trojan horse Crypt.ANVH & no internet connection

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by GretaIsADog, Jan 14, 2012.

  1. GretaIsADog

    GretaIsADog Private E-2

    OS: Windows XP Home Ed. V. 2002 SP3

    Problem: Cannot connect to Internet;
    Cannot communicate with wired DSL modem that is connected directly to computer. IPconfig run in DOS mode with result: IP address: 0.0.0.0, subnet mask: 0.0.0.0 Then ran Iprelease and IPrenew commands, but after latter command got error message: “the RPC server is unavailable.”

    Problem started on January 12 @ ~10:30 AM. I had all 3 internet browsers IE, Chrome & Firefox) open and had opened up a link to an LA Times article (honestly!). Suddenly, all 3 browsers closed, and I started getting several alerts from AVG & Windows security alerting me to multiple threats. There was also a warning that my Windows firewall had been turned off. A couple minutes later, I disconnected the Ethernet line from the computer to the DSL modem.

    Current infection (per AVG): Trojan horse Crypt.ANVH. See results of second AVG scan, appended.
    Initial infection (per AVG, January 12, ~ 10:40 AM): Trojan horse Crypt. ANVH; Trojan horse Generic26.BIOS. See results of first AVG scan, appended.
    I tried to run AVG scan immediately after I became aware of infection, but program would not open. I then ran CrapCleaner, then Spybot S&D before the first AVG scan. Results of Spybot S&D appended. Soon after the Spybot scan, I was able to open AVG & run a scan.

    Step 1:

    Proxy Server:
    Explorer (IE v. 7.0): “automatically detect settings” button was checked; I unchecked it, as shown in instructions.
    Chrome: same as Explorer.
    Firefox: connection settings options listed below:

    - no proxy
    - auto-detect proxy settings for this network
    - use system proxy settings
    - manual proxy configuration

    “use system proxy settings” was checked. I changed setting to “no proxy.”


    Step 2:

    Anti-virus program: AVG, updated as of January 12, 2012
    (also have Spybot S&D, but I’m assuming you don’t consider this an AV program)
    Software firewall: Windows XP firewall. After infection alerts popped up, received error message that firewall had been turned off. I was later able to turn it back on.

    Step 3:

    None of listed programs found in “Add/Remove Programs” box
    Java ( v. 6 w/ updates 5 & 24) deleted. Did not update w/ current version because no Internet connection.
    AVG: emptied the virus vault.
    Spybot S&D: I was unsure whether to purge the following 3 items listed in Recovery mode, so I did not:
    - Fraud.InternetSecurity2011 (30 items)
    - Microsoft.Windows.FileExe (1 item)
    - Microsoft.Windows.AppFirewallBypass (2 items)

    Emptied Recycle Bin

    Step 4:

    32 bit version of Windows.
    Viewing of hidden files enabled.
    MSconfig set to Normal mode.

    Step 5:

    None of known malware programs appeared in populated list in “Add/Remove Programs.”

    Step 6:

    Defogger run. Defogger did not prompt me to reboot machine, so I’m guessing that no CD emulation programs were present. However, while I was running Defogger, an AVG threat notice box appeared warning me of the Trojan horse Crypt.ANVH and the infection in file: C:\WINDOWS\system32\drivers\netbt.sys

    Step 7:

    SuperAntiSpyware run.

    MalwareBytes Anti-Malware run. Could not update it because no internet connection. Per instructions, I did download the Anti-Malware Database to a flash drive and transferred it to the desktop. I first looked for “mbam-rules.exe” file in the MalwareBytes program folder with the intention of replacing that older version with the just downloaded Anti-Malware Database, but did not see it. I then tried the following: 1.) installed mbam-rules.exe 2.) installed mb.exe . However, during the installation of mb.exe, I got an error message saying the database file is corrupted, so I quit installation. I was eventually able to install mb.exe and run it without an error message other than a notifcation that the database was more than 20 days out of date.

    ComboFix: Did not run because of conflicting instructions. The Windows XP Malware Removal/Cleaning Procedure says to run it, but the detailed instructions for ComboFix @ bleeping computer.com states in the 3rd paragraph:
    “You should not run ComboFix unless you are specifically asked to by a helper.”
    So I didn’t run it.

