Well, I believe I'm clean, but..

Welcome to Majorgeeks!

Please follow proper procedures given below that are require before posting HJT logs. Make sure you install HJT properly.

Please follow our standard cleaning procedures which are necessary for us to provide you support. Also there are steps included for installing, running, and posting HijackThis logs as attachments.

• Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support
• Make sure you check version numbers and get all updates.
• Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

• After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:

Downloading, Installing, and Running HijackThis
​

• When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too (these scans are covered in steps 6 & 7 of the READ & RUN ME sticky)
  • Bitdefender
  • Panda Scan
  • HijackThis

.

 

Are you sure about that! I tend to doubt it. You really should complete the whole procedure and attach the requested logs. I saw some problems in your HJT log that are not going to go away just by running the procedures. Manual steps will be needed to get the rest of your problems after the READ ME has been completed.

 

Please run HijackThis and click on the Open the Misc Tools Section button on the open page. Then select Open process manager on the left-hand side. Look for the following process (or processes) and one at a time kill them by selecting it and then click Kill process. Then click yes.
C:\Program Files\Common Files\{DCCE0494-07DA-1033-0121-050915040001}\Update.exe


After killing all the above processes, click Back.
Then please click Scan and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
O15 - Trusted Zone: *.elitemediagroup.net
O16 - DPF: {5526B4C6-63D6-41A1-9783-0FABF529859A} - http://cabs.elitemediagroup.net/cabs/mediaview.cab


After clicking Fix, exit HJT

Now copy the bold text below to notepad. Save it as fixme.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

Now reboot and then delete the below folder:
C:\Program Files\Common Files\{DCCE0494-07DA-1033-0121-050915040001}


Let me know the results and also attach a new HJT log and also run the below very fast scan (it takes only about 3 to 5 seconds to run).

Run the below procedure and attach the runkeys.txt log.

• Using GetRunKey

 

Run the below procedure and attach the newfiles.txt log.

• Using ShowNew

Also do the below!

Copy the bold text below to notepad. Save it as fixme.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.