Iminient

[directroy]

Hi Jack, I know that your site is undergoing changes some of which have affected my submitting a report
A few weeks ago My pc started to use a browser called iminient which I at first thought it was perhaps from microsoft but I then realised that the browser sent me all over the place, I looked on line and found your malware tips.
I have downloaded to the desktop the logs which I hope will now reach you

 

[TwinHeadedEagle]

Follow this topic and attach the reports

http://malwaretips.com/threads/malware-removal-assistance-how-to-get-help.20334/

If you already have the reports, just upload them. There's a option Upload a File below...

 

[aztony]

I think his report was added to the wrong thread.

http://malwaretips.com/threads/tale...-wrestling-with-ransomware.20317/#post-147885
aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-12-09 14:13:15
-----------------------------
14:13:15.046 OS Version: Windows 5.1.2600 Service Pack 3
14:13:15.046 Number of processors: 1 586 0xE08
14:13:15.046 ComputerName: ROYSPC UserName:
14:13:16.187 Initialize success
14:14:47.937 The log file has been saved successfully to "C:\Documents and Settings\HP_Administrator.ROYSPC\My Documents\aswMBR.txt"
14:20:44.250 AVAST engine defs: 13120900
15:17:14.609 The log file has been saved successfully to "C:\Documents and Settings\HP_Administrator.ROYSPC\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-12-12 18:17:52
-----------------------------
18:17:52.734 OS Version: Windows 5.1.2600 Service Pack 3
18:17:52.734 Number of processors: 1 586 0xE08
18:17:52.734 ComputerName: ROYSPC UserName:
18:17:56.906 Initialize success
18:18:25.343 The log file has been saved successfully to "C:\Documents and Settings\HP_Administrator.ROYSPC\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-12-12 18:17:52
-----------------------------
18:17:52.734 OS Version: Windows 5.1.2600 Service Pack 3
18:17:52.734 Number of processors: 1 586 0xE08
18:17:52.734 ComputerName: ROYSPC UserName:
18:17:56.906 Initialize success
18:18:25.343 The log file has been saved successfully to "C:\Documents and Settings\HP_Administrator.ROYSPC\Desktop\aswMBR.txt"
18:22:16.375 AVAST engine defs: 13121200
18:22:33.734 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
18:22:33.750 Disk 0 Vendor: ST316081 3.AH Size: 152627MB BusType: 3
18:22:34.296 Disk 0 MBR read successfully
18:22:34.296 Disk 0 MBR scan
18:22:34.906 Disk 0 unknown MBR code
18:22:34.984 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 145670 MB offset 63
18:22:35.250 Disk 0 Partition 2 00 0C FAT32 LBA RECOVERY 6947 MB offset 298347840
18:22:37.968 Disk 0 scanning sectors +312575760
18:22:38.265 Disk 0 scanning C:\WINDOWS\system32\drivers
18:23:32.125 Service scanning
18:24:18.046 Service MpKsl2f0a5a90 C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E4279B06-AFB3-43EA-8CD4-09271FDF18D1}\MpKsl2f0a5a90.sys **LOCKED** 32
18:24:52.406 Modules scanning
18:25:06.734 Disk 0 trace - called modules:
18:25:06.765 ntkrnlpa.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
18:25:06.765 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8641fab8]
18:25:06.765 3 CLASSPNP.SYS[f7668fd7] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x86d77030]
18:25:07.390 AVAST engine scan C:\WINDOWS
18:25:50.078 AVAST engine scan C:\WINDOWS\system32
18:32:54.875 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\HP_Administrator.ROYSPC\Desktop\MBR.dat"
18:32:55.031 The log file has been saved successfully to "C:\Documents and Settings\HP_Administrator.ROYSPC\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-12-12 18:17:52
-----------------------------
18:17:52.734 OS Version: Windows 5.1.2600 Service Pack 3
18:17:52.734 Number of processors: 1 586 0xE08
18:17:52.734 ComputerName: ROYSPC UserName:
18:17:56.906 Initialize success
18:18:25.343 The log file has been saved successfully to "C:\Documents and Settings\HP_Administrator.ROYSPC\Desktop\aswMBR.txt"
18:22:16.375 AVAST engine defs: 13121200
18:22:33.734 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
18:22:33.750 Disk 0 Vendor: ST316081 3.AH Size: 152627MB BusType: 3
18:22:34.296 Disk 0 MBR read successfully
18:22:34.296 Disk 0 MBR scan
18:22:34.906 Disk 0 unknown MBR code
18:22:34.984 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 145670 MB offset 63
18:22:35.250 Disk 0 Partition 2 00 0C FAT32 LBA RECOVERY 6947 MB offset 298347840
18:22:37.968 Disk 0 scanning sectors +312575760
18:22:38.265 Disk 0 scanning C:\WINDOWS\system32\drivers
18:23:32.125 Service scanning
18:24:18.046 Service MpKsl2f0a5a90 C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E4279B06-AFB3-43EA-8CD4-09271FDF18D1}\MpKsl2f0a5a90.sys **LOCKED** 32
18:24:52.406 Modules scanning
18:25:06.734 Disk 0 trace - called modules:
18:25:06.765 ntkrnlpa.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
18:25:06.765 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8641fab8]
18:25:06.765 3 CLASSPNP.SYS[f7668fd7] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x86d77030]
18:25:07.390 AVAST engine scan C:\WINDOWS
18:25:50.078 AVAST engine scan C:\WINDOWS\system32
18:32:54.875 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\HP_Administrator.ROYSPC\Desktop\MBR.dat"
18:32:55.031 The log file has been saved successfully to "C:\Documents and Settings\HP_Administrator.ROYSPC\Desktop\aswMBR.txt"
18:37:21.218 AVAST engine scan C:\WINDOWS\system32\drivers
18:38:59.421 AVAST engine scan C:\Documents and Settings\HP_Administrator.ROYSPC
19:17:46.062 AVAST engine scan C:\Documents and Settings\All Users
19:30:49.718 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\HP_Administrator.ROYSPC\Desktop\MBR.dat"
19:30:49.921 The log file has been saved successfully to "C:\Documents and Settings\HP_Administrator.ROYSPC\Desktop\aswMBR.txt"
Attached Files:

 

[TwinHeadedEagle]

Hi, this is only one report, I need all of them...