    Root Repeal: run. Detailed instructions for RootRepeal say to disable antivirus, antispyware and firewalls before proceeding. I had already uninstalled AVG, and I turned off the Windows firewall. I did not find any means of disabling Spybot S&D without uninstalling it, so I left it alone, (though Tea Timer had already been turned off per earlier instructions).

    MGTools: run.

    Internet connection problem same as when problem first occurred.
     

    Attached Files:

    GretaIsADog, Jan 14, 2012
    #1
  2. GretaIsADog

    GretaIsADog Private E-2

    This post is the continuation of the first post with the scan logs for:

    Malwarebytes Anti-Malware
    RootRepeal
    MGtools

    NB: ComboFix was not run as explained in first post.

    Thank you.
     

    Attached Files:

    GretaIsADog, Jan 14, 2012
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    There is no conflict. We asked you to run in the READ & RUN ME which means you were asked to run it by a helper. And my fix below will depend upon ComboFix.exe being on your Desktop. So make sure that it is on your Desktop now.


    Uninstall the below old versions of software:
    SpywareBlaster 4.4

    Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista or Win 7, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

    R3 - Default URLSearchHook is missing
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O23 - Service: Norton Internet Security - Unknown owner - C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe (file missing)

    After clicking Fix, exit HJT.

    Now run this Disable/Remove Windows Messenger to remove Windows Messenger. Do not confuse Windows Messenger with MSN Messenger because they are not the same. Windows Messenger is a frequent cause of popups.

    Now we need to use ComboFix
    • Make sure that combofix.exe that you downloaded while doing the READ & RUN ME is on your Desktop but Do not run it!
      • If it is not on your Desktop, the below will not work.
    • Also make sure you have shut down all protection software (antivirus, antispyware...etc) or they may get in the way of allowing ComboFix to run properly.
    • If ComboFix tells you it has expired or need to be updated to a new version, make sure you allow it to update.
    • Open Notepad and copy/paste the text in the below quote box into it:
    • Save the above as CFscript.txt and make sure you save it to the same location (should be on your Desktop) as ComboFix.exe
    • At this point, you MUST EXIT ALL BROWSERS NOW before continuing!
    • You should have both the ComboFix.exe and CFScript.txt icons on your Desktop.
    • Now use your mouse to drag CFscript.txt on top of ComboFix.exe
    • Follow the prompts.
    • When it finishes, a log will be produced named c:\combofix.txt
    • I will ask for this log below
    Note:

    Do not mouseclick combofix's window while it is running. That may cause it to stall.

    If after running Combofix you discover none of your programs will open up because you recieve the following error: Illegal operation attempted on a registry key that has been marked for deletion then you will need to reboot your computer which will normally fix this problem.

    After reboot, now install the current version of SpywareBlaster from: SpywareBlaster 4.5

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista or Win7, don't double click, use right click and select Run As Administrator).

    Then attach the below logs:
    • C:\ComboFix.txt
    • C:\MGlogs.zip
    Make sure you tell me how things are working now!
     
    Last edited: Jan 15, 2012
    chaslang, Jan 15, 2012
    #3
  4. GretaIsADog

    GretaIsADog Private E-2

    Thanks chaslang. My apologies for the misunderstanding about ComboFix.

    I followed your instructions, and the ComboFix and MGlogs files are attached.
    I then attempted to manually restore the Internet connection as explained in the ComboFix instructions at BleepingComputer.com by repairing the network connection. But Windows spat out a message saying it could not repair the connection because it could not clear NetBT. I opened the Chrome browser anyway just to see what would happen, and found that I did indeed have an Internet connection, and was able to go to a new web page by clicking on its link from the home page. I closed the browser at that point because I haven't yet installed an anti-virus program. Until I do, I won't surf the Web to make sure the problem is fixed for good.

    I forgot to manually install the Windows Recovery Console before running ComboFix, so I didn't drag the Recovery Console program onto the ComboFix icon. When ComboFix ran, I got a message box entitled, "Microsoft Windows Recovery Console," notifying me that my machine does not have the MS Windows recovery console. I clicked the "No" button because I did not have an Internet connection at that time, and the scan continued to completion. I'm not sure what, if anything, I should do with the recovery console program at this point.

    two final questions, if I may:
    1.) should I assume that all my personal data on the computer has been compromised?
    2.) When I wasn't able to connect to the Internet with a browser (nor even able to communicate with the DSL modem) before you fixed the problem, could data on my computer nevertheless leak out into the Internet if the DSL modem was on and the computer connected to it with an ethernet line? I unfortunately left the computer & modem in this on state for several hours while my ISP was running line tests.

