stephen33 Posted November 3, 2013 ID:749638 Share Posted November 3, 2013 Novice user running IE. Recently having trouble opening my reg sites,im getting "this page cant be displayed" or "the proxy server isn't responding" On opening I Options I found the proxy server box ticked so I unticked it and thing worked great for a short time now its reticked itself and im back to the same problem. Ive found that when its unticked the http address highlights itself in green on my usual sites. I am fed up going back and forward to untick it just to get my sites to open. I ran StopZilla and it found Trojan.Win32.Mal.gen b58 which it purged on request, it also showed 3 other items E2Give > VR32 / pup Optional.Iminent.Toolbar and pup Optional.Conduit VR32 which it wont remove on free version. I then ran your program which removed 300 items associated with Iminent,further scans by your program are showing clean.On advice I also ran Kasperskys TDSS which showed clean.Any help would be greatly appreciated attach.txtdds.txt DDS attached Link to post Share on other sites More sharing options...
Psychotic Posted November 5, 2013 ID:750093 Share Posted November 5, 2013 Hi there,my name is Marius and I will assist you with your malware related problems.Before we move on, please read the following points carefully. First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding. Perform everything in the correct order. Sometimes one step requires the previous one. If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem. Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me. Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts. If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed. Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean. My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding. Multiple Antivirus Programs installed!I do not recommend that you have more than one anti-virus product installed and running on your computer at a time.The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti-virus products to cause "false alarms". It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause:1) False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.2) System Performance Problems: Your system may lock up due to both products attempting to access the same file at the same time.Therefore please go to add/remove in the control panel and remove either AVG or STOPzilla. Link to post Share on other sites More sharing options...
stephen33 Posted November 5, 2013 Author ID:750116 Share Posted November 5, 2013 Thank you for your reply. Stopzilla removed Link to post Share on other sites More sharing options...
Psychotic Posted November 5, 2013 ID:750118 Share Posted November 5, 2013 You told us that you removed several items with Malwarebytes´ Antimalware. This tool creates a log on every run and we need to see them.The logs can be found here:C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt Zip any and all of these logs and attach the file to your next reply. Scan with Gmer rootkit scannerPlease download Gmer from here by clicking on the "Download EXE" Button.Double click on the randomly named GMER.exe. If asked to allow gmer.sys driver to load, please consent. If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO. In the right panel, you will see several boxes that have been checked. Uncheck the following ...Sections IAT/EAT Show All ( should be unchecked by default )[*]Leave everything else as it is. [*]Close all other running programs as well as your Browser. [*]Click the Scan button & wait for it to finish. [*]Once done click on the Save.. button, and in the File name area, type in "ark.txt" or it will save as a .log file which cannot be uploaded to your post. [*]Save it where you can easily find it, such as your desktop. [*]Please post the content of the ark.txt here.**Caution**Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries Link to post Share on other sites More sharing options...
stephen33 Posted November 5, 2013 Author ID:750124 Share Posted November 5, 2013 Malwarebytes Anti-Malware (Trial) 1.75.0.1300 www.malwarebytes.org Database version: v2013.10.30.07 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16721 Stephen :: STEPHEN-PC [administrator] Protection: Enabled 31/10/2013 01:44:49 mbam-log-2013-10-31 (01-44-49).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 230442 Time elapsed: 7 minute(s), 4 second(s) Memory Processes Detected: 4 C:\Program Files (x86)\Common Files\Umbrella\Umbrella.exe (PUP.Optional.Iminent) -> 3400 -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.exe (PUP.Optional.Iminent.A) -> 3732 -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (PUP.Optional.Iminent.A) -> 3784 -> Delete on reboot. C:\Program Files (x86)\Browsersafeguard\BrowserSafeguard.exe (PUP.Optional.BrowserSafeGuard.A) -> 2328 -> Delete on reboot. Memory Modules Detected: 4 C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\f_in_box.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.WinCore.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\System.Data.SQLite.dll (PUP.Optional.Iminent.A) -> Delete on reboot. Registry Keys Detected: 73 HKLM\SYSTEM\CurrentControlSet\Services\SProtection (PUP.Optional.Iminent) -> Quarantined and deleted successfully. HKCR\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7} (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9} (PUP.Software.Updater) -> Quarantined and deleted successfully. HKCR\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476} (PUP.Software.Updater) -> Quarantined and deleted successfully. HKCR\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67} (PUP.Software.Updater) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96} (PUP.Software.Updater) -> Quarantined and deleted successfully. HKCR\Updater.AmiUpd.1 (PUP.Software.Updater) -> Quarantined and deleted successfully. HKCR\Updater.AmiUpd (PUP.Software.Updater) -> Quarantined