Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer making strange sounds and terribly lagging


  • Please log in to reply
8 replies to this topic

#1 edward999

edward999

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:43 AM

Posted 29 December 2017 - 09:44 PM

It's not like the sounds are coming from inside the computer itself, just digitally. It sounds like "brrr, brrrrr, brrrr" and the computer's performance just starts significantly dropping and everything on my screen lagging while it's doing it.  It feels like it's a virus, but I've tried Norton, Malwarebytes, BitDefender, and Windows Defender already, and nothing serious has really come up.  I've tried restoring my computer to an earlier point.  It didn't work.  The virus-scanning didn't work (even when I tried it in safe mode).  Could it be that I have to get a new graphics card or video driver?  I just desperately need some help because it's been going on for the past 5 days or so.  


Edited by edward999, 29 December 2017 - 09:45 PM.


BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 56,299 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:02:43 AM

Posted 30 December 2017 - 08:10 AM

Please download MiniToolBox  , save it to your desktop and run it.
 
Checkmark the following checkboxes:
  List last 10 Event Viewer log
  List Installed Programs
  List Users, Partitions and Memory size.
 
Click Go and paste the content into your next post.
 
Also...please Publish a Snapshot using Speccy taking care to post the link of the snapshot in your next post.

   Go to Piriform's website, and download the free version on the left.  Click Download from Piriform.com (the FileHippo link requires an extra click). Or if you want to use a portable version of Speccy (which doesn't require installation), click the builds page link and download the portable version. You will now be asked where you want to save the file. The best place to put it is the Desktop, as it will be easy to find later.

    After the file finishes downloading, you are ready to run Speccy. If you downloaded the installer, simply double-click on it and follow the prompts until installation is complete. If you downloaded the portable version, you will need to unzip it before use. Right-click the ZIP file and click Extract all. Click Next. Open up the extracted folder and double-click on Speccy.
 
     Once inside Speccy, it will look similar to this (with your computer's specifications, of course):
 
post-33068-0-86653600-1480692866_thumb.j

     Now, at the top, click File > Publish Snapshot.

     Click Yes > then Copy to Clipboard

Now, once you are back in the forum topic you are posting in, click the ADD REPLY or REPLY TO THIS TOPIC button. Right-click in the empty space of the Reply box and click Paste. Then, click Add Reply below the Reply box.

Louis



#3 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,714 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:43 AM

Posted 30 December 2017 - 12:08 PM



It's not like the sounds are coming from inside the computer itself, just digitally. It sounds like "brrr, brrrrr, brrrr" and the computer's performance just starts significantly dropping and everything on my screen lagging while it's doing it.  It feels like it's a virus, but I've tried Norton, Malwarebytes, BitDefender, and Windows Defender already, and nothing serious has really come up.  I've tried restoring my computer to an earlier point.  It didn't work.  The virus-scanning didn't work (even when I tried it in safe mode).  Could it be that I have to get a new graphics card or video driver?  I just desperately need some help because it's been going on for the past 5 days or so.  

You stated the "nothing serious has really cup up", please post the Malware log.

 

To find the log click/tap on This PC, then Windows, then Logs.

 

Under logs you will see CBS, click/tap on this to open the list of logs.  The malwarebytes log will have the date and time the scan was run, you shouldn't have any problem finding this, copy it, and post it in your log.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#4 edward999

edward999
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:43 AM

Posted 30 December 2017 - 03:37 PM

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Edward (administrator) on 30-12-2017 at 13:35:06
Running from "C:\Users\Edward\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: FX6860 Manufacturer: Gateway

Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (12/30/2017 08:12:12 AM) (Source: Application Error) (User: )
Description: Faulting application name: WzBGTools.exe, version: 20.5.12146.0, time stamp: 0x5745b076
Faulting module name: KERNELBASE.dll, version: 6.1.7601.23915, time stamp: 0x59b94f2a
Exception code: 0xe0434352
Fault offset: 0x000000000001a06d
Faulting process id: 0x2808
Faulting application start time: 0xWzBGTools.exe0
Faulting application path: WzBGTools.exe1
Faulting module path: WzBGTools.exe2
Report Id: WzBGTools.exe3
 
