Disable Windows Defender
From your log i can see this that you are running a Windows Defender. This might interfere with fixes we are about to do so we need to disable it. To disable your Windows Defender Real-time Protection.
- Open Windows Defender
- Click Tools
- Click General Settings
- Scroll down to Real Time Protection Options
- Uncheck Turn on Real Time Protection (recommended)
- Close Windows Defender
Note: Once your log is clean you can re-enable Windows Defender Real Time Protection.
Disable AVG8
Please open the AVG 8.5 Control Center, by right clicking on the AVG icon on task bar.
- Click on Open AVG Interface
- Double click on Resident Shield
- Deselect the option to Enable Resident Shield
- Save changes, and exit the application.
- To re-enable AVG 8.5, please select Enable Resident Shield again.
Run CFScript
- Close any open browsers.
- Open Notepad by click start
- Click Run
- Type notepad into the box and click enter
- Notepad will open
- Copy and Paste everything from the Code box into Notepad:
Code:
Registry::
[-HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}]
[-HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
[-HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
- Save this as CFScript.txt, in the same location as ComboFix.exe (on your desktop)
- Refering to the picture below, drag CFScript into ComboFix.exe
- When finished, it shall produce a log for you at C:\ComboFix.txt
NOTE: Do not mouseclick combofix's window whilst it's running. That may cause it to stall it.
Eset online scannner
You can use either Internet Explorer or Mozilla FireFox for this scan.
Note: If you are using Windows Vista, open your browser by right-clicking on its icon and select 'Run as administrator' to perform this scan.
- Please go here then click on:
Note: If using Mozilla Firefox you will need to download
esetsmartinstaller_enu.exe when prompted then double click on it to install.
All of the below instructions are compatible with either Internet Explorer or Mozilla FireFox.
- Select the option YES, I accept the Terms of Use then click on:
- When prompted allow the Add-On/Active X to install.
- Make sure that the option Remove found threats is NOT checked, and the option Scan archives is checked.
- Now click on Advanced Settings and select the following:
- Scan for potentially unwanted applications
- Scan for potentially unsafe applications
- Enable Anti-Stealth Technology
- Now click on:
- The virus signature database... will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
- When completed the Online Scan will begin automatically.
- Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
- When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
- Now click on:
- Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
- Copy and paste that log as a reply to this topic.
Note: Do not forget to re-enable your Anti-Virus application after running the above scan!
Logs/Information to Post in Next Reply
Please post the following logs/Information in your reply:
- ESET log
- ComboFix log (found at C:\Combofix.txt)
- A fresh HijackThis Log ( after all the above has been done)
- A description of how your computer is behaving