and deleted successfully. HKCR\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6} (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC} (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113} (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\IminentWebBooster.ScriptExtender.1 (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\IminentWebBooster.ScriptExtender (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\IminentWebBooster.BrowserHelperObject.1 (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\IminentWebBooster.BrowserHelperObject (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0af350d9-3916-454b-ac53-0b0b65f41301} (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Browsersafeguard (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. HKCR\Iminent.Business.Tinyfying.DownloadArgs (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Business.Tinyfying.LinkToPromoteArgs (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Business.Tinyfying.RawDataArgs (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Business.Tinyfying.TinyUrlArgs (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Business.Tinyfying.ViralLinkArgs (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.ClientCallback (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.ContractBase (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.GameOverCallback (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.GetCreditCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.GetVariableCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.GetVariableResult (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.InstallationContextResult (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.LoadContentCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.LoginCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.LogoutCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.MyAccountCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.PlayContentCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.PostContentCallback (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.SetVariableCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.TestContentCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.WarmUpCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.DataContracts.WelcomeCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.ServerCommand (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.Communication.ServerResult (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.LightContent (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.LightUri (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\Iminent.Mediator.MediatorServiceProxy (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCR\AppID\Iminent.WebBooster.InternetExplorer.DLL (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCU\Software\DataMngr (PUP.Optional.DataMngr.A) -> Quarantined and deleted successfully. HKCU\SOFTWARE\IMINENT (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Quarantined and deleted successfully. HKLM\SOFTWARE\BROWSERSAFEGUARD (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. HKLM\SOFTWARE\UMBRELLA (PUP.Optional.Umbrella.A) -> Quarantined and deleted successfully. HKLM\SOFTWARE\IMINENT (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. Registry Values Detected: 9 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|IminentMessenger (PUP.Optional.Iminent.A) -> Data: C:\Program Files (x86)\Iminent\Iminent.Messengers.exe -> Quarantined and deleted successfully. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|BrowserSafeguard (PUP.Optional.BrowserSafeGuard.A) -> Data: "C:\Program Files (x86)\Browsersafeguard\Browsersafeguard.exe" -> Quarantined and deleted successfully. HKCU\Software\Iminent|SearchEngineOptin (PUP.Optional.Iminent.A) -> Data: 0 -> Quarantined and deleted successfully. HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0J1B0H1J1U1S1T2X0DtG0T -> Quarantined and deleted successfully. HKLM\SOFTWARE\Browsersafeguard|sourceid (PUP.Optional.BrowserSafeGuard.A) -> Data: google_7zip-display-gb-728x90-beginfreedownload-33492288865 -> Quarantined and deleted successfully. HKLM\SOFTWARE\Umbrella|MUpdBlock (PUP.Optional.Umbrella.A) -> Data: { "MASSUPDATE" : { "CHROME_MBAR" : { "Checked" : 1, "RetryIdx" : 0, "Version" : 1 }, "FIREFOX_MBAR" : { "Checked" : 1, "RetryIdx" : 0, "Version" : 1 } } } -> Quarantined and deleted successfully. HKLM\SYSTEM\CurrentControlSet\Services\SProtection|ImagePath (PUP.Optional.Iminent.A) -> Data: C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe -> Quarantined and deleted successfully. HKLM\Software\Iminent|RefererId (PUP.Optional.Iminent.A) -> Data: 1038 -> Quarantined and deleted successfully. HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Iminent (PUP.Optional.Iminent.A) -> Data: C:\Program Files (x86)\Iminent\Iminent.exe /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C" -> Quarantined and deleted successfully. Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 25 C:\Program Files (x86)\Iminent (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\de (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\en (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\es (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\fr (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\inst (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\inst\Bootstrapper (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\it (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\ro (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\tr (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard (PUP.Optional.BrowserSafeGuard.A) -> Delete on reboot. C:\Program Files (x86)\Browsersafeguard\Resources (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BrowserSafeguard (PUP.Optional.BrowserSafeGuard) -> Quarantined and deleted