sys.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .atdmt.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .revsci.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .webpower.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .atdmt.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .revsci.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .legolas-media.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .trafficmp.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .trafficmp.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .advertising.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .mediafire.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .mediafire.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www.mediafire.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .eaeacom.112.2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .pointroll.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ads.pointroll.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ads.pointroll.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ads.pointroll.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ads.pointroll.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ads.pointroll.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ads.pointroll.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .questionmarket.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .questionmarket.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .c.gigcount.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .revsci.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .revsci.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .pro-market.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .pro-market.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .pro-market.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           s07.flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           user.lucidmedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .media6degrees.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .media6degrees.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .media6degrees.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .media6degrees.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .server.cpmstar.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .click.in [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .click.in [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .click.in [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           webstats.dot.ph [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .mywebsearch.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ads.networldmedia.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .networldmedia.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .vitamine.networldmedia.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           p231t3s1067682.kronos.bravenetmedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ads.networldmedia.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .vitamine.networldmedia.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .kontera.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .kontera.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .kontera.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           adserving.versaneeds.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .xm.xtendmedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           s06.flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .eyewonder.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .eyewonder.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           s07.flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .viacom.adbureau.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .viacom.adbureau.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           s04.flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .animetoplist.org [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .hearstugo.112.2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www.jscount.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www.jscount.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           kronos.bravenetmedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           p1t12s14.kronos.bravenetmedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .invitemedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .affiliates.thrixxx.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .overture.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .smartadserver.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .smartadserver.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .smartadserver.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .smartadserver.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .xiti.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .tacoda.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .tacoda.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .tacoda.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .affiliates.thrixxx.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .affiliates.thrixxx.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           s03.flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           w00tpublishers.wootmedia.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .mediafire.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ru4.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           vitamine.networldmedia.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           vitamine.networldmedia.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .advertising.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           stat.onestat.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           stat.onestat.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .adxpansion.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .specificclick.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .specificclick.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           vsrv.glammedia.co.uk [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           adserver.joffrestreetproductions.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .revsci.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .weborama.fr [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .clickintext.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .clickintext.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .adtech.de [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .invitemedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .invitemedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .invitemedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .invitemedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .invitemedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .adserver.adtechus.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .associatedcontent.112.2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .serving-sys.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .interclick.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .interclick.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .invitemedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .bs.serving-sys.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .serving-sys.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .advertising.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .serving-sys.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .serving-sys.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .collective-media.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .collective-media.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .collective-media.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .collective-media.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .collective-media.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .collective-media.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           *Blocked Russian URL* [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .adinterax.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www6.addfreestats.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .tacoda.at.atwola.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ar.atwola.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .fbanners.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .realmedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ads2.figures.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           s03.flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           s04.flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .gamestats.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .gamestats.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .gamestats.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www.gamestats.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .adlegend.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .revsci.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .advertising.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .advertising.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ad.yieldmanager.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .revsci.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .revsci.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .revsci.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .at.atwola.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .tacoda.at.atwola.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .tacoda.at.atwola.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .tacoda.at.atwola.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .tacoda.at.atwola.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .at.atwola.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           wstat.wibiya.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           adserver.adreactor.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .indoormedia.co.uk [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ad.yieldmanager.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .adinterax.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           s04.flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .collective-media.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .collective-media.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .collective-media.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www.emailquestions.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .emailquestions.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www.emailquestions.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www.emailquestions.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .emailquestions.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .emailquestions.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .emailquestions.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .trafficmp.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .trafficmp.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .trafficmp.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           s06.flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .imrworldwide.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .server.cpmstar.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www7.addfreestats.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           s03.flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .kontera.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .legolas-media.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .viacom.adbureau.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ice.112.2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .gametracker.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .adserver.adtechus.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .overture.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .invitemedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           fidelity.rotator.hadj7.adjuggler.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ads.pointroll.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .pointroll.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www9.addfreestats.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .server.cpmstar.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .server.cpmstar.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           *Blocked Russian URL* [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           *Blocked Russian URL* [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           2.s01.flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www.ontoplist.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www.xxxblackbook.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .xxxblackbook.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .lucidmedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           rotator.adjuggler.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           rotator.adjuggler.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           adserver.twitpic.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .clickaider.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .legolas-media.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           tracking1.aleadpay.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .myroitracking.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .clicksor.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .clicksor.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .clicksor.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .pro-market.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .lfstmedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .lfstmedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .maxis.112.2o7.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .imrworldwide.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .adserver.adtechus.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .spylog.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .openstat.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .game-advertising-online.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .harrenmedianetwork.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .dmtracker.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           pluckit.demandmedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .trafficmp.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           in.getclicky.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           s03.flagcounter.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .advertising.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .gostats.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           static.freewebs.getclicky.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .interclick.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .clicksor.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .ru4.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ads2.mixrmedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .adecn.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .fbanners.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           gotacha.rotator.hadj7.adjuggler.net [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .invitemedia.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           www.belstat.be [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ad.yieldmanager.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .mediabrandsww.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .content.yieldmanager.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .content.yieldmanager.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .tribalfusion.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .server.cpmstar.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ad.yieldmanager.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ad.yieldmanager.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ad.yieldmanager.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ad.yieldmanager.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ad.yieldmanager.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           ad.yieldmanager.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .server.cpmstar.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .server.cpmstar.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           .server.cpmstar.com [ C:\Documents and Settings\LABIGA\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
           bc.youporn.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           cdn.insights.gravity.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           cdn4.specificclick.net [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           content.oddcast.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           convoad.technoratimedia.net [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           ft.fuckjapan.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           ia.media-imdb.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           media.ign.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           media.noob.us [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           media.scanscout.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           media.socialvibe.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           media.y8.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           media1.break.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           media1.thegamehomepage.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           msnbcmedia.msn.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           objects.tremormedia.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           secure-us.imrworldwide.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           vcdn.glammedia.co.uk [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           vitamine.networldmedia.net [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           www.3d-sexgames.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           www.5levelmedia.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           www.99counters.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           www.ziporn.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           wwwstatic.megaporn.com [ C:\Documents and Settings\LABIGA\Application Data\Macromedia\Flash Player\#SharedObjects\XC6FL9VM ]
           C:\Documents and Settings\LABIGA\Cookies\[email protected][2].txt
           C:\Documents and Settings\LABIGA\Cookies\[email protected][3].txt
           C:\Documents and Settings\LABIGA\Cookies\[email protected][2].txt
           C:\Documents and Settings\LABIGA\Cookies\[email protected][1].txt
           C:\Documents and Settings\LABIGA\Cookies\labiga@serving-sys[1].txt
           C:\Documents and Settings\LABIGA\Cookies\labiga@overture[1].txt
           C:\Documents and Settings\LABIGA\Cookies\labiga@adinterax[1].txt
           C:\Documents and Settings\LABIGA\Cookies\labiga@doubleclick[1].txt
           C:\Documents and Settings\LABIGA\Cookies\labiga@doubleclick[2].txt
           C:\Documents and Settings\LABIGA\Cookies\system@statcounter[1].txt
           C:\Documents and Settings\NetworkService\Cookies\[email protected][2].txt

