-
If you still have AdwCleaner on your machine I want you to right click on that and delete it.
Now, we'll download an updated version.
http://i.imgur.com/BY4dvz9.png AdwCleaner
- Please download AdwCleaner and save the file to your Desktop.
In order to use AdwCleaner, you have to agree the Eula: - Right-click AdwCleaner.exe and select http://i.imgur.com/AVOiBNU.jpg Run as administrator to run the programme.
- Follow the prompts.
- Click http://i.imgur.com/A49sxPr.png Scan.
- Upon completion, click http://i.imgur.com/6cyn5v5.png Logfile. A log (AdwCleaner[S1].txt) will open. Briefly check the log for anything you know to be legitimate.
- Return to AdwCleaner. Ensure anything you know to be legitimate does not have a checkmark under the corresponding tab.
- Click http://i.imgur.com/MqHawIb.png Clean.
- Follow the prompts and allow your computer to reboot.
- After the reboot, a log (AdwCleaner[C1].txt) will open. Copy the contents of the log and paste in your next reply.
-- File and folder backups are made for items removed using this programme. Should a legitimate file or folder be removed (otherwise known as a 'false-positive'), simple steps can be taken to restore the item. Please do not overly concern yourself with the contents of AdwCleaner[C1].txt.
~~~~~~~~~~~~``
Please download Junkware Removal Tool
or from here http://downloads.malwarebytes.org/file/jrt
to your desktop.
- Shut down your protection software now to avoid potential conflicts.
- Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
- The tool will open and start scanning your system.
- Please be patient as this can take a while to complete depending on your system's specifications.
- On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
- Post the contents of JRT.txt into your next message.
~~~~
please post
AdwCleaner[C1].txt
JRT.txt
-
Hello, AdwCleaner said no threats were found so I didn't clean anything so I have no logfile to post.
Here is the JRT.txt file:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.7 (07.03.2016)
Operating System: Windows 7 Home Premium x64
Ran by Owner (Administrator) on 09/21/2016 at 12:23:14.87
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 179
Successfully deleted: C:\Users\Owner\AppData\Local\{0024214A-36E5-4A94-A20C-47295A076CC0} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{00383928-7F54-41CC-B20A-3A2F4B90ABB2} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{01BED247-0D35-4CD4-A409-398219A98D39} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{02C0208C-DC4A-4E64-9885-5F69DE8D4ACB} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{02D59D42-40A8-4127-9E80-1238CD0D4C71} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{03F66F04-E5A1-4656-8B29-980D702E3F7E} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{05D2D757-F9B2-452D-ADDD-F1C89BBB8FB2} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{09792F63-3AB1-49C5-8A11-E69EB6D635AE} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{0B3978DB-6B1C-40CF-9034-EF400ACB1E90} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{0E8485DE-814E-4223-B739-BDD64D294E91} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{0F87A75F-6790-45F7-ABC2-7236494D1096} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{0F973BF4-686F-4596-9DF7-F446738C5A59} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{10DA4172-1302-45F1-8FF2-65802F4D9C96} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{1253D278-C375-4838-A91A-19AF622982B8} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{12B65814-E28E-4C9F-A92F-1266950E4ED5} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{14B2B911-371B-464F-9265-54D67BD4297D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{15650557-DAB6-4106-AE26-96BF2C9B766F} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{17180090-4748-428C-88F2-6A8CB40FF99B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{19101583-86C2-4400-B515-86D04B87FC68} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{1A16FA20-D639-4593-9CC0-1EA244324396} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{1CE59A62-933D-4467-94CA-18249B7EEF48} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{22F3FD28-E42B-4826-9C1F-69DAACFFC445} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{23289978-FA55-42A3-8C4C-BA73274D9DE9} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{23A30A5F-C046-403C-A334-A241201DD9A1} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2617093B-86CA-4C0E-9293-683C7A3D1C85} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{29A5629C-FC94-40E3-A568-A3E6954EEE5A} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2AAB15C5-6C3A-44FF-A92E-324B0AF65061} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2B2BE6D9-7FC0-4DBF-BA68-DEE4CE5994A5} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2CC9B5A5-7100-49