successfully. C:\ProgramData\Iminent\Mediator (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\ProgramData\Iminent\Mediator\Datas (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\ProgramData\Iminent\Mediator\Datas\Cache (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\ProgramData\Iminent\Mediator\Datas\Cache\apix.iminent.com (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Users\Stephen\AppData\Roaming\Iminent\Mediator (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Users\Stephen\AppData\Roaming\Iminent\Mediator\Datas (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\ProgramData\Tarma Installer (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully. C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504} (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully. C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Cache (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully. C:\Users\Stephen\AppData\Local\Temp\Iminent (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Users\Stephen\AppData\Local\Temp\Iminent\Log (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. Files Detected: 114 C:\Program Files (x86)\Common Files\Umbrella\Umbrella.exe (PUP.Optional.Iminent) -> Delete on reboot. C:\Users\Stephen\AppData\Local\SwvUpdater\Updater.exe (PUP.Software.Updater) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Windows\Installer\3cf5f7.msi (PUP.Optional.Iminent) -> Quarantined and deleted successfully. C:\Windows\Tasks\AmiUpdXp.job (PUP.Software.Updater) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\SearchTheWeb.xml (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\f_in_box.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.AxImp.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\Iminent.Booster.UI.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.Business.Connect.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.Business.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.Business.tlb (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\Iminent.Entity.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.exe (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.exe.config (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\Iminent.InstallLog (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\Iminent.InstallState (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\Iminent.Mediator.ActivePlayers.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.Mediator.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.Mediator.tlb (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.Messengers.exe.config (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\Iminent.Services.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.WinCore.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.WinCore.WLM.WinEvents.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\Iminent.WinCore.WLM15.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\Iminent.WinCore.Yahoo.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\Iminent.Windows.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Iminent.Workflow.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\Microsoft.DirectX.AudioVideoPlayback.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\Microsoft.Expression.Interactions.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\StartWeb.xml (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\System.Data.SQLite.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\System.Data.SQLite.xml (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\System.Windows.Interactivity.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\System.Windows.Interactivity.xml (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\USearch.xml (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\WPFLocalizeExtension.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\WPFLocalizeExtension.xml (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\de\Iminent.Booster.UI.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\de\Iminent.Business.Connect.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\de\Iminent.Messengers.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\de\Iminent.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\de\Iminent.Services.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\de\Microsoft.Expression.Interactions.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\de\System.Windows.Interactivity.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\en\Iminent.Booster.UI.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\en\Iminent.Business.Connect.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\en\Iminent.Messengers.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\en\Iminent.resources.dll (PUP.Optional.Iminent.A) -> Delete on reboot. C:\Program Files (x86)\Iminent\en\Iminent.Services.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\en\Microsoft.Expression.Interactions.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\en\System.Windows.Interactivity.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\es\Iminent.Booster.UI.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\es\Iminent.Business.Connect.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\es\Iminent.Messengers.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\es\Iminent.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\es\Iminent.Services.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\es\Microsoft.Expression.Interactions.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\es\System.Windows.Interactivity.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\fr\Iminent.Booster.UI.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\fr\Iminent.Business.Connect.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\fr\Iminent.Messengers.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\fr\Iminent.