Error: (12/30/2017 08:12:10 AM) (Source: .NET Runtime) (User: )
Description: Application: WzBGTools.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.UnauthorizedAccessException
   at System.IO.__Error.WinIOError(Int32, System.String)
   at System.IO.FileSystemEnumerableIterator`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].CommonInit()
   at System.IO.DirectoryInfo.InternalGetFileSystemInfos(System.String, System.IO.SearchOption)
   at ew.ah(WzBGTool.BGTListRule)
   at ew.ah(WzBGTool.BGTListRule)
   at ew.ah(WzBGTool.BGTListRule)
   at ev.ah(WzBGTool.BGTListRule)
   at WzBGTool.WzBGToolTemporary.s()
   at WzBGTool.WzBGToolCommon.a(WzBGTool.INotificationCallback)
   at WzBGTool.WzBGToolCommon.ac(WzBGTool.INotificationCallback)
   at e0.c()
   at e1.b()
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()
 
Error: (12/30/2017 12:19:28 AM) (Source: MsiInstaller) (User: Edward-PC)
Description: Product: NordVPN -- A more recent version of NordVPN is already installed on this computer.
 
Error: (12/29/2017 11:35:43 PM) (Source: MsiInstaller) (User: Edward-PC)
Description: Product: NordVPN -- A more recent version of NordVPN is already installed on this computer.
 
Error: (12/29/2017 08:00:24 PM) (Source: MsiInstaller) (User: Edward-PC)
Description: Product: NordVPN -- A more recent version of NordVPN is already installed on this computer.
 
Error: (12/29/2017 05:17:04 PM) (Source: MsiInstaller) (User: Edward-PC)
Description: Product: NordVPN -- A more recent version of NordVPN is already installed on this computer.
 
Error: (12/29/2017 10:54:20 AM) (Source: Application Error) (User: )
Description: Faulting application name: WzBGTools.exe, version: 20.5.12146.0, time stamp: 0x5745b076
Faulting module name: KERNELBASE.dll, version: 6.1.7601.23915, time stamp: 0x59b94f2a
Exception code: 0xe0434352
Fault offset: 0x000000000001a06d
Faulting process id: 0x2b64
Faulting application start time: 0xWzBGTools.exe0
Faulting application path: WzBGTools.exe1
Faulting module path: WzBGTools.exe2
Report Id: WzBGTools.exe3
 
Error: (12/29/2017 10:54:18 AM) (Source: .NET Runtime) (User: )
Description: Application: WzBGTools.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.UnauthorizedAccessException
   at System.IO.__Error.WinIOError(Int32, System.String)
   at System.IO.FileSystemEnumerableIterator`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].CommonInit()
   at System.IO.DirectoryInfo.InternalGetFileSystemInfos(System.String, System.IO.SearchOption)
   at ew.ah(WzBGTool.BGTListRule)
   at ew.ah(WzBGTool.BGTListRule)
   at ew.ah(WzBGTool.BGTListRule)
   at ev.ah(WzBGTool.BGTListRule)
   at WzBGTool.WzBGToolTemporary.s()
   at WzBGTool.WzBGToolCommon.a(WzBGTool.INotificationCallback)
   at WzBGTool.WzBGToolCommon.ac(WzBGTool.INotificationCallback)
   at e0.c()
   at e1.b()
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()
 
Error: (12/29/2017 12:57:43 AM) (Source: MsiInstaller) (User: Edward-PC)
Description: Product: NordVPN -- A more recent version of NordVPN is already installed on this computer.
 
Error: (12/29/2017 12:00:33 AM) (Source: Application Hang) (User: )
Description: The program Cuphead.exe version 5.6.2.10718 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1f68
Start Time: 01d380720fec6736
Termination Time: 127
Application Path: C:\Program Files (x86)\Steam\steamapps\common\Cuphead\Cuphead.exe
Report Id: e62a6aa5-ec65-11e7-94b7-e06995a64e8c
 
 
System errors:

=============
Error: (12/30/2017 11:48:49 AM) (Source: Service Control Manager) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly.  It has done this 71 time(s).  The following corrective action will be taken in 600000 milliseconds: Restart the service.
 
Error: (12/30/2017 11:44:45 AM) (Source: Service Control Manager) (User: )
Description: The iPod Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (12/30/2017 11:38:47 AM) (Source: Service Control Manager) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly.  It has done this 70 time(s).  The following corrective action will be taken in 600000 milliseconds: Restart the service.
 