    Thanks again.
     

    Attached Files:

    GretaIsADog, Jan 16, 2012
    #4
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You're welcome. Some items did not get removed as desired, so let's use a different method.


    Now download The Avenger by Swandog46, and save it to your Desktop.
    See the download links under this icon http://www.majorgeeks.com/images/dll.gif
    • Extract avenger.exe from the Zip file and save it to your desktop
    • Run avenger.exe by double-clicking on it.
    • Do not change any check box options!!
    • Copy everything in the Quote box below, and paste it into the Input script here: part of the window:
    • Now click the Execute button.
    • Click Yes to the prompt to confirm you want to execute.
    • Click Yes to the Reboot now? question that will appear when Avenger finishes running.
    • Your PC should reboot, if not, reboot it yourself.
    • A log file from Avenger will be produced at C:\avenger.txt and it will popup for you to view when you login after reboot.

    No make sure that you are physically connected to the internet ( i.e., you cable is plugged in and you have not disabled connection in any form ) before doing the below.
    Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista or Win7, don't double click, use right click and select Run As Administrator).

    Then attach the below logs:
    • C:\avenger.txt
    • C:\MGlogs.zip
    How are things working now? If everything is okay, then reistall your protection software now!
     
    chaslang, Jan 16, 2012
    #5
  6. GretaIsADog

    GretaIsADog Private E-2

    1.) The Avenger ran, & log file is attached.
    2.) I failed to follow your instructions for running MGTools. Instead, before physically connecting to the Internet, I inadvertently double clicked on MGTools.exe, which then started running. I allowed it to run to completion. I then physically connected the computer to the Internet and ran MGtools/GetLogs.bat, as instructed. Its log is also attached.

    3.) Finally, I then attempted to repair the Internet connection, but got the same message as indicated in yesterday's post. I opened Chrome anyway, and was able to connect to my home page, as well as a couple other web sites whose links I clicked on. I will await your nod before reinstalling protection software & surfing the web at length to make sure everything is working properly. Thanks again.
     

    Attached Files:

    GretaIsADog, Jan 17, 2012
    #6
  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You're welcome. Your logs are clean.




    If you are not having any other malware problems, it is time to do our final steps:
    1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
    2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /uninstall
        • Notes: The space between the combofix" and the /uninstall, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
    3. Go back to step 6 oof the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
    4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    5. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
    6. If running Vista or Win 7, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    7. Go to add/remove programs and uninstall HijackThis.
    8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders
      related to MGtools and some other items from our cleaning procedures.
    9. If you are running Win 7, Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning procedures pointed to by step 7 of the READ ME
        for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.
    10. After doing the above, you should work thru the below link:
     
    chaslang, Jan 17, 2012
    #7
  8. GretaIsADog

    GretaIsADog Private E-2

    I haven’t been having any Internet issues since your last post, other than the persistent inability to repair the network connection (could not clear NetBT).

    I was going through the final steps you outlined in your last post when I decided to run an AVG scan just before re-enabling system restore. Lo & behold, the infection is still there. AVG log is attached.
     

    Attached Files:

    GretaIsADog, Jan 18, 2012
    #8
  9. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Okay then let's check more deeply into the netbt.sys file. And also we will run some additional checks that were not run previously.



    Please download Farbar Service Scanner and run it on the computer with the issue.
    • Put a check mark in each option box on the left side.
    • Click "Scan".
    • It will create a log (FSS.txt) in the same directory the tool is run.
    • Please attach this log to your next reply.
    Also, please download SystemLook from one of the links below and save it to your Desktop.
    Download Mirror #1


    Download Mirror #2
    • Double-click SystemLook.exe to run it.
    • Copy the content of the following codebox into the main textfield:
      Code:
      :filefind
netbt.sys
    • Click the Look button to start the scan.
    • When finished, a notepad window will open with the results of the scan. You can just close this notepad window since the log is already saved on your Desktop. Be patient! It may look like it is not doing anything, but it takes awhile for this to scan thru your whole system look for matches.
    • Please attach the SystemLook.txt log found on your Desktop to next reply.