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\fr\Iminent.Services.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\fr\Microsoft.Expression.Interactions.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\fr\System.Windows.Interactivity.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\inst\main.ico (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\inst\msacm32.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\inst\SearchTheWeb.ico (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\inst\Universely.ico (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\inst\Bootstrapper\Bootstrapper.exe (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\it\Iminent.Booster.UI.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\it\Iminent.Business.Connect.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\it\Iminent.Messengers.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\it\Iminent.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\it\Iminent.Services.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\it\Microsoft.Expression.Interactions.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\it\System.Windows.Interactivity.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\ro\Iminent.Booster.UI.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\ro\Iminent.Messengers.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\ro\Iminent.Services.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\tr\Iminent.Booster.UI.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\tr\Iminent.Business.Connect.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\tr\Iminent.Messengers.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\tr\Iminent.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Iminent\tr\Iminent.Services.resources.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Mozilla Firefox\defaults\pref\all-iminent.js (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent\SearchTheWeb.lnk (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent\Blog.lnk (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent\FAQ.lnk (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent\Help.lnk (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent\Iminent.lnk (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard\ewebstorewrapper.dll (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard\BrowserSafeguard.exe (PUP.Optional.BrowserSafeGuard.A) -> Delete on reboot. C:\Program Files (x86)\Browsersafeguard\install.log (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard\makecert.exe (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard\TrustedRoot.cer (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard\uninstall.browsersafeguard.exe (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard\Resources\certutil.exe (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard\Resources\libnspr4.dll (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard\Resources\libplc4.dll (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard\Resources\libplds4.dll (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard\Resources\nss3.dll (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard\Resources\smime3.dll (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\Program Files (x86)\Browsersafeguard\Resources\softokn3.dll (PUP.Optional.BrowserSafeGuard.A) -> Quarantined and deleted successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BrowserSafeguard\BrowserSafeguard.lnk (PUP.Optional.BrowserSafeGuard) -> Quarantined and deleted successfully. C:\ProgramData\Iminent\Mediator\Datas\Cache\apix.iminent.com\1033.11575f00-7bdc-4181-ba0a-b298aeab228c.dat (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Users\Stephen\AppData\Roaming\Iminent\Mediator\Datas\globalcache.dat (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\Users\Stephen\AppData\Roaming\Iminent\Mediator\Datas\user.dat (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully. C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.dat (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully. C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.exe (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully. C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.ico (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully. C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setup.dll (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully. (end) Link to post Share on other sites More sharing options...
stephen33 Posted November 5, 2013 Author ID:750130 Share Posted November 5, 2013 GMER 2.1.19163 - http://www.gmer.netRootkit scan 2013-11-05 13:00:18Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\00000050 Hitachi_ rev.ST2O 298.09GBRunning: 4biqcp1w.exe; Driver: C:\Users\Stephen\AppData\Local\Temp\fxrirfoc.sys---- Threads - GMER 2.1 ----Thread C:\Windows\System32\svchost.exe [712:4624] 000007feef4f6b8cThread C:\Windows\System32\svchost.exe [712:4684] 000007feef4f1d88Thread C:\Windows\System32\spoolsv.exe [1628:1432] 000007fef86510c8Thread C:\Windows\System32\spoolsv.exe [1628:1288] 000007fef6ae6144Thread C:\Windows\System32\spoolsv.exe [1628:1916] 000007fef6805fd0Thread C:\Windows\System32\spoolsv.exe [1628:2088] 000007fef67f3438Thread C:\Windows\System32\spoolsv.exe [1628:2096] 000007fef68063ecThread C:\Windows\System32\spoolsv.exe [1628:2116] 000007fef88e5e5cThread C:\Windows\System32\spoolsv.exe [1628:2120] 000007fef8915074Thread C:\Windows\System32\WUDFHost.exe [3360:3436] 000007fef18124a0Thread C:\Windows\system32\svchost.exe [3732:3092] 000007feefe58470Thread C:\Windows\system32\svchost.exe [3732:3132] 000007feefe62418Thread C:\Windows\system32\svchost.exe [3732:3464] 000007feefb7f130Thread C:\Windows\system32\svchost.exe [3732:3336] 000007feefb74734Thread C:\Windows\system32\svchost.exe [3732:4272] 000007feefb74734---- EOF - GMER 2.1 ---- Link to post Share on other sites More sharing options...
