Web User Forums

Web User Forums (http://forum.webuser.co.uk/index.php)
-   Malware Removal Help & Analysis (http://forum.webuser.co.uk/forumdisplay.php?f=225)
-   -   Hijack log (http://forum.webuser.co.uk/showthread.php?t=123850)

Lisa2013 07-08-13 10:32

Hijack log
 
hi everyone, when I start my computer up I get this message: windows cannot find c:/program


here is my log..thanks in advance

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 10:26:57, on 07/08/2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16384)
FIREFOX: 23.0 (en-US)
Boot mode: Normal
Running processes:
C:\Users\Owner\AppData\Local\Pokki\Engine\pokki.ex e
C:\Users\Owner\AppData\Roaming\Dropbox\bin\Dropbox .exe
C:\Program Files (x86)\PremierOpinion\pmropn.exe
C:\Users\Owner\AppData\Local\Pokki\Engine\pokki.ex e
C:\Users\Owner\AppData\Local\Pokki\Engine\pokki.ex e
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlug in_11_8_800_94.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlug in_11_8_800_94.exe
C:\Users\Owner\Music\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://samsung13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Owner\AppData\Roaming\uTorrent\uTorrent. exe" /MINIMIZED
O4 - HKCU\..\Run: [Pokki] C:\windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaun chPlatform
O4 - Startup: Dropbox.lnk = C:\Users\Owner\AppData\Roaming\Dropbox\bin\Dropbox .exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpda teService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Intel? Centrino? Wireless Bluetooth? + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Easy Launcher - Samsung Electronics CO., LTD. - C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: IntelliMemory - Condusiv Technologies - C:\Program Files\Condusiv Technologies\IntelliMemory\IntelliMem.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PremierOpinion - VoiceFive, Inc. - C:\Program Files (x86)\PremierOpinion\pmservice.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SW Update Service (SWUpdateService) - Samsung Electronics CO., LTD. - C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel? Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 10813 bytes

bricat 07-08-13 20:05

Re: Hijack log
 
Welcome to the Webuser Forum :)

Is there any more to the message besides c:/program

looks like it is trying to start a program that may have been corrupted or removed.

Please download Malwarebytes' Anti-Malware

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish, so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.

Lisa2013 08-08-13 06:28

Re: Hijack log
 
Hi bricat, thanks for the welcome.

the error...c/program was all that it said. I have done like you said and it worked. i am so grateful thank you so much
My computer has only just come out the shop with that error but its been in the shop like 4 times and they keep making it worse so when i got the computer back yesterday and noticed this error no way was i giving it bk to them again lol knowhow - doesntknowhow

Web User knowshow

while im here do you know any good start menus for windows 8? i use pokki but its a tad slow

here is my return log for you


am i ok scanning this way like once a month and deleting like i just did?


Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.08.08.02

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16635
Owner :: LAPTOP [limited]

08/08/2013 06:12:52
mbam-log-2013-08-08 (06-12-52).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 237241
Time elapsed: 4 minute(s), 31 second(s)

Memory Processes Detected: 3
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\CLTMNGSVC.EXE (PUP.Optional.SearchProtect.A) -> 1764 -> No action taken.
C:\PROGRAM FILES (X86)\PREMIEROPINION\PMSERVICE.EXE (Adware.PremierOpinion) -> 2792 -> Delete on reboot.
C:\PROGRAM FILES (X86)\PREMIEROPINION\pmropn.exe (Adware.PremierOpinion) -> 3504 -> Delete on reboot.

Memory Modules Detected: 3
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\msvcp100.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\msvcr100.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Windows\System32\pmls.dll (Adware.PremierOpinion) -> Delete on reboot.

Registry Keys Detected: 4
HKLM\SYSTEM\CurrentControlSet\Services\CltMngSvc (PUP.Optional.SearchProtect.A) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall\SearchProtect (PUP.Optional.SearchProtect.A) -> No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\PremierOpin ion (Adware.PremierOpinion) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall\{eeb86aef-4a5d-4b75-9d74-f16d438fc286} (Adware.PremierOpinion) -> Quarantined and deleted successfully.

Registry Values Detected: 2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run |SearchProtectAll (PUP.Optional.SearchProtect.A) -> Data: C:\Program Files (x86)\SearchProtect\bin\cltmng.exe -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run |SearchProtect (PUP.Optional.ConduitSearchProtect) -> Data: C:\Users\Owner\AppData\Roaming\SearchProtect\bin\c ltmng.exe -> No action taken.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 46
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\lib (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spbd (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spbd\images (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spsd (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spsd\images (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\FFPROTECT (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\PREMIEROPINION (Trojan.Agent) -> Delete on reboot.
C:\PROGRAM FILES (X86)\PREMIEROPINION\components (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\defaults (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\defaults\preferences (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\resources (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\addon-sdk (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\addon (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\console (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\content (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\core (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\deprecated (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\events (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\traits (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\dom (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\event (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\io (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\l10n (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\lang (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\loader (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\net (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\page-mod (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\platform (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\preferences (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\private-browsing (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\PRIVATE-BROWSING\window (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\system (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\util (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\window (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\windows (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\toolkit (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\dpjs (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\dpjs\data (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\dpjs\lib (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAMDATA\MICROSOFT\Windows\START MENU\Programs\PREMIEROPINION (Adware.PremierOpinion) -> Quarantined and deleted successfully.

Files Detected: 162
C:\Users\Owner\AppData\Local\Temp\QVtw3fEv.exe.par t (PUP.Optional.IBryte.A) -> No action taken.
C:\Users\Owner\AppData\Local\Temp\SPStub.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\Owner\AppData\Local\Temp\ToolbarHelper.ex e (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\Owner\AppData\Local\Temp\Conduit\checktbe xist.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\Owner\AppData\Local\Temp\ct2998365\chLogi c.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\Owner\AppData\Local\Temp\ct2998365\ctbe.e xe (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\Owner\AppData\Local\Temp\ct2998365\ffLogi c.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\Owner\AppData\Local\Temp\ct2998365\ieLogi c.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\Owner\AppData\Local\Temp\ct2998365\spch.e xe (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\Owner\AppData\Local\Temp\ct2998365\spff.e xe (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\Owner\AppData\Local\Temp\ct2998365\statis ticsStub.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\Owner\AppData\Local\Temp\ct2998365\stub.e xe (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\Owner\downloads\LondonNight.exe (PUP.Optional.Smart) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\FIREFOXMODULE.DLL (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\ChromeModule.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\cltmng.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\CltMngSvc.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\InternetExplorerModule.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\msvcp100.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\msvcr100.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\SPHook32.dll (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\SPRunner.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\bin\uninstall.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\DIALOGSAPI.JS (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\lib\jquery.min.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\lib\json2.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spbd\bubble.css (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spbd\bubble.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spbd\main.html (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spbd\images\informatio n.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spbd\images\x-default-LTR.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spbd\images\x-default-RTL.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spbd\images\x-mouseover-LTR.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spbd\images\x-mouseover-RTL.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spsd\main.html (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spsd\SearchProtector.c ss (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spsd\settings.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spsd\images\ok-button.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spsd\images\separation-line.png (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\Dialogs\spsd\images\warning.pn g (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\FFPROTECT\NSPROTECTOR.JS (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\FFPROTECT\abstraction.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\PROGRAM FILES (X86)\SEARCHPROTECT\FFPROTECT\application.js (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Users\Owner\AppData\Roaming\SEARCHPROTECT\bin\c ltmng.exe (PUP.Optional.ConduitSearchProtect) -> No action taken.
C:\PROGRAM FILES (X86)\PREMIEROPINION\PMSERVICE.EXE (Adware.PremierOpinion) -> Delete on reboot.
C:\PROGRAM FILES (X86)\PREMIEROPINION\pmropn.exe (Adware.PremierOpinion) -> Delete on reboot.
C:\Windows\System32\pmls.dll (Adware.PremierOpinion) -> Delete on reboot.
C:\PROGRAM FILES (X86)\PREMIEROPINION\chrome.manifest (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\install.rdf (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\ncncf.dat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\nscf.dat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\pmcm.crx (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\pmcm.txt (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\pmls.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\pmls64.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\pmoci.bin (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\pmph.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\pmropn32.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\pmropn64.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\pmxf.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\readme.txt (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\COMPONENTS\pmxg.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\bootstrap.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\harness-options.json (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\install.rdf (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\locales.json (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\pmnx.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\defaults\PREFERENCES\ prefs.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\chrome.mani fest (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\base64.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\page-mod.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\private-browsing.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\self.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\system.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\timers.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\url.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\windows.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\addon\runner.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\console\plain-text.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\console\traceback.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\content\content-proxy.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\content\content-worker.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\content\loader.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\content\thumbnail.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\content\worker.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\core\heritage.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\core\namespace.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\core\promise.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\api-utils.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\cortex.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\errors.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\events.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\light-traits.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\list.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\memory.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\observer-service.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\traits.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\window-utils.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\events\assembler.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\DEPRECATED\traits\core.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\dom\events.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\event\core.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\event\target.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\io\byte-streams.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\io\data.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\io\file.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\io\text-streams.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\l10n\core.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\l10n\html.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\l10n\loader.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\l10n\locale.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\l10n\prefs.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\lang\functional.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\loader\cuddlefish.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\loader\sandbox.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\net\url.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\page-mod\match-pattern.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\platform\xpcom.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\PREFERENCES\service.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\PRIVATE-BROWSING\utils.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\PRIVATE-BROWSING\window\utils.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\system\environment.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\system\events.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\system\globals.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\system\runtime.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\system\unload.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\system\xul-app.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs\common.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs\events.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs\helpers.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs\namespace.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs\observer.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs\tab-fennec.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs\tab-firefox.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs\tab.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs\tabs-firefox.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs\tabs.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs\utils.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\tabs\worker.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\util\array.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\util\deprecate.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\util\list.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\util\object.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\util\registry.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\util\uuid.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\window\browser.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\window\namespace.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\window\utils.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\windows\dom.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\windows\fennec.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\windows\firefox.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\windows\loader.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\windows\observer.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\windows\tabs-fennec.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\sdk\windows\tabs-firefox.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\ADDON-SDK\lib\toolkit\loader.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\dpjs\data\c ontent.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\dpjs\lib\do mpilot.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\dpjs\lib\dp util.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAM FILES (X86)\PREMIEROPINION\firefox\RESOURCES\dpjs\lib\ma in.js (Trojan.Agent) -> Quarantined and deleted successfully.
C:\PROGRAMDATA\MICROSOFT\Windows\START MENU\Programs\PREMIEROPINION\PremierOpinion.lnk (Adware.PremierOpinion) -> Quarantined and deleted successfully.