D6-9CDB-AE9CFFEA0D3B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2D3E38E7-2540-463B-A3DF-DF029B9A05B3} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{2E97C133-0D12-4CD9-8C98-1728B045DAFB} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{30467CA5-E064-489A-B8B8-FB84076DA719} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{31874524-9796-4C26-A2D7-2A702BE1EADB} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{3488A903-5908-4E32-B6D2-9B04B961C077} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{34F408D0-F070-4CF2-BE03-7F3724468A64} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{354A0E43-9AB4-476D-93AA-EBFB00D09A74} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{36BB4B10-9A7B-499D-9890-B03DC677B242} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{370DE1A6-2FFC-444F-9500-FA6FDA820B65} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{38B2B614-A410-4449-BEAE-8AB8B0D21109} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{38F29E6B-D396-4BB2-8FB5-8B35F75437E1} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{393D2E20-7CA5-498C-AE5E-17124BA47E74} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{3B5BBF45-B4A9-4E93-83CF-D76D0B374CEE} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{3C394D6F-FDC0-48ED-AA85-EE80CD6C1FEF} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{3C8F344C-507B-42FF-88C7-CC84DE6B78E0} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{3E5A5AE4-EC79-4EBB-A526-34E11C171248} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{3F1B9554-A1A3-484E-BEFA-D7E9FF06A55B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{4113CD15-CA81-4603-BBA8-3D864EA14FA2} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{42B0CE1F-6D52-4DE8-9630-923960B1C7E7} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{432A514B-CEE6-489E-A247-DCCF9FA3B127} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{44EBC9BE-50EB-456F-A420-DAF9668C2F71} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{450913BA-3524-438A-B1CE-A81F0677704D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{451D6863-3E29-468D-BFCF-A218468E96F3} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{45CA8250-E477-486D-87B6-3FC485693105} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{47AC2F62-0CDB-463F-9954-D795F5616824} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{4933E032-3DB2-4B6C-AE1A-FC9B2C0B8165} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{494538F5-DF63-40AE-8533-1356F0C89F29} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{4BB62456-066F-44D7-A21E-0E285907B3AC} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{4BBEF8F4-E8E3-4F0F-BE4D-BA8F3AC687C2} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{4E31553C-510F-4E64-BAE6-51F9033F7E28} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{4E8547C4-307C-4BC2-A12C-31EE18336106} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{540CD953-46A8-4331-BE12-3B3161DE1B7B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{54F98F01-3A6F-43A3-A899-A9BA31DE9CF4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{56339C22-97B4-4B9A-88EA-73795DD53D8A} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{56F81457-0BE0-4252-A722-D939D450ACDD} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{592B3716-50A8-4A06-B6D7-A9298B5E7A75} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{5FFC0A48-23A0-45AE-B1B7-959C8346A41C} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{60AC9276-931A-4A09-8DEE-615F042168F4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{64314A86-47A2-43B3-8A8E-806A48B42A92} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{67568427-2CA6-4853-9270-6535D411AF9F} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{687C4B24-51C3-4128-8BD9-07EEB5947FA6} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{69D22C83-FEA3-4E2C-B8CF-B9B23E9E219D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{6A4A81B2-E306-4853-A27E-E0097BE1E56B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{6A615527-493B-4FCD-A7CC-6B82F484FF6F} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{6B696DB6-32C2-4E3B-BC75-B3328AAC3DAC} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{6C0C9DB4-BC94-4776-82C0-D4C1CDF467EC} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{6C13D7C4-2646-4E1C-9BE5-9498A0C320ED} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{6CBEAB9D-4298-4C72-989E-138343196661} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{6D0E66CC-288B-4FC8-9379-FF2B759CECC4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{76295205-8D96-4AE3-97E2-09A90BDC2EC0} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{77253A9D-5834-4E9E-9BDB-9F67CB60346B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{7740A674-CE9B-45D2-B4AD-6E3DFACC0F43} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{7756E88A-474B-467B-AD08-561DAC6CE6BE} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{789FC340-893E-4DB7-8F2E-B28C35952761} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{78B928BA-CCF3-4410-A38C-D90A05A3D7B6} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{7AA7BF82-C882-4117-8410-E180934DC606} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{7BCB7794-67A9-4F39-B57D-1C4FC5FC1A13} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{7E402C62-74C1-4A30-8C86-62452363F64B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{8015EBB6-7485-4D73-A7B7-384CB9571010} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{8066EA23-0C42-450C-BABD-D77FCF5D672F} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{82E10964-0507-4AEA-95CB-79AB3662154B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{86DFF790-B03C-4131-AFE8-5DFE4DAFBC40} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{87076E55-CE56-45AB-BCB8-92E10CA355AF} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{88232FE4-EFAF-4B36-9215-5C94E1553916} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{893201ED-CC0E-4730-8B19-394C2A89B272} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{8AE69126-6EF8-46B5-95EE-85F553E49F5C} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{8F0E5F80-D730-4E1D-BACD-DE325BC99A0D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{931DB317-5CE3-4302-AA40-C849F4F5C895} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{96E6027E-D180-47C4-8A17-2E19E20F3509} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{9A67C17B-A3F4-4387-9B23-D1498792AB1E} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{9B70FDCE-EE96-4FC5-8247-C35CEE345BD8} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{9C9276F2-651C-4DB9-9537-823704317027} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{9D9A9DC5-1826-42CF-9558-68B66FF1EC2F} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{9F1EC469-5D2C-4F63-8083-292F7E09901A} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A154F30A-F22F-4B3F-889F-409D5105D0CD} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A1E0D21A-52ED-4825-9BD0-7BF314BB3345} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A277E8DF-4E9A-4CC0-A6FD-0E74032971D6} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A2C09A6F-65D4-4ED7-897E-5745642F0FBF} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A40D67C4-D5D8-4D26-B6D3-604DEFA5FAD4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A44E8D0E-E8C6-4294-B2C6-B8163E95DF57} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A4E9CFF9-2687-4394-A72B-55D72C1F90FF} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A5CFAFC2-5EF8-4B4F-9FFC-742BEB3F2840} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A69F61A1-E7E0-44FB-A8FB-1894354A5C41} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A80A06AB-6741-4EA9-9269-750834906347} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{A9D03064-40C5-4D07-A5F3-8F967D97D69D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{ADD143EE-2791-4C1C-B264-B85E4702A161} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B18FB0F0-A529-462C-8F9E-72527AB8A188} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B3285994-9C48-47E2-A9AE-1BC9AA212BA4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B3DC3C89-84D4-45CD-85E8-2DDEE2A2848F} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B4A9CAD0-392D-4313-902C-0ECEE42CEF7C} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B4EA534F-1DB8-4531-B49B-36E05D210D3C} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B66481BE-76C7-43E6-A08A-0A737670D181} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B7D8870A-3E85-472B-A940-E2679FD02BAE} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B94EBC1F-6E9B-413F-BEEC-C4F96E828799} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{B970FF77-5985-49D0-B37C-F4DA112777CD} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{BAFC6672-4E75-4294-AB9B-20E6B6C20F51} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{BD99D952-4E7F-451D-89D7-190CB323CAF8} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{BE637D08-F731-4EB8-ACC4-180E32DF9ECB} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{BE8D6866-64A0-4475-8004-296292B2F672} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{C46CE9D3-4BBC-4032-B1A1-5A3E0491656F} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{C7102ACF-66D4-44E1-B238-19E8EF520DAC} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{CCE3E937-8142-4D7A-AE18-5E5FA96F54F3} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{CD54E28A-EC0D-4F24-8246-D4771D3E6506} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{CF121A3E-F163-4862-BC98-E2E8078383EA} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{CFC3688F-B90B-4320-BA98-FE15EC5A47AE} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{D0D28D77-92