Error: (12/30/2017 11:28:45 AM) (Source: Service Control Manager) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly.  It has done this 69 time(s).  The following corrective action will be taken in 600000 milliseconds: Restart the service.
 
Error: (12/30/2017 11:18:43 AM) (Source: Service Control Manager) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly.  It has done this 68 time(s).  The following corrective action will be taken in 600000 milliseconds: Restart the service.
 
Error: (12/30/2017 11:08:41 AM) (Source: Service Control Manager) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly.  It has done this 67 time(s).  The following corrective action will be taken in 600000 milliseconds: Restart the service.
 
Error: (12/30/2017 10:58:39 AM) (Source: Service Control Manager) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly.  It has done this 66 time(s).  The following corrective action will be taken in 600000 milliseconds: Restart the service.
 
Error: (12/30/2017 10:48:37 AM) (Source: Service Control Manager) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly.  It has done this 65 time(s).  The following corrective action will be taken in 600000 milliseconds: Restart the service.
 
Error: (12/30/2017 10:38:35 AM) (Source: Service Control Manager) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly.  It has done this 64 time(s).  The following corrective action will be taken in 600000 milliseconds: Restart the service.
 
Error: (12/30/2017 10:28:33 AM) (Source: Service Control Manager) (User: )
Description: The Bitdefender RedLine Service service terminated unexpectedly.  It has done this 63 time(s).  The following corrective action will be taken in 600000 milliseconds: Restart the service.
 
 
Microsoft Office Sessions:
=========================
Error: (12/30/2017 08:12:12 AM) (Source: Application Error)(User: )
Description: WzBGTools.exe20.5.12146.05745b076KERNELBASE.dll6.1.7601.2391559b94f2ae0434352000000000001a06d280801d381808dfa3639C:\Program Files\WinZip\WzBGTools.exeC:\Windows\system32\KERNELBASE.dllcf449e81-ed73-11e7-a40c-e06995a64e8c
 
Error: (12/30/2017 08:12:10 AM) (Source: .NET Runtime)(User: )
Description: Application: WzBGTools.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.UnauthorizedAccessException
   at System.IO.__Error.WinIOError(Int32, System.String)
   at System.IO.FileSystemEnumerableIterator`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].CommonInit()
   at System.IO.DirectoryInfo.InternalGetFileSystemInfos(System.String, System.IO.SearchOption)
   at ew.ah(WzBGTool.BGTListRule)
   at ew.ah(WzBGTool.BGTListRule)
   at ew.ah(WzBGTool.BGTListRule)
   at ev.ah(WzBGTool.BGTListRule)
   at WzBGTool.WzBGToolTemporary.s()
   at WzBGTool.WzBGToolCommon.a(WzBGTool.INotificationCallback)
   at WzBGTool.WzBGToolCommon.ac(WzBGTool.INotificationCallback)
   at e0.c()
   at e1.b()
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()
 
Error: (12/30/2017 12:19:28 AM) (Source: MsiInstaller)(User: Edward-PC)
Description: Product: NordVPN -- A more recent version of NordVPN is already installed on this computer.(NULL)(NULL)(NULL)(NULL)(NULL)
 
Error: (12/29/2017 11:35:43 PM) (Source: MsiInstaller)(User: Edward-PC)
Description: Product: NordVPN -- A more recent version of NordVPN is already installed on this computer.(NULL)(NULL)(NULL)(NULL)(NULL)
 
Error: (12/29/2017 08:00:24 PM) (Source: MsiInstaller)(User: Edward-PC)
Description: Product: NordVPN -- A more recent version of NordVPN is already installed on this computer.(NULL)(NULL)(NULL)(NULL)(NULL)
 
Error: (12/29/2017 05:17:04 PM) (Source: MsiInstaller)(User: Edward-PC)
Description: Product: NordVPN -- A more recent version of NordVPN is already installed on this computer.(NULL)(NULL)(NULL)(NULL)(NULL)
 