(end)

bricat 08-08-13 08:48

Re: Hijack log
 
Firstly go to control panel/remove a program and uninstall SEARCHPROTECT

then :-

Download and scan with CCleaner
  1. CCleaner installs the Yahoo Toolbar as an option which IS checkmarked by default during the installation.
    IF you do NOT want it, REMOVE the checkmark when provided with the option OR download the toolbar-free or Slim versions instead of the Standard Build.
  2. Before first use, select Options > Advanced and UNCHECK "Only delete files in Windows Temp folder older than 48 hours"
    Then select "Cookies"
    Move any cookies you wish to retain, e.g. login cookies, in the left-hand window to the right-hand window by highlighting them and clicking the right arrow in the centre.
  3. Then select the items you wish to clean up.
    In the Windows Tab:

    • Clean all entries in the "Internet Explorer" section.
    • Clean all the entries in the "Windows Explorer" section.
    • Clean all entries in the "System" section.
    • Clean any others that you choose.



    In the Applications Tab:

    • Clean all entries in the Mozilla Firefox Section.
    • Clean all in the Opera section if you use it.
    • Clean Sun Java in the Internet Section.
    • Clean any others that you choose.

  4. Click the "Run Cleaner" button.
  5. A pop up box will appear advising this process will permanently delete files from your system.
  6. Click "OK" and it will scan and clean your system.
  7. Click "exit" when done.


there are a couple of windows 8 start menus HERE I'm not sure how good they are, i have never tried them.


run both MBAM and CCLEANER at least once a week.

i don't see any ANTI VIRUS installed, being on the internet without it is like playing russian roulette, and you are also a danger of infecting other users.

i suggest you install microsoft security essentials it's FREE and easy to use, it updates itself.


After you have done this let me know how it is running.

Lisa2013 08-08-13 11:58

Re: Hijack log
 
1 Attachment(s)
hi again. i done all you asked. i already had defender on my computer but not activated as i hadnt got round to that yet but ive done it now and i get an error.. pic attached.

http://forum.webuser.co.uk/attachmen...1&d=1375959431

bricat 08-08-13 12:45

Re: Hijack log
 
forget about windows defender, install microsoft security essentials.

Lisa2013 08-08-13 13:03

Re: Hijack log
 
1 Attachment(s)
i went to install it and i get this error (attached)

windows defender isnt in add/remove program so not sure what to do nowhttp://forum.webuser.co.uk/attachmen...1&d=1375963365

bricat 08-08-13 13:15

Re: Hijack log
 
can you just check that the computer clock is set at the right time and date ?

did you install MSE before trying to turn on windows defender ?
if you did , uninstall MSE and try running windows defender again.

Lisa2013 08-08-13 13:21

Re: Hijack log
 
yep all correct

bricat 08-08-13 13:31

Re: Hijack log
 
did you install MSE before trying to turn on windows defender ?
if you did , uninstall MSE and try running windows defender again.


All times are GMT. The time now is 10:59.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
Copyright Dennis Publishing 2010, All rights reserved