Initial site 1. 23 infection SolvedThank you for helping me. I did as you instructed me. The logs are below. However please have in mind that it is quite difficult to even come to this page, as the browser keeps opening pages and redirecting me. So here are the reports Fix result of Farbar Recovery Scan Tool x. Version 0. 8 0. Ran by SR 1. Run 1. Running from C UsersSRDesktop. CzV1eITUs/hqdefault.jpg' alt='Adobe Premiere Project Manager Unknown Error' title='Adobe Premiere Project Manager Unknown Error' />Loaded Profiles SR Available Profiles SRBoot Mode Normalfixlist content HKLM. Run vnlgp C UsersSRApp. DataRoamingvnlgpvnlgpstart. ATTENTIONHKLM. Run. Once OMEWPRODUCTE9. US2 C Program Files x. Best. Ziper9. 3B5. This alphabetical list of filename extensions contains standard extensions associated with computer files. Film festival, Princeton NJ, Independent FIlm, Submit your film, cannes, film, tribeca, tiff, movie, sundance, academy awards, oscars, spirit awards, Indie, new york. Adobe Premiere Project Manager Unknown Error' title='Adobe Premiere Project Manager Unknown Error' />UYZVYBS0. Y. exe 5. NYUW lt ATTENTIONC Program Files x. Best. Ziper. C UsersSRApp. DataRoamingvnlgpvnlgp. Group. Policy. Scripts Restriction lt ATTENTIONFF Extra. Check C Program Files x. ATTENTION Points to FF Extra. Check C Program Files x. ATTENTIONTask 0. FC2. FB C2. F0 4. C5 8. D7 3. 4F6. C0. CE4. System. TasksUpdaterOnlineApplication C Program Files x. MicroleavesOnline ApplicationOnline Application Updater. Microleaves lt ATTENTIONTask 0. E4. 44. B BB9. 2 4. E7 8. B2. 2 3. 76. A6. 9FA4. BC7 One System Care Task No File lt ATTENTIONTask 2. D3. A6. 20 C9. 5C 4. F5. E 0. F8. 1A4. F7. EB8 System. Tasks3. P8. Ifod. Vgq. Q2. DPTN9. K C UsersSRApp. DataRoaming3. 8ddpx. P8. Ifod. Vgq. Q2. DPTN9. K. exe lt ATTENTIONTask 5. B8. 75. E B0. CC 4. D6 9. 44. 6 7. 88. CFFC8. DEE7 System. TasksOnline Application V2. G2 C Program Files x. MicroleavesOnline ApplicationVersion 2. Online Guardian. Microleaves LTD lt ATTENTIONTask C0. A9. 2E0 CB3. 7 4. F8. 3 AD2. D B1. B7. Tally 7.2 Setup Full Version. F9. DBDF7. 3 System. TasksOnline Application V2. G3 C Program Files x. MicroleavesOnline ApplicationVersion 2. Online Guardian. Microleaves LTD lt ATTENTIONTask C6. FA5. 1A 2. 18. D 4. FEE A4. D9 4. 5F4. D7. A4. 60 System. TasksMicrosoftWindowsDevice. SettingsZwuentjertory msiexec. D2b. UH1b. F1g. 58. W. cl. Ou. Dfro. Nt. Samsung. XSSDX8. 50. XEVOX2. 50. GBS2. PNXAGA1. 28. 89. B amp d2. ATTENTIONTask E3. F0 2. 9BF 4. 87. AD6. ABDAAD5. FE2 System. TasksLaunch. Pre. Signup C Program Files x. OLBPreOLBPre. exe lt ATTENTIONTask E6. DE7. 6B1 6. 41. 0 4. ABC A8. 48 1. B4. FC9. B System. TasksOnline Application V2. G1 C Program Files x. MicroleavesOnline ApplicationVersion 2. Online Guardian. Microleaves LTD lt ATTENTIONTask C WINDOWSTasks3. P8. Ifod. Vgq. Q2. DPTN9. K. job C UsersSRApp. DataRoaming3. 8ddpx. P8. Ifod. Vgq. Q2. DPTN9. K. exe lt ATTENTIONTask C WINDOWSTasksOnline Application V2. G1. job C Program Files x. MicroleavesOnline ApplicationVersion 2. Online Guardian. ATTENTIONTask C WINDOWSTasksOnline Application V2. G2. job C Program Files x. Oracle.Dataaccess.Client Dll'>Oracle.Dataaccess.Client Dll. MicroleavesOnline ApplicationVersion 2. Online Guardian. ATTENTIONTask C WINDOWSTasksOnline Application V2. G3. job C Program Files x. Donkey Kong Country Returns Wii Wbfs. MicroleavesOnline ApplicationVersion 2. Online Guardian. ATTENTIONTask C WINDOWSTasksUpdaterOnlineApplication. C Program Files x. MicroleavesOnline ApplicationOnline Application Updater. ATTENTIONShell. Icon. Overlay. Identifiers 0. Performance. Monitor 3. B5. B9. 73. C 9. A4 4. D3. F 0. F3. D2. 33. C Program. DataMicrosoftPerformanceMonitorPerformance. Monitor. dll No File. Custom. CLSID HKUS 1 5 2. ClassesCLSID0. CB2. B2. 9 4. FC AB9. 8 4. F1. D0. 68. 74. 1Inproc. Server. 32 C Program FilesAutodesk3ds Max 2. Inventor ServerBinTest. Server. dll No File. Custom. CLSID HKUS 1 5 2. ClassesCLSID8. C2. B6. 56 4. E6. E 4. B4. 5 9. 92. D3. 9A3Inproc. Server. C Program FilesAutodesk3ds Max 2. Inventor ServerBinTest. Server. dll No File. Custom. CLSID HKUS 1 5 2. ClassesCLSIDE5. B0. D 4. 8D2 4. F0. 4 9. D 0. ED6. 5A2. DDInproc. Server. 32 C Program FilesAutodesk3ds Max 2. Inventor ServerBinTest. Server. dll No File. Task 0. 45. E4. B BB9. E7 8. B2. 2 3. 76. A6. FA4. BC7 One System Care Task No File lt ATTENTION2. C UsersSRApp. DataLocalTempBestziper. C UsersSRApp. DataLocalTempSetup. C UsersSRApp. DataLocalTempunins. Video. Box C UsersSRApp. DataLocalTempvbsetup. C UsersSRApp. DataLocalTempETe. Q2. Zg. 1w. C UsersSRApp. DataRoaming3. 8ddpx. P8. Ifod. Vgq. Q2. DPTN9. K. exe. C Program Files x. OLBPre. C Program Files x. Microleaves. Online Application x. Version 2. 6. 0 Microleaves Hidden lt ATTENTIONCMD netsh advfirewall reset. CMD netsh advfirewall set allprofiles state ONCMD ipconfig flushdns. CMD netsh winsock reset catalog. CMD netsh int ip reset C resettcpip. CMD FOR F usebackq delims i IN wevtutil el DO wevtutil cl iCMD Bitsadmin Reset Allusers. EMPTYTEMP Reboot HKLMSoftwareMicrosoftWindowsCurrent. VersionRunvnlgp value removed successfully. HKLMSoftwareMicrosoftWindowsCurrent. VersionRun. OnceOMEWPRODUCTE9. US2 value removed successfully. C Program Files x. Best. Ziper moved successfullyC UsersSRApp. DataRoamingvnlgpvnlgp folder move Could not move C UsersSRApp. DataRoamingvnlgpvnlgp Scheduled to move on reboot. C WINDOWSsystem. Group. PolicyMachine moved successfully. C WINDOWSsystem. Group. PolicyGPT. C Program Files x. C Program Files x. HKLMSOFTWAREMicrosoftWindows NTCurrent. VersionScheduleTask. CachePlain0. 1FC2. FB C2. F0 4. 6C5 8. D7 3. 4F6. 90. C0. CE4. 9 key removed successfully. HKLMSOFTWAREMicrosoftWindows NTCurrent. VersionScheduleTask. CacheTasks0. 1FC2. FB C2. F0 4. 6C5 8. D7 3. 4F6. 90. C0. CE4. 9 key removed successfully. C WINDOWSSystem. TasksUpdaterOnlineApplication moved successfully. HKLMSOFTWAREMicrosoftWindows NTCurrent. VersionScheduleTask. CacheTreeUpdaterOnlineApplication key removed successfully. HKLMSOFTWAREMicrosoftWindows NTCurrent. VersionScheduleTask. CachePlain0. 45. E4. B BB9. 2 4. E7 8. B2. 2 3. 76. A6. 9FA4. BC7 key removed successfully. HKLMSOFTWAREMicrosoftWindows NTCurrent. VersionScheduleTask. CacheTasks0. 45. E4. B BB9. 2 4. E7 8. B2. 2 3. 76. A6. 9FA4. BC7 key removed successfully. HKLMSOFTWAREMicrosoftWindows NTCurrent. VersionScheduleTask. CacheTreeOne System Care Task key removed successfully. HKLMSOFTWAREMicrosoftWindows NTCurrent. VersionScheduleTask. CacheLogon2. 4D3. A6. 20 C9. 5C 4. F5. E 0. F8. 1A4. F7. EB8 key removed successfully. HKLMSOFTWAREMicrosoftWindows NTCurrent. VersionScheduleTask. CacheTasks2. 4D3. A6. 20 C9. 5C 4. F5. E 0. F8. 1A4. F7. EB8 key removed successfully. C WINDOWSSystem. Tasks3. P8. Ifod. Vgq. Q2. DPTN9. K moved successfully. HKLMSOFTWAREMicrosoftWindows NTCurrent. VersionScheduleTask. CacheTree3. 8ddpx. P8. Ifod. Vgq. Q2. DPTN9. K key removed successfully. HKLMSOFTWAREMicrosoftWindows NTCurrent. VersionScheduleTask. CachePlain5. 86. B8. E B0. CC 4. D6 9. CFFC8. DEE7 key removed successfully. HKLMSOFTWAREMicrosoftWindows NTCurrent. VersionScheduleTask. CacheTasks5. 86. B8. E B0. CC 4. D6 9.