Psychotic Posted November 5, 2013 ID:750139 Share Posted November 5, 2013 CombofixCombofix should only be run when adviced by a team member!LinkImportant - Save the file to your desktop! Deactivate any and all of your antivirus programs /spyware scanners - they can prevent CF from doing its work. Run Combofix.exeWhen finished, Combofix creates a log file named C:\Combofix.txt. Please post its content in your next reply.Note: When receiving an error message containing ""Illegal operation attempted on a registry key that has been marked for deletion" simply restart your computer to fix this. Link to post Share on other sites More sharing options...
stephen33 Posted November 5, 2013 Author ID:750141 Share Posted November 5, 2013 Swiched off AVG and tried to run Combofix from your link, im just getting blank page. Should I be saving it and then running it Link to post Share on other sites More sharing options...
Psychotic Posted November 5, 2013 ID:750142 Share Posted November 5, 2013 Please right click the link and save the file to your desktop, then run combofix. Link to post Share on other sites More sharing options...
stephen33 Posted November 5, 2013 Author ID:750145 Share Posted November 5, 2013 Excuse my stupidity,ran Combofix and viewed the log when finished but I never saved it,now I cant find the Combofix log? Link to post Share on other sites More sharing options...
Psychotic Posted November 5, 2013 ID:750148 Share Posted November 5, 2013 You´ll find it at C:\combofix.txt Link to post Share on other sites More sharing options...
stephen33 Posted November 5, 2013 Author ID:750151 Share Posted November 5, 2013 Sorry again!ComboFix2.txt Link to post Share on other sites More sharing options...
stephen33 Posted November 5, 2013 Author ID:750153 Share Posted November 5, 2013 Forgot I was running Scotty the Watchdog from WinPatrol, seem to have lost it now but I can download it again later Link to post Share on other sites More sharing options...
Psychotic Posted November 5, 2013 ID:750154 Share Posted November 5, 2013 Looks good! Scan with ESET Online ScanPlease go to here to run the online scannner from ESET. Turn off the real time scanner of any existing antivirus program while performing the online scanTick the box next to YES, I accept the Terms of Use.Click StartWhen asked, allow the activex control to installClick StartMake sure that the option Remove found threats is unticked Click on Advanced Settings and ensure these options are ticked:Scan for potentially unwanted applicationsScan for potentially unsafe applicationsEnable Anti-Stealth Technology[*]Click Scan[*]Wait for the scan to finish[*]If any threats were found, click the 'List of found threats' , then click Export to text file.... [*]Save it to your desktop, then please copy and paste that log as a reply to this topic. Link to post Share on other sites More sharing options...
stephen33 Posted November 5, 2013 Author ID:750186 Share Posted November 5, 2013 Sorry it took a while ESETSmartInstaller@High as downloader log:all ok# version=8# OnlineScannerApp.exe=1.0.0.1# OnlineScanner.ocx=1.0.0.6920# api_version=3.0.2# EOSSerial=b78f22e5bfd6de4ba1f5b875887f6ae0# engine=15763# end=finished# remove_checked=false# archives_checked=false# unwanted_checked=false# unsafe_checked=false# antistealth_checked=true# utc_time=2013-11-05 04:23:34# local_time=2013-11-05 04:23:34 (+0000, GMT Standard Time)# country="United Kingdom"# lang=1033# osver=6.1.7601 NT Service Pack 1# compatibility_mode=5893 16776574 100 94 10130678 136133664 0 0# scanned=165363# found=1# cleaned=0# scan_time=3467sh=C02423884B82F50565A8AA2BE8F974E821760F18 ft=0 fh=0000000000000000 vn="Eicar test file" ac=I fn="C:\Users\Stephen\AppData\Local\Temp\Av-test.txt" Link to post Share on other sites More sharing options...
stephen33 Posted November 5, 2013 Author ID:750194 Share Posted November 5, 2013 just got this message Description A problem with your video hardware caused Windows to stop working correctly. Problem signature Problem Event Name: LiveKernelEvent OS Version: 6.1.7601.2.1.0.768.3 Locale ID: 2057 Files that help describe the problem WD-20120508-2252.dmp sysdata.xml WERInternalMetadata.xml View a temporary copy of these files Warning: If a virus or other security threat caused the problem, opening a copy of the files could harm your computer. Extra information about the problem BCCode: 117 BCP1: FFFFFA80057194E0 BCP2: FFFFF8800F1F90DC BCP3: 0000000000000000 BCP4: 0000000000000000 OS Version: 6_1_7601 Service Pack: 1_0 Product: 768_1 Link to post Share on other sites More sharing options...
Psychotic Posted November 6, 2013 ID:750474 Share Posted November 6, 2013 Then we can do the cleanup - if you are facing any issues, report that immediately.Delete junk with adwCleanerPlease download AdwCleaner to your desktop.Run adwcleaner.exe Hit Scan and wait for the scan to finish. Confirm the message but don´t uncheck anything. Hit Clean When the run is finished, it will open up a text file Please post its contents within your next reply You´ll find the log file at C:\AdwCleaner[s1].txt alsoSecurityCheckPlease download SecurityCheck: LINK1 LINK2 Save it to your desktop, start it and follow the instructions in the window. After the scan finished the (checkup.txt) will open. Copy its content to your thread. Link to post Share on other sites More sharing options...
stephen33 Posted November 6, 2013 Author ID:750493 Share Posted November 6, 2013 AdwCleaner v3.011 - Report created 06/11/2013 at 09:49:00# Updated 03/11/2013 by Xplode# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)# Username : Stephen - STEPHEN-PC# Running from : C:\Users\Stephen\Downloads\adwcleaner (1).exe# Option : Clean***** [ Services ] ********** [ Files / Folders ] *****Folder Deleted : C:\ProgramData\IminentFolder Deleted : C:\ProgramData\PartnerFolder Deleted : C:\Program Files (x86)\IlividFolder Deleted : C:\Program Files (x86)\MyPC BackupFolder Deleted : C:\Program Files (x86)\SearchCore for BrowsersFolder Deleted : C:\Program Files (x86)\Common Files\UmbrellaFolder Deleted : C:\Users\Stephen\AppData\Local\Ilivid PlayerFolder Deleted : C:\Users\Stephen\AppData\Local\PackageAwareFolder Deleted : C:\Users\Stephen\AppData\Local\SwvUpdaterFolder Deleted : C:\Users\Stephen\AppData\LocalLow\ConduitFolder Deleted : C:\Users\Stephen\AppData\Roaming\IminentFolder Deleted : C:\Users\Stephen\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjlFolder Deleted : C:\Users\Stephen\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahlaFolder Deleted : C:\Users\Stephen\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblofFile Deleted : C:\Users\Stephen\AppData\Roaming\Mozilla\Firefox\Profiles\m2fgntv7.default\Extensions\webbooster@iminent.com.xpiFile Deleted : C:\Users\Stephen\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage***** [ Shortcuts ] ********** [ Registry ] *****Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exeKey Deleted : HKLM\SOFTWARE\Classes\IminentKey Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbhoKey Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCSKey Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancsKey Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCSKey Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCSKey Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCSKey Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCSKey Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCSKey Deleted : HKLM\SOFTWARE\MozillaPlugins\@ei.TelevisionFanatic.com/PluginKey Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2452474Key Deleted : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}Key Deleted : HKCU\Software\SearchCore for BrowsersKey Deleted : HKCU\Software\AppDataLow\Software\ConduitKey Deleted : HKLM\Software\AVG Secure SearchKey Deleted : HKLM\Software\AVG Security ToolbarKey Deleted : HKLM\Software\ConduitKey Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARPKey Deleted : [x64] HKLM\SOFTWARE\SearchCore for Browsers***** [ Browsers ] *****-\\ Internet Explorer v10.0.9200.16720-\\ Mozilla Firefox v20.0 (en-GB)[ File : C:\Users\Stephen\AppData\Roaming\Mozilla\Firefox\Profiles\m2fgntv7.default\prefs.js ]-\\ Google Chrome v[ File : C:\Users\Stephen\AppData\Local\Google\Chrome\User Data\Default\preferences ]*************************AdwCleaner[R0].txt - [15894 octets] - [06/11/2013 09:47:43]AdwCleaner[s0].txt - [15949 octets] - [06/11/2013 09:49:00]########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [16010 octets] ########## Link to post Share on other sites More sharing options...
stephen33 Posted November 6, 2013 Author ID:750501 Share Posted November 6, 2013 Results of screen317's Security Check version 0.99.76 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! AVG AntiVirus Free Edition 2014 Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` WinPatrol WinPatrol 2009 (Outdated! Latest version is WinPatrol 2012) Malwarebytes Anti-Malware version 1.75.0.1300 AVG PC Tuneup Adobe Flash Player 11.6.602.180 Adobe Reader XI Mozilla Firefox 20.0 Firefox out of Date! ````````Process Check: objlist.exe by Laurent```````` WinPatrol winpatrol.exe Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe AVG avgwdsvc.exe Malwarebytes' Anti-Malware mbamscheduler.exe BillP Studios WinPatrol WinPatrol.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 0% ````````````````````End of Log`````````````````````` Link to post Share on other sites More sharing options...
stephen33 Posted November 6, 2013 Author ID:750505 Share Posted November 6, 2013 Sorry I have to go out for a few hours will be back ASAP Link to post Share on other sites More sharing options...
Psychotic Posted November 6, 2013 ID:750509 Share Posted November 6, 2013 Your system is clean now! Mozilla Firefox out of dateYour Firefox browser is outdated. Please follow these instructions to update it:Get the actual firefox from here. Run setup and follow the instructions on your monitor. Report any problems you have with the update. Also, get a new version of WinPatrol! Uninstall our tools using delfixPlease follow these steps in order: In the case we used Defogger to turn off your CD emulation software. You can start it again and use the Enable button. In the case we used Combofix. Deactivate your antivirus software once more, then rename the combofix.exe to uninstall.exe and run it one last time. You shall be noted that Combofix has been removed. In any case please download delfix to your desktop. Close all other programms and start delfix. Please check all the boxes and run the tool. delfix will now delete all found traces of our removal process [*] If there is still something left please delete it manualy. How to protect yourself System UpdatesBeeing up to date is very important. Please be sure to activate automatic updates in your control panel. Windows XP | Windows Vista | Windows 7 | windows 8 ProtectionWhat you need is one (not more) good virus scanner with backgroud protection. Additionally I recommend a special malwarescanner that you run from time to time.Personally I am using the avast! Antivirus Free Edition and Malwarebytes Anti-Malware. They offer you good protection for free use. But please remember: You get only the full protection if you use the payed versions of your security software. Up to date SoftwareStay up to date with all the programs you use. Some of those really have to have an eye on are: your browser(s) including add-ons and plug-ins, Java, Flash Player, your virus scanner, and basically every software you use often. These link may help you to check: Secunia Online Software Inspector - Checks if your software has updates available. Filehippo Update Checkere - This tool also scans your computer for outdated software. Mozilla: Check your plugins - The webpage will tell you if you have outdated plugins in your Firefox browser. [*] BackupsThere are chances for an emergency every day. So be prepared. Back up your data on a regular basis. If you burn it to DVDs from time to time, use a cloud-drive or a professional network backup system is your choice. [*] BrainsIt's no joke! You really need one of those things. It is very important not just to click anywhere it is colored or flashing while you surfing on the web. Do not click an OK button on any popping window without reading what it says. While installing software always choose the custom mode, read what those windows says and uncheck adware that will be installed along the software you want. Link to post Share on other sites More sharing options...
stephen33 Posted November 6, 2013 Author ID:750553 Share Posted November 6, 2013 Sorry No1 what is defogger? Link to post Share on other sites More sharing options...
Psychotic Posted November 6, 2013 ID:750564 Share Posted November 6, 2013 We didn´t use it for your case so just ignore that line. Link to post Share on other sites More sharing options...
stephen33 Posted November 6, 2013 Author ID:750565 Share Posted November 6, 2013 I downloaded Defogger from bleeping computer,clicked enable,clicked yes to continue then got error message "unable to open file" Link to post Share on other sites More sharing options...
stephen33 Posted November 6, 2013 Author ID:750567 Share Posted November 6, 2013 Once again excuse my stupidity.im about to run DELFIX Link to post Share on other sites More sharing options...
Recommended Posts