Error: (12/29/2017 10:54:20 AM) (Source: Application Error)(User: )
Description: WzBGTools.exe20.5.12146.05745b076KERNELBASE.dll6.1.7601.2391559b94f2ae0434352000000 000001a06d2b6401d380cdf3547f4dC:\Program Files\WinZip\WzBGTools.exeC:\Windows\system32\KERNELBASE.dll4b3f78e5-ecc1-11e7-b7e4-e06995a64e8c
 
Error: (12/29/2017 10:54:18 AM) (Source: .NET Runtime)(User: )
Description: Application: WzBGTools.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.UnauthorizedAccessException
   at System.IO.__Error.WinIOError(Int32, System.String)
   at System.IO.FileSystemEnumerableIterator`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].CommonInit()
   at System.IO.DirectoryInfo.InternalGetFileSystemInfos(System.String, System.IO.SearchOption)
   at ew.ah(WzBGTool.BGTListRule)
   at ew.ah(WzBGTool.BGTListRule)
   at ew.ah(WzBGTool.BGTListRule)
   at ev.ah(WzBGTool.BGTListRule)
   at WzBGTool.WzBGToolTemporary.s()
   at WzBGTool.WzBGToolCommon.a(WzBGTool.INotificationCallback)
   at WzBGTool.WzBGToolCommon.ac(WzBGTool.INotificationCallback)
   at e0.c()
   at e1.b()
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()
 
Error: (12/29/2017 12:57:43 AM) (Source: MsiInstaller)(User: Edward-PC)
Description: Product: NordVPN -- A more recent version of NordVPN is already installed on this computer.(NULL)(NULL)(NULL)(NULL)(NULL)
 
Error: (12/29/2017 12:00:33 AM) (Source: Application Hang)(User: )
Description: Cuphead.exe5.6.2.107181f6801d380720fec6736127C:\Program Files (x86)\Steam\steamapps\common\Cuphead\Cuphead.exee62a6aa5-ec65-11e7-94b7-e06995a64e8c
 
 
CodeIntegrity Errors:
===================================
  Date: 2017-07-31 12:14:54.998
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-07-31 11:59:48.374
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-07-31 11:51:18.092
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-07-31 10:50:54.220
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-07-29 00:48:40.417
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-07-29 00:34:33.702
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-07-28 21:46:09.290
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-06-21 19:12:14.911
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-06-21 17:36:21.748
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2017-06-20 20:24:46.963
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
Add or Remove Adobe Creative Suite 3 Master Collection (HKLM-x32\...\Adobe_4dcfd9b7e901b57f81f667144603236) (Version: 1.0 - Adobe Systems Incorporated)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
Adobe After Effects CC 2015 (HKLM-x32\...\{147EC100-14BE-45EF-AB42-35BAEE7D02F0}) (Version: 13.6.0 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 19.0.0.241 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.2.0.211 - Adobe Systems Incorporated)
Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated)
Adobe Flash Player 28 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 28.0.0.126 - Adobe Systems Incorporated)
Adobe Flash Player 9 Plugin (HKLM-x32\...\{88D422DB-E9C7-4E16-9D80-2999F4FD6AD9}) (Version: 9.0.45.0 - Adobe Systems, Inc.)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.1.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.1.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.23) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
AHV content for Acrobat and Flash (HKLM-x32\...\{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}) (Version: 1 - Adobe Systems Incorporated) Hidden
Amazon Kindle (HKCU\...\Amazon Kindle) (Version: 1.13.1.42052 - Amazon)
AMD Catalyst Install Manager (HKLM\...\{7E5DC2C5-115A-322B-976C-219237FAED66}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{E92BB800-BCC5-4C25-8102-AC2C3B7C7C1E}) (Version: 5.5 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{9C912B1E-06DD-43EF-BB2B-45CB2C88BAAE}) (Version: 5.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Audacity 2.0.4 (HKLM-x32\...\Audacity_is1) (Version: 2.0.4 - Audacity Team)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 22.0.10.69 - Bitdefender)
Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 22.0.17.205 - Bitdefender)
BitTorrent (HKLM-x32\...\BitTorrent) (Version: 7.7.2.28499 - BitTorrent Inc.)

bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.34 - Piriform)
Cisco VideoGuard Player (HKLM-x32\...\{eb841aaa-19f5-40db-93af-850cf64f61c3}) (Version: 6.8 - Cisco Systems, Inc)
Cuphead (HKLM\...\Steam App 268910) (Version:  - StudioMDHR Entertainment Inc.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dark Souls: Prepare to Die Edition (HKLM\...\Steam App 211420) (Version:  - FromSoftware)
Etron USB3.0 Host Controller (HKLM-x32\...\{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.107 - Etron Technology) Hidden
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.107 - Etron Technology)
F.E.A.R. (HKLM\...\Steam App 21090) (Version:  - Monolith Productions, Inc.)
F.E.A.R.: Extraction Point (HKLM\...\Steam App 21110) (Version:  - Monolith )
F.E.A.R.: Perseus Mandate (HKLM\...\Steam App 21120) (Version:  - Monolith )
f.lux (HKCU\...\Flux) (Version:  - f.lux Software LLC)
FFmpeg (Windows) for Audacity version 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - )
FFmpeg v0.6.2 for Audacity (HKLM-x32\...\FFmpeg for Audacity_is1) (Version:  - )
File Association Helper (HKLM\...\{C168639F-5810-4EC8-B1E8-0251AA8A771C}) (Version: 1.2.225.65451 - WinZip Computing International, LLC)
GIF Viewer (HKLM-x32\...\GIF Viewer) (Version:  - )
Gone Home (HKLM-x32\...\Steam App 232430) (Version:  - The Fullbright Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.84 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HandBrake 0.10.0 (HKLM-x32\...\HandBrake) (Version: 0.10.0 - )
Her Story (HKLM-x32\...\Steam App 368370) (Version:  - Sam Barlow)
INSIDE (HKLM\...\Steam App 304430) (Version:  - Playdead)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
InViewer version 0.87.0.2 (HKLM-x32\...\{7E575733-1DF5-4064-AE38-289BA932398A}_is1) (Version: 0.87.0.2 - Stefan Wobbe)
iTunes (HKLM\...\{F0C7385A-9D20-45F3-8101-05D383885180}) (Version: 12.6.1.25 - Apple Inc.)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
KeePass Password Safe 2.19 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version:  - Dominik Reichl)
Knoll Light Factory EZ Studio (HKLM-x32\...\Knoll Light Factory EZ Studio) (Version:  - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version:  - DONTNOD Entertainment)
Magic Bullet Looks Studio (HKLM-x32\...\Magic Bullet Looks Studio) (Version:  - )
Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0409-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Neat Video for Premiere (HKLM\...\Neat Video for Premiere_is1) (Version: 3.5 - ABSoft)
NordVPN (HKLM-x32\...\{E5691B7C-E900-425D-83C6-F9F802C3F6CF}) (Version: 6.5.0 - NordVPN) Hidden
NordVPN (HKLM-x32\...\NordVPN 6.5.0) (Version: 6.5.0 - NordVPN)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Ori and The Blind Forest - Definitive Edition (HKLM-x32\...\1384944984_is1) (Version: 2.0.0.2 - GOG.com)
Outlast (HKLM-x32\...\Steam App 238320) (Version:  - Red Barrels)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version:  - )
PDF Settings (HKLM-x32\...\{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
Pinnacle Studio 14 (HKLM-x32\...\{AADD1C8F-D59F-4D55-A726-768C71A205A8}) (Version: 14.0.0.7255 - Pinnacle Systems)
Pinnacle Studio Ultimate Collection Plugins (HKLM-x32\...\{F5C372A1-40F3-49DA-A049-F75CDE9177DC}) (Version: 14.0.0.7255 - Pinnacle Systems)
Pinnacle Video Driver (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.27.5-r125535-release - Plays.tv, LLC)
Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.10-r123135-release - Raptr, Inc)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.41.216.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6257 - Realtek Semiconductor Corp.)
Red Giant ToonIt Studio (HKLM-x32\...\Red Giant ToonIt Studio) (Version:  - )
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.20.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.20.0 - Renesas Electronics Corporation)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SOMA (HKLM\...\U09NQQ==_is1) (Version: 1 - )
Source SDK Base 2007 (HKLM\...\Steam App 218) (Version:  - Valve)
Spotify (HKCU\...\Spotify) (Version: 1.0.70.388.g8e1ed5af - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
System Requirements Lab (HKLM-x32\...\{A92D0DBB-834A-4CAD-A434-F2232C692516}) (Version: 6.1.4.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{8F0C48E5-4AC3-4617-8760-AA7EBADDEB86}) (Version: 6.1.6.0 - Husdawg, LLC)
System Shock Pre-Alpha Demo (HKLM\...\Steam App 487390) (Version:  - Nightdive Studios)
TAP-NordVPN 9.21.2 (HKLM\...\TAP-NordVPN) (Version: 9.21.2 - NordVPN.com)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version:  - Galactic Cafe)
Transistor (HKLM-x32\...\Steam App 237930) (Version:  - Supergiant Games)
Trapcode 3DStroke Studio (HKLM-x32\...\Trapcode 3DStroke Studio) (Version:  - )
Trapcode Particular Studio (HKLM-x32\...\Trapcode Particular Studio) (Version:  - )
Trapcode Shine Studio (HKLM-x32\...\Trapcode Shine Studio) (Version:  - )
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Widevine Media Optimizer Chrome 6.0.0 (HKLM-x32\...\optimizer_chrome) (Version: 6.0.0.12757 - Widevine Technologies)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.40 beta 2 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.2 - win.rar GmbH)
WinZip 20.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C24105}) (Version: 20.5.12118 - WinZip Computing, S.L. )
 