CD-4A4F-BCF2-F67D1CF15786} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{D2511BC2-94AC-4779-9BC6-41E5A3270912} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{D3EB4F18-7793-49F8-94A4-D946022DA016} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{D5151003-427A-478E-AC40-835E0F146E0B} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{D852B7B9-91A3-4166-A4A5-59E7071CECB4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{D9486B45-BC14-4423-A0D5-A9C674E127E6} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{D9CFB0E8-78FB-4630-AF75-5245370F263F} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{DE14F04F-CC81-410E-99AA-736E40953E1D} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{E21C2ABE-B10C-4E28-A065-60D93DB48DB5} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{E2DA54C4-EE95-4292-B7B1-B5635FADFBBB} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{E649DA2F-F320-4FF5-8E07-AB66C018A562} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{E7ABFD80-FC8F-48B4-8915-798ED36885F3} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{E8714771-FC90-48FD-BDC2-894CD1DA07B4} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{EA78B8E2-0428-4484-95A6-507CF0F34A95} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{EBB2F966-6371-4026-A7F6-FFE22FDACA8F} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{EC0FD7C9-6DF1-4A91-A653-64817B4AE553} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{ECB36ED5-32AC-4694-8F42-08E5370C9704} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{ECF51D14-71D4-4A1F-B262-B03B4937B322} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{ED438FF1-363C-4DB2-B5F5-30A9E49D4BA7} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F2C43C89-5FB0-4D8A-A333-147947BE9016} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F405D9F6-64C6-4D9E-9B00-082DD73999A8} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F4AB706A-B3CC-43EF-9A6B-3614F34FA0D1} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F7F15DDE-3E95-4FE4-88E7-7D5228EC6802} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{F9A9C3C6-FFE9-47F4-9DF9-D3C783696F10} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{FA3E450D-DC37-4E00-8A00-749EFA93C0B1} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{FAF313A9-C2EF-4554-815E-D8FC4E76A699} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{FB8D576D-1C37-4E7C-BBD4-BB742F516DAD} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{FD074450-47B8-40AB-9395-102FD8AA8E46} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\{FEA7C6B6-D921-4E4F-9E39-558816752A44} (Empty Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2CL3Q1K0 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9GN9EHT1 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HYGJGI55 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\II043Z1K (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JNH3WV29 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MAESXXVS (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ULLWQU9G (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WAPJ8N9L (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2CL3Q1K0 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9GN9EHT1 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HYGJGI55 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\II043Z1K (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JNH3WV29 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MAESXXVS (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ULLWQU9G (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WAPJ8N9L (Temporary Internet Files Folder)
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 09/21/2016 at 12:27:31.59
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
If there are still pop ups related to a specific profile while using Firefox, I think we'll need to save bookmarks, uninstall, then reinstall.
How is your computer at the moment?
-
Computer is still running loud. For a few hours there I thought it was lower but I can't be sure. Still not quiet like it was a few weeks back.
-
Do you still have Emsisoft Emergency Kit on your desktop?
Let's run that again and allow it to delete/quarantine what it finds this time
- Click on Scan to be taken to the scan options.
- If you are asked if you want the scanner to scan for Potentially Unwanted Programs, then click Yes.
- Click on the Malware Scan button to start the scan.
- When the scan is completed click the Quarantine selected objects button. Note, this option is only available if malicious objects were detected during the scan.
- When the threats have been quarantined, click the View report button in the lower-right corner, and the scan log will be opened in Notepad.
- Please save the log in Notepad on your desktop, and copy it to your next reply.
