Yesterday I encountered some odd virus, I'm not sure if it was a RAT or a simple password-stealer, but it managed to successfully take over some forum accounts and my gmail account (luckily I got that one back immediately) within a few hours of running it. This morning I booted into safe mode, deleted the entire thing and did a system restore to 2 days ago to try and clean it. Just to be certain, I did a full system scan with Comodo, MBAM, SAS, and S&D. All that came up were some cookies and a few false-positives, but I'd just like to make sure my system is clean before I do anything else on it.
AdwCleaner log
# AdwCleaner v2.304 - Logfile created 07/08/2013 at 15:04:41
# Updated 03/07/2013 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (64 bits)
# User : White Light - WHITELIGHT-PC
# Boot Mode : Normal
# Running from : C:\Users\White Light\Downloads\adwcleaner.exe
# Option [Search]
***** [Services] *****
***** [Files / Folders] *****
File Found : C:\Users\White Light\AppData\Roaming\Mozilla\Firefox\Profiles\3nonlqgs.default\foxydeal.sqlite
Folder Found : C:\ProgramData\APN
Folder Found : C:\ProgramData\boost_interprocess
Folder Found : C:\Users\White Light\AppData\Roaming\Mozilla\Firefox\Profiles\3nonlqgs.default\extensions\staged
***** [Registry] *****
Key Found : HKCU\Software\APN PIP
Key Found : HKLM\Software\InstallIQ
Key Found : HKLM\Software\PIP
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16490
[OK] Registry is clean.
-\\ Mozilla Firefox v19.0.2 (en-US)
File : C:\Users\White Light\AppData\Roaming\Mozilla\Firefox\Profiles\3nonlqgs.default\prefs.js
Found : user_pref("extensions.skipscreen.hostMatchStr", "hxxp://www.4shared.com/(get|audio|file|document|dir[...]
-\\ Google Chrome v27.0.1453.116
File : C:\Users\White Light\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] File is clean.
*************************
AdwCleaner[R1].txt - [1442 octets] - [08/07/2013 15:04:41]
########## EOF - C:\AdwCleaner[R1].txt - [1502 octets] ##########
Malwarebytes' Anti-Malware (MBAM) log
Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.orgDatabase version: v2013.07.08.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
White Light :: WHITELIGHT-PC [administrator]
Protection: Enabled
7/8/2013 12:09:54 PM
mbam-log-2013-07-08 (12-09-54).txt
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 482755
Time elapsed: 2 hour(s), 41 minute(s), 49 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 33
C:\Users\White Light\Downloads\pooler-cpuminer-2.2.3-win32 (1).zip (PUP.BitCoin) -> No action taken.
C:\Users\White Light\Downloads\pooler-cpuminer-2.2.3-win32.zip (PUP.BitCoin) -> No action taken.
C:\Windows\AutoKMS\AutoKMS.exe (Trojan.AutoKMS) -> No action taken.
C:\ProgramData\Comodo\Cis\Quarantine\data\{0DFA085A-C1F8-4FD5-99E6-3D648D3F7029} (HackTool.Binder) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{157B0284-9C67-4B92-B0FB-DDFB94CBE9B0} (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{18A61399-4C11-4FD2-92B2-1232F4447860} (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{20676021-8FC6-4525-962D-3FE022F6662D} (HackTool.Binder) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{2E3FE223-0AE8-4E90-8363-470F5A2BC2EC} (PUP.RiskwareTool.CK) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{35653073-7B05-4B03-ACD9-AB88C5A03F90} (Trojan.Agent) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{35654697-B7DC-49DA-AA6C-A22F7395F6D1} (Backdoor.Agent.DCRSAGen) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{4606DF8D-C9FA-416A-85CE-EC7490A41C27} (PUP.RiskwareTool.CK) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{4D798EF7-5127-4D11-9D91-F12630ED021C} (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{5A079A4A-BD71-4D06-9396-A675E32D3A24} (Trojan.Agent) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{5BFA295D-B9EE-4FD7-A7E1-CF616D3BCBE2} (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{642446B5-C0BF-4215-A0C3-B3EAC2C351C1} (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{719C4328-45AC-4A26-A817-E48554132D11} (PUP.RiskwareTool.CK) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{837595C3-5163-4304-BD86-01CE356F2BDB} (PUP.RiskwareTool.CK) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{8A8CD256-BE12-4241-9BA3-9ECD61B616F6} (PUP.RiskwareTool.CK) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{8B999078-43DA-4488-B27F-A05308CE44C9} (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{8E36A856-F3FD-422D-AD00-7BE7E78E9260} (PUP.PassView) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{8EEDBBBA-2B86-4696-B491-996C82EBC590} (Trojan.BitMiner) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{90DDECD5-BACC-4613-BF32-5702097E7B24} (PUP.RiskwareTool.CK) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{96445AE3-B9EB-4A05-8ADA-76F31CB3E1EC} (Trojan.Agent) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{A485B28F-D76B-413D-B049-379ED4F1DB61} (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{B5CEC9B3-F3E9-44FE-B4D0-2C87D8F9892A} (Trojan.BitMiner) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{CA81CB4B-97CF-4E33-BE1D-B512697FD481} (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{D03BC1DA-462B-446C-AF71-8622AEDDDA90} (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{D5C7E1BF-2D7B-4E72-9587-0AC89E583E21} (Backdoor.Agent.DCRSAGen) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{DBC1B9CE-0687-4CE3-97CF-731A295EBA0C} (PUP.RiskwareTool.CK) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{F458468F-F4EE-4D7F-AAB6-562D25BD7629} (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{FA614DEE-2638-43BA-87A3-85B76C7C45E6} (PUP.RiskwareTool.CK) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{FC1AB5E5-9869-4E1B-902D-30AEFA237C5E} (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\ProgramData\Comodo\Cis\Quarantine\data\{FC59C9DD-6CD4-4A9D-A8F7-56C6C00E77D0} (Trojan.Backdoor) -> Quarantined and deleted successfully.
(end)
Security Check log
Results of screen317's Security Check version 0.99.68
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 10
``````````````Antivirus/Firewall Check:``````````````[/u]
Windows Firewall Disabled!
COMODO Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````[/u]
Malwarebytes Anti-Malware version 1.75.0.1300
Visual Studio Extensions for Windows Library for JavaScript
Java version out of Date! Adobe Flash Player 11.7.700.169
Mozilla Firefox 19.0.2
Firefox out of Date! Google Chrome 27.0.1453.110
Google Chrome 27.0.1453.116
````````Process Check: objlist.exe by Laurent````````[/u]
Malwarebytes Anti-Malware mbam.exe
Comodo Firewall cmdagent.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````[/u]
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````[/u]
I have Java disabled and I don't use Firefox, hence why they're both out of date.
Really just hoping for a clean bill of health here.