        Trojan.Agent/Gen-FakeAlert[QNP]
           C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\IESWQMPFEALID.EXE
           C:\DOCUMENTS AND SETTINGS\LABIGA\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\VO6C7J9J\PUSK2[1].EXE

        Trojan.Agent/Gen-MSFake
           C:\DOCUMENTS AND SETTINGS\LABIGA\LOCAL SETTINGS\APPS\2.0\M97E9J4M.L88\56LDY835.11Z\RUNE..TION_E71D3BC6D5D80B70_0001.0000_511C9DCDFFF94C18\RUNESCAPEMEMBERSHIPGENERATOR.EXE

        Trojan.Agent/Gen-FakeAntiSpy
           C:\DOCUMENTS AND SETTINGS\LABIGA\LOCAL SETTINGS\TEMP\1453E8.TMP
           C:\DOCUMENTS AND SETTINGS\LABIGA\LOCAL SETTINGS\TEMP\2143E8.TMP

        PUP.AngryIPScanner
           C:\DOCUMENTS AND SETTINGS\LABIGA\LOCAL SETTINGS\TEMP\HBCD\IPSCANNER\IPSCAN.EXE

        Trojan.Agent/Gen-SVC[Fake]
           C:\DOCUMENTS AND SETTINGS\LABIGA\MY DOCUMENTS\BOY2\INSTALLERS\LB\LINK BUCKS V.0.1.EXE

        Trojan.Agent/Gen-Alient
           C:\DOCUMENTS AND SETTINGS\LABIGA\MY DOCUMENTS\BOY2\INSTALLERS\LINKZBOX.EXE
           C:\WINDOWS\SYSTEM32\ASCC.EXE

        Trojan.Agent/Gen-FraudLoad
           C:\DOCUMENTS AND SETTINGS\LABIGA\MY DOCUMENTS\DOWNLOADS\LEFT 4 DEAD 2\LEFT 4 DEAD 2\LEFT4DEAD2\SOUND\GLOBE CONVERTER.EXE

        Trojan.Unclassified/Loader-Suspicious
           C:\PROGRAM FILES\ARPR\LOADER.EXE