- When you close Emsisoft Emergency Kit, it will give you an option to sign up for a newsletter. This is optional, and is not necessary for the malware removal process.
-
Here is the scan from the Emisisoft:
Emsisoft Emergency Kit - Version 11.9
Last update: 09/19/2016 8:48:38 PM
User account: Owner-HP\Owner
Computer name: OWNER-HP
OS version: Windows 7x64 Service Pack 1
Scan settings:
Scan type: Malware Scan
Objects: Rootkits, Memory, Traces, Files
Detect PUPs: On
Scan archives: Off
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off
Scan start: 09/22/2016 6:17:41 AM
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\AU__RASAPI32 detected: Application.Win32.InstallExt (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\AU__RASMANCS detected: Application.Win32.InstallExt (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\HPSF_TASKS_RASAPI32 detected: Application.Win32.InstallExt (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\HPSF_TASKS_RASMANCS detected: Application.Win32.InstallExt (A)
Scanned 84121
Found 4
Scan end: 09/22/2016 6:33:58 AM
Scan time: 0:16:17
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\HPSF_TASKS_RASMANCS Application.Win32.InstallExt (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\HPSF_TASKS_RASAPI32 Application.Win32.InstallExt (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\AU__RASMANCS Application.Win32.InstallExt (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\AU__RASAPI32 Application.Win32.InstallExt (A)
Quarantined 4
-
Let's see if we can see whats causing the constant running or high CPU
Right click on the tool bar located at the bottom of the screen, let task manager open then, click on the small box that says
Show processes from all users.
Use the scroll bar and look at what might be causing or using a high amount of CPU.
From what we've done it doesn't appear to be malware related, not saying it's impossible I just don't see what it is.
-
The two biggest things that show on the processes is:
svchost.exe
System Idle Process
They are both around 50 CPU.
-
When mine did this, Microsoft was the culprit.
Have you checked manually for updates in the last couple of days?, do you have your computer set to update automatically?
~~~~~
This repair may take some hours !!!
Tweaking.com - Windows Repair All-In-One (Portable)
- Download Windows Repair All-In-One (Portable Version) from here.
- Extract tweaking.com_windows_repair_aio.zip to your Desktop.
- Disable all your antivirus and antimalware software - see how to do that here.
- Right click on https://i.imgur.com/QfBzvq1.png and select Run as Administrator (XP users just double click) to start Windows Repair All-In-One.
(Windows Vista/7/8 users: Accept UAC warning if it is enabled.)
- A window will appear. Click Step 2.
http://i.imgur.com/2f8o60N.png
- Click the Open Pre-Scan button, then click Start Scan. Wait for Windows Repair to finish scanning.
- Depending on which error Windows Repair found, click Repair Reparse Point or Repair Environment Variable accordingly. When the button changes to "Done!", click the close button to return to Windows Repair.
- Go to Step 3, then click Check in the See If Check Disk Is Needed.
- If Windows Repair stated that errors are found, click Open Check Disk At Next Boot. Choose (/R) Fixes errors on the disk also locate bad sectors and recovers readable information, then click Add To Next Boot. Reboot the computer to let Windows check the disk.
http://i.imgur.com/Ymy7crZ.png
- Go to Step 4, then click Do It.
http://i.imgur.com/zDtdN75.png
- Go to Step 5. Under System Restore click Create.
http://i.imgur.com/f7lEe1N.png
- Go to Repairs and click Open Repairs. Leave all checkmarks as they are, then click Start Repairs.
http://i.imgur.com/PGv2vtD.png
- By default Windows Repair All-In-One will create a "Logs" folder in its folder on the Desktop. Please post the contents of the log in your next reply.
-
These next steps look a little "scary". Before I begin, is there a chance this will mess things up on my computer? I do not have the original Windows disk, it came pre-installed on my computer. I'm a little worried to do these steps....