[Self Replicating Virus]

Ok, done. I was able to download the Delfix program and ran it as instructed. Hopefully now I am safe? The computer is much faster and I haven't detected any more issues.

[Self Replicating Virus]

Think you are right

[Self Replicating Virus]

I still cannot go to bleepingcomputer to download the Delfix. I thought it could be that MBAM and Emsisoft were at odds so I uninstalled emsisoft. I will check for other virus programs but the ERR_PROXY_CONNECTION_FAILED is what keeps displaying on my chrome browser.

[Self Replicating Virus]

Fixlog attached

Fixlog.txt

[Self Replicating Virus]

Also here is a copy of those suspicious files.

I know you know what you are doing but if anyone else is reading this, don't open the files attached please.

Copy of Ceement file.txt

Copy of adxregistrator.txt

[Self Replicating Virus]

Attached

FRST.txt

[Self Replicating Virus]

New development, I am still having issues. I tried to download the link you supplied and I got a proxy server error. I did some searching and found a few things that I am unsure of.

The two files I found are called ceement and adxregistrator. I found the adxregistrator in my users>documents>add-in express. It looks suspicious because it elevates control and disables functions and enable some kind of stealth mode.

Also my chrome proxy settings are grayed out.

 

[Self Replicating Virus]

Yeah, so far so good. Thank you very much!! Is there anything else I need to do?

[Self Replicating Virus]

Attached Log.

Scan Log MBAM.txt

[Self Replicating Virus]

Ok, Fixlog attached. Does this mean I am virus free? What was it?

Fixlog.txt

[Self Replicating Virus]

Attached are the FRST and Addition Files.

Addition.txt

FRST.txt

[Self Replicating Virus]

Hello,

 

I have seen a lot of good posts on here resolving the same type of issue but with older versions of Windows. I am using Windows 10 Pro and I just would like some help tailored for me.

I became infected while trying to download a serial to usb driver online. (sneaky viruses) I know because it was constantly running adware through the speakers and hijacking my browser for ads as well. I could tell as soon as it downloaded it was malicious. 

 

• I was not able to use windows defender so I went to regedit and reset the value for do not use antimalware.  Defender did not help.
• I attempted to download MBAM directly to infect laptop. Received an error, would not let me download
• Downloaded MBAM to usb drive and put on laptop, ran MBAM. Lots of malware, all deleted. Or so I thought. Still having issues.
• Tried emsisoft, problems persist.
• Ran RKill. Keeps shutting down a proxy server.

  • Active Proxy Server Detected

     * Proxy Disabled.
     * ProxyOverride value deleted.
     * ProxyServer value deleted.
     * AutoConfigURL value deleted.
     * Proxy settings were backed up to Registry file.

• Ran multiple programs multiple times, no malware detected, ads still running.

Hopefully this helps.

 

Thanks In Advance! Also I am starting to become really interested in cyber security after three days of trying to get at this virus so explanations and other reading materials are greatly appreciated.

 

R,

 

Cody