        Trojan.Agent/Gen-Nullo[Short]
           C:\SYSTEM VOLUME INFORMATION\_RESTORE{D6367E72-E481-4F51-A9C0-F33654844C2C}\RP128\A0435380.OCX
           C:\SYSTEM VOLUME INFORMATION\_RESTORE{D6367E72-E481-4F51-A9C0-F33654844C2C}\RP128\A0435382.EXE
           C:\SYSTEM VOLUME INFORMATION\_RESTORE{D6367E72-E481-4F51-A9C0-F33654844C2C}\RP128\A0435383.DLL
           C:\SYSTEM VOLUME INFORMATION\_RESTORE{D6367E72-E481-4F51-A9C0-F33654844C2C}\RP128\A0435384.DLL
           C:\SYSTEM VOLUME INFORMATION\_RESTORE{D6367E72-E481-4F51-A9C0-F33654844C2C}\RP128\A0435385.DLL

        Trojan.Agent/Gen-Virut
           C:\WINDOWS\SYSTEM32\DRIVERS\202B.SYS

        which and what should I delete??..
        btw, I wont be able to upload it and decided to paste it into a quote because im only using a miniXP from HBCD
        Logged

        SuperDave

        • Malware Removal Specialist
        • Moderator


          • Genius
          • Thanked: 1020
        • Certifications: List
        • Experience: Expert
        • OS: Windows 10
        Re: Email Virus
        « Reply #4 on: June 01, 2011, 04:40:28 PM »
        Hello and welcome to Computer Hope Forum. My name is Dave. I will be helping you out with your particular problem on your computer.

        1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.
        2. The fixes are specific to your problem and should only be used for this issue on this machine.
        3. If you don't know or understand something, please don't hesitate to ask.
        4. Please DO NOT run any other tools or scans while I am helping you.
        5. It is important that you reply to this thread. Do not start a new topic.
        6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
        7. Absence of symptoms does not mean that everything is clear.

        If you can't access the internet with your infected computer you will have to download and transfer any programs to the computer you're using now and transfer them to the infected computer with a CD-RW or a USB storage device. I prefer a CD because a storage device can get infected. If you use a storage device hold the shift key down while inserting the USB storage device for about 10 secs. You will also have to transfer the logs you receive back to the good computer using the same method until we can get the computer back on-line.
        ***********************************************
        I strongly recommend that you remove Ask from your computer because it;

        •Promotes its toolbars on sites targeted to kids.

        •Promotes its toolbars through ads that appear to be part of other companies' sites.

        •Promotes its toolbars through other companies' spyware.

        •Installs without any disclosure whatsoever and without any consent whatsoever.

        •Solicits installations via "deceptive door openers" that do not accurately describe the offer; failing to affirmatively show a license agreement; linking to a EULA via an off-screen link.

        •Makes confusing changes to users' browsers -- increasing Ask's revenues while taking users to pages they didn't intend to visit.

        See Here for more info.

        If you choose to follow my recommendation then please go to Start > Control Panel > Add/Remove Programs and remove the following programs if present.

        AskBarDis or anything related to Ask

        Then please find and delete this folder in bold (if present):
        C:\Program Files\AskBarDis. or anything related to Ask.
        *****************************************************
        Open HijackThis and select Do a system scan only

        Place a check mark next to the following entries: (if there)

        O3 - Toolbar: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
        O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - (no file)
        O23 - Service: Microsoft Office Groove Audit Service - Unknown owner - C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe (file missing)
        O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\windows\system32\GameMon.des.exe (file missing)
        O23 - Service: Microsoft Office Diagnostics Service (odserv) - Unknown owner - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.exe (file missing)

        Important: Close all open windows except for HijackThis and then click Fix checked.

        Once completed, exit HijackThis.
        *******************************************

        Download Security Check by screen317 from one of the following links and save it to your desktop.

        Link 1
        Link 2

        * Unzip SecurityCheck.zip and a folder named Security Check should appear.
        * Open the Security Check folder and double-click Security Check.bat
        * Follow the on-screen instructions inside of the black box.
        * A Notepad document should open automatically called checkup.txt
        * Post the contents of that document in your next reply.

        Note: If a security program requests permission from dig.exe to access the Internet, allow it to do so.
        ********************************************************
        Malwarebytes' Anti-Malware (MBAM)

        If you already have Malwarebytes be sure to check for updates before scanning!

        Download Malwarebytes Anti-Malware and save it to your desktop. Alternate download link

        •Double-click mbam-setup.exe and follow the prompts to install the program.

        •Be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.

        If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.

        •If an update is found, it will download and install the latest version.
        •Once the program has loaded, select Perform Quick Scan, then click Scan.

        •When the scan is complete, click OK, then Show Results to view the results.

        •Be sure that everything is checked, and click Remove Selected.

        •When completed, a log will open in Notepad. Save it to a convenient location like the Desktop.

        •The log is also automatically saved and can be viewed later by clicking the Logs tab in MBAM.

        Copy and Paste the contents of the report in your reply.

        •Exit MBAM.
        .
        Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.

        Logged
        Windows 8 and Windows 10 dual boot with two SSD's
        Pages: [1]   Go Up
        « previous next »