    Now goto the below link and follow the instructions for running TDSSKiller from Kaspersky
    • Be sure to attach your log from TDSSKiller
    Now please also download MBRCheck to your desktop.

    See the download links under this icon http://forums.majorgeeks.com/chaslang/images/MGDownloadLoc.gif
    • Double click MBRCheck.exe to run (vista and Win 7 right click and select Run as Administrator)
    • It will show a Black screen with some information that will contain either the below line if no problem is found:
      • Done! Press ENTER to exit...
    • Or you will see more information like below if a problem is found:
      • Found non-standard or infected MBR.
      • Enter 'Y' and hit ENTER for more options, or 'N' to exit:
    • Either way, just choose to exit the program at this point since we want to see only the scan results to begin with.
    • MBRCheck will create a log named similar to MBRCheck_07.16.10_00.32.33.txt which is random based on date and time.
    • Attach this log to your next message. (See: HOW TO: Attach Items To Your Post )


    Also tell me if you can see the below folder with this exact name?
    c:\windows\$NtUninstallKB17046$
     
    Last edited: Jan 18, 2012
    chaslang, Jan 18, 2012
    #9
  10. GretaIsADog

    GretaIsADog Private E-2

    All 4 log files you requested are attached. I searched the C drive with Windows' search function & found no file named "c:\windows\$NtUninstallKB17046$".

    BTW, although I was able to connect to the Internet last night from the infected computer to post the message about the infection detected during the AVG scan, when I booted up the computer this morning, I could not connect to the Internet, exactly as when the problem first arose.
     

    Attached Files:

    GretaIsADog, Jan 18, 2012
    #10
  11. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Note that MBRcheck shows that you may have an MBR infection. Do you have your Windows XP boot CD? If not, see the below link and use this procedure to fix your MBR.
    Now download new copies of ComboFix and MGtools from the below links and save them to your Desktop, but do not run them right now.

    Now we need to use ComboFix
    • Make sure that combofix.exe that you downloaded while doing the READ & RUN ME is on your Desktop but Do not run it!
      • If it is not on your Desktop, the below will not work.
    • Also make sure you have shut down all protection software (antivirus, antispyware...etc) or they may get in the way of allowing ComboFix to run properly.
    • If ComboFix tells you it has expired or need to be updated to a new version, make sure you allow it to update.
    • Open Notepad and copy/paste the text in the below quote box into it:
    • Save the above as CFscript.txt and make sure you save it to the same location (should be on your Desktop) as ComboFix.exe
    • At this point, you MUST EXIT ALL BROWSERS NOW before continuing!
    • You should have both the ComboFix.exe and CFScript.txt icons on your Desktop.
    • Now use your mouse to drag CFscript.txt on top of ComboFix.exe
    • Follow the prompts.
    • When it finishes, a log will be produced named c:\combofix.txt
    • I will ask for this log below
    Note:

    Do not mouseclick combofix's window while it is running. That may cause it to stall.

    If after running Combofix you discover none of your programs will open up because you recieve the following error: Illegal operation attempted on a registry key that has been marked for deletion then you will need to reboot your computer which will normally fix this problem.

    Now rerun MBRcheck to get a new log to attach below.
    Run MGtools.exe ( Note: If using Vista or Win7, make sure UAC is still disabled. Also don't double click on it, use right click and select Run As Administrator )

    Now attach the below log:
    • C:\ComboFix.txt
    • the new MBRcheck log
    • C:\MGlogs.zip
    Make sure you tell me how things are working now!
     
    chaslang, Jan 18, 2012
    #11
  12. GretaIsADog

    GretaIsADog Private E-2

    One question before I execute your instructions:
    Will booting the computer from the CD I burn erase the data files on the computer?
     
    GretaIsADog, Jan 18, 2012
    #12
  13. GretaIsADog

    GretaIsADog Private E-2

    chaslang,

    Your instructions @ Fix MBR using ARCDC says to pick Windows Professional SP2 & SP3. However, my OS is XP Home Ed. SP3. Do you still want me to select Windows Pro. SP2 & SP3? Thanks.
     