========================= Memory info: ===================================
 Percentage of memory in use: 64%
Total physical RAM: 8174.5 MB
Available physical RAM: 2890.18 MB
Total Virtual: 26172.68 MB
Available Virtual: 19113.61 MB
 
========================= Partitions: =====================================
1 Drive c: () (Fixed) (Total:931.41 GB) (Free:277.24 GB) NTFS
 
========================= Users: ========================================
User accounts for \\EDWARD-PC
 
Administrator            Edward                   Guest                    
 
 
**** End of log ****
 

http://speccy.piriform.com/results/oyVUOUm7UK3zw1pvADFx1sY


Edited by hamluis, 30 December 2017 - 04:20 PM.
Merged posts - Hamluis.


#5 hamluis

hamluis

    Moderator


  • Moderator
  • 56,299 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:02:43 AM

Posted 30 December 2017 - 04:40 PM

RAM usage by EEK and Bit Defender...torrent program...topic moved from Win 7 to Am I Infected for malware check.

 

Louis



#6 edward999

edward999
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:43 AM

Posted 30 December 2017 - 07:44 PM

I only downloaded BitDefender and Emisoft after the case, so I know it's not because of the two virus-scanning programs.  


Edited by edward999, 30 December 2017 - 07:45 PM.


#7 bluviaggiatore

bluviaggiatore

  • Banned Spammer
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:43 AM

Posted 31 December 2017 - 07:42 AM

better way , I think , Delete everything and install windows again . Otherwise you will not be able know .



#8 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,714 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:43 AM

Posted 31 December 2017 - 10:20 AM

better way , I think , Delete everything and install windows again . Otherwise you will not be able know .

This has not reached the point where reinstalling the operating system needs to be considered.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#9 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,714 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:43 AM

Posted 31 December 2017 - 10:33 AM

Having two antivirus programs installed can cause problems, running two antivirus programs will guarantee problems.

 

One of the quickest ways I know of to become infected is torrent downloads.  You never know what your peers are serving up with what ever programs you download and install.

 

The temperatures shown in the Speccy for the GPU have me concerned.  Either this is yet another case where Speccy has produced temperatures which are inconsistent with each other, or the GPU is running at 76C which is getting pretty warm.

 

Louis moved this topic to the Am I Infected forum, so let's run some security scans.

 

Please run the requested scans in the order they are requested and post the logs in your topic in the same order they were run.  Do not wrap the logs in code or quotes, do not use or use spoilers.

 

Please run the scans suggested below in the order that they are requested, this is a must for RKill.  Post the logs generated by these scans in your topic in the order they were run.  Please do not wrap your logs in quotes or code brackets or use use spoilers.


Please download and run RKill

RKill attempts to terminate known malware processes so that your normal security software can then run and clean your computer of infections.  RKill will not remove any of the processes it stops, you will need to run security scans to remove any malware found.  These settings will remain until the computer is rebooted, for this reason you must run your security applications before the computer is rebooted.  

Please download RKill and install it.

When RKill is run it will display a console screen similar to the one below:

icHPxaT.png

After this has run you will see another image explaining that RKill has finished running and you should be able to run the scan.  You need to click/tap on OK.

2Q1rnlf.png

When RKill has finished running a log will be displayed showing all of the processes that were terminated by RKill.

AttentionAt this time you need to run your security applications listed below.  When the scan has finished running a lot will be posted in Notepad.  Copy and paste this log in your topic.

Importanat: There is a possibility that malware may recognize RKill and keep it from running, if this is the case do the following.

If while RKill is running you may see a message from the malware stating that the program could not be run because it is a virus or is infected.  This is the malware trying to protect itself.  Two methods that you can try to get past this and allow RKill to run are:

1)  Rename Rkill so that it has a .com extension.

2)  Download a version that is already renamed as files that are commonly white-listed by malware. The main Rkill download page contains individual links to renamed versions.  

After the application has run successfully and you have run the requested scans you should reboot the computer to restore the processes and Windows Registry entries.


Please run TDSSKiller.
 
Please download TDSSKiller from here and save it to your Desktop.

The log for the TDSSKiller can be very long.  If you go to the bottom of the log to where you find Scan finished you will see the results of the scan.  If it shows Detected object count: 0 and Actual detected object count: 0, this means that nothing malicious was found and you will not need to post the log.
 
1.  Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
 
2.  Check Loaded Modules, Verify Driver Digital Signature, and Detect TDLFS file system.
 
If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now.
 
3.  Click Start Scan and allow the scan process to run.

yEt9i3P.png
 
4.  If threats are detected select Cure (if available) for all of them unless otherwise instructed.  If threats are found you will see a screen like the one below.

I4wmZOI.png
 
***Do NOT select Delete!

Click on Continue.
 
5.  Click on Reboot computer.
 
Please copy the TDSSKiller.[Version]_[Date]_[Time]_log.txt file found in your root directory (in most cases this is c: Drive) and paste it into your next reply.

Note:  The log may be very long.  You may need to break it into parts to post the whole log in your topic.



Please run Malwarebytes AntiMalware

Please download Malwarebytes Anti-Malware 2.2.

1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.

2)  Malwarebytes will automatically open.  You will see an image like the one below, click on Update Now.  

4YSU8ND.png

3)  Click on Settings, you will see a image like the one below.

35AFYEE.png

When Settings opens click on Detection and Protection, then under Non-Malware Protection, click on the down arrow for PUP (Potentially Unwanted Programs) detections and select Treat detections as malware.  Under Detection Options place a check in the box for Scan for rootkits

4)  Click on Scan (next to Settings), then click on Scan Now.  The scan will automatically run now.

5)  When the scan is complete the results will be displayed.  Click on Delete All.

jEVtTTK.png

6)  Please post the Malwarebytes log.

To find the Malwarebytes log do the following.  Copy and paste the log in your topic.

*Open Malwarebytes Anti-Malware.
*Click the Scan Tab at the top.
*Click the View detailed log link on the right.
*Click Copy to Clipboard at the bottom...come back to this thread, click Add Reply, then right-click and choose Paste.
*Alternatively, you can click Export and save the log as a .txt file on yout Desktop or another location.
*Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.


Please download AdwCleaner and install it.

When AdwCleaner opens click on Scan to start the scan.

ZQk62WV.png

Once the search is complete a list of the pending items will be displayed.  If you see any which you do not want removed, remove the check mark next to it.

If there are no malicious programs are found you will receive a message informing you of this.  
 
Click on Clean to remove the selected items.  If you have any questions about any items in the list please copy and paste the list in your topic so we can review it.  

CsqnoTW.png
 
You will receive a message telling you that all programs will be closed so that the infections can be removed.  Click on OK.  The computer will be restarted to complete the cleaning process.
 
When the cleaning process is complete a log of what was removed will be presented.  Please copy and the paste this log in your topic.


Please run the ESET OnlineScan

This scan takes quite a long time to run, so be prepared to allow this to run
till it is completed.

***Please note. If you run this scan using Internet Explorer you won't need
to download the Eset Smartinstaller.***

ESET Online Scanner

  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that
    here
    .
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology

  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • If threats are found click on Save to text file in Documents.
  • Open Documents, find the report, copy and paste it in your topic.

 


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users