    GretaIsADog, Jan 18, 2012
    #13
  14. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    No! But there is always some risk when fixing the MBR ( especially when infections are present ) where a PC could become unbootable, so it would be a good idea to backup important data first. Most of the time ( like 99% ), this works without any problem, but there can never be a guarantee. Even if the PC did become unbootable, your files would still be there.
     
    chaslang, Jan 18, 2012
    #14
  15. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Yes!
     
    chaslang, Jan 18, 2012
    #15
  16. GretaIsADog

    GretaIsADog Private E-2

    Requested files attached.

    I have Internet connection, again, but like last night, I can't repair the internet connection because NetBT can't be cleared.

    Don't know if this is relevant, but each time I've run ComboFix, the program has been unable to download and install the MS Windows recovery console because I had no internet connection. As long as I have a connection, should I now go ahead and follow the directions for manually installing the Windows recovery console (by dragging the WindowsXP-KB 310994-sp3-Home-bootDisk icon on top of the ComboFix icon on my desktop?

    Just finished an AVG scan of c:\windows\system32 folder only (not a whole computer scan) and found no infections, for what that's worth.
     

    Attached Files:

    GretaIsADog, Jan 18, 2012
    #16
  17. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You should not be running anything I don't ask you to run. Also if you have an internet connection then why are you trying to repair it.

    No!


    Your MBR is fixed now.

    Please run another scan with Farbar's Service Scanner and attach the new FSS.txt log.
     
    chaslang, Jan 18, 2012
    #17
  18. GretaIsADog

    GretaIsADog Private E-2

    "You should not be running anything I don't ask you to run."
    Understood. Unfortunately, before I read your admonition I went ahead & ran a full computer scan with AVG. Sorry about that. FSS (run after the AVG scan) and AVG scan logs are attached. Thanks chaslang.
     

    Attached Files:

    GretaIsADog, Jan 19, 2012
    #18
  19. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Okay your logs appear to be clean now. The only thing I see is that you don't appear to have your ethernet cable plugged in as show in the scans by the below
    Code:
    Ethernet adapter Local Area Connection 2:
 
        Media State . . . . . . . . . . . : Media disconnected
        Description . . . . . . . . . . . : Realtek RTL8102/8103 Family PCI-E FE NIC
    Did you have the cable physically unplugged when you ran MGtools.exe ?
     
    chaslang, Jan 19, 2012
    #19
  20. GretaIsADog

    GretaIsADog Private E-2

    Yes, I unplugged it because I had turned off my Windows firewall and uninstalled my anti-virus software.
     
    GretaIsADog, Jan 19, 2012
    #20
  21. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You need to have it connected when obtaining logs, otherwise the information being reported to me is misleading. Just minimize your surfing to connecting here only to report what is going on and post logs. Also you don't need to disable the Windows firewall. It almost never blocks anything that we are doing unless you specifically told it not to allow some external connection. Connect it now and then redo the below.

    Run MGtools.exe ( Note: If using Vista or Win7, make sure UAC is still disabled. Also don't double click on it, use right click and select Run As Administrator )



    Now attach the below log:
    • C:\MGlogs.zip
     
    chaslang, Jan 19, 2012
    #21
  22. GretaIsADog

    GretaIsADog Private E-2

    Requested file attached. Thanks again for your expertise and patience. Especially patience.

    Internet connection and everything else appears OK, although I haven't yet turned off/on or restarted computer since last night for fear that I will once again lose the internet connection after restoring it, like 2 evenings ago.
     

    Attached Files:

    GretaIsADog, Jan 19, 2012
    #22
  23. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You're welcome. Your logs are clean.


    If you are not having any other malware problems, it is time to do our final steps:
    1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
    2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /uninstall
        • Notes: The space between the combofix" and the /uninstall, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
    3. Go back to step 6 oof the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
    4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    5. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
    6. If running Vista or Win 7, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    7. Go to add/remove programs and uninstall HijackThis.
    8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders
      related to MGtools and some other items from our cleaning procedures.
    9. If you are running Win 7, Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning procedures pointed to by step 7 of the READ ME
        for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.
    10. After doing the above, you should work thru the below link:
     
    chaslang, Jan 20, 2012
    #23

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds