[bkp]

It is not in!

 

 

BKP

[Advertisements]

Ok. We'll try a different scan


Temporary disable your AntiVirus and AntiSpyware protection - instructions here .

Please visit ESET Online Scanner website.
Click Scan Now.

Download esetonlinescanner_enu.exe that you'll be given link to.
Double click esetonlinescanner_enu.exe.
Accept the Terms of Use

To perform the scan:

Make sure that Enable detection of potentially unwanted applications is selected.
In the Advanced Settings dropdown menu:
Enable detection of potentially unsafe applications are checked.
Enable detection of suspicious applications are checked.
Enable Anti-Stealth technology are checked.
Scan archives is checked.
Make sure that Clean threats automatically is unchecked.
Use custom proxy settings is unchecked.
Click Scan
The program will begin to download it's virus database. The speed may vary depending on your Internet connection.
When completed, the program will begin to scan. This may take several hours. Please, be patient.
Do not do anything on your machine as it may interrupt the scan.
When the scan is done results will be displayed. Click the Copy to clipboard.
When completed it'll show a list of "Threats found", click beneath it on Save to text file.... and save it as ESET log.txt on your Desktop.
Then click Do not clean. Place a checkmark at Delete application's data on close, click Finish and close the program.

Please include this logfile in your next reply.
Don't forget to re-enable previously switched-off protection software!

[Bruce1270]

Ok. We'll try a different scan


Temporary disable your AntiVirus and AntiSpyware protection - instructions here .

Please visit ESET Online Scanner website.
Click Scan Now.

Download esetonlinescanner_enu.exe that you'll be given link to.
Double click esetonlinescanner_enu.exe.
Accept the Terms of Use

To perform the scan:

Make sure that Enable detection of potentially unwanted applications is selected.
In the Advanced Settings dropdown menu:
Enable detection of potentially unsafe applications are checked.
Enable detection of suspicious applications are checked.
Enable Anti-Stealth technology are checked.
Scan archives is checked.
Make sure that Clean threats automatically is unchecked.
Use custom proxy settings is unchecked.
Click Scan
The program will begin to download it's virus database. The speed may vary depending on your Internet connection.
When completed, the program will begin to scan. This may take several hours. Please, be patient.
Do not do anything on your machine as it may interrupt the scan.
When the scan is done results will be displayed. Click the Copy to clipboard.
When completed it'll show a list of "Threats found", click beneath it on Save to text file.... and save it as ESET log.txt on your Desktop.
Then click Do not clean. Place a checkmark at Delete application's data on close, click Finish and close the program.

Please include this logfile in your next reply.
Don't forget to re-enable previously switched-off protection software!

[bkp]

It is complete here is the log.

 

Thanks

 

BKP
 

C:\$Recycle.Bin\S-1-5-21-191501728-1260249008-2198610037-1003\$RJSMP73.exe a variant of Win32/FileTypeAssistant.A potentially unwanted application,Win32/FileTypeAssistant.A potentially unwanted application

C:\AdwCleaner\quarantine\files\sldtffdvsurmnnphqbsedganepuacyra\temp\0\range.dat a variant of Win32/DownloadAssistant.A potentially unwanted application

C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSS.exe a variant of Win32/Systweak.L potentially unwanted application

C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSHelper.dll a variant of Win32/Systweak.N potentially unwanted application

C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSPrivacyProtector.exe a variant of Win32/Systweak.L potentially unwanted application

C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegClean.exe a variant of Win32/Systweak.L potentially unwanted application

C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegistryOptimizer.exe a variant of Win32/Systweak.L potentially unwanted application

C:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSSystemCleaner.exe a variant of Win32/Systweak.L potentially unwanted application

C:\Users\bryan\Downloads\ccsetup530.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application

C:\Users\bryan\Downloads\winzip18_cnet.exe a variant of Win32/InstallCore.AFF.gen potentially unwanted application

C:\Users\Kristen\Downloads\HP Downloads\HP Photosmart Plus All-in-One Printer series - B209 Full Feature Software and Driver - PS_AIO_06_B209a-m_USW_Full_Win_WW_140_175-4.exe a variant of Win32/Adware.Coupons.AA application

C:\Windows\Installer\3b010.msi a variant of Win32/Systweak.L potentially unwanted application,a variant of Win32/Systweak.N potentially unwanted application

[Bruce1270]

Hi bkp

FRST fix


NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system.

Download the attached fixlist.txt to your desktop.  fixlist.txt   445bytes   188 downloads

• Ensure fixlist.txt is in the same location as FRST.exe on your desktop.
  
• Run FRST by right clicking on it and selecting Run as Administrator and press Fix
• On completion a log (fixlog.txt) will be generated.
• Please select all text in this fix, copy (CTRL + C) and then Paste (CTRL + V) in your next reply.
  
  
  Things for your next post:
• fixlog.txt
• How is the computer running?

[bkp]

When it needed to restart the computer it did it all on its own. However, I tried to open a photo and lock up the computer and had to do a hard restart. Once it restarted I then tried to do a restart on its own and it did not restart on its own. Again had to do a hard reset.

 

Her is the log

 

 

Fix result of Farbar Recovery Scan Tool (x86) Version: 18-06-2017 01

Ran by bryan (18-06-2017 19:49:50) Run:2

Running from C:\Users\bryan\Desktop

Loaded Profiles: bryan (Available Profiles: bryan & Kristen & Kids & DefaultAppPool)

Boot Mode: Normal

 

==============================================

 

fixlist content:

*****************

CreateRestorePoint: 

C:\$Recycle.Bin\S-1-5-21-191501728-1260249008-2198610037-1003\$RJSMP73.exe

C:\Program Files\WinZip\Utils\WzSysScan

C:\Users\bryan\Downloads\ccsetup530.exe

C:\Users\bryan\Downloads\winzip18_cnet.exe

C:\Users\Kristen\Downloads\HP Downloads\HP Photosmart Plus All-in-One Printer series - B209 Full Feature Software and Driver - PS_AIO_06_B209a-m_USW_Full_Win_WW_140_175-4.exe

C:\Windows\Installer\3b010.msi

EmptyTemp: 

 

*****************

 

Error: (0) Failed to create a restore point.

C:\$Recycle.Bin\S-1-5-21-191501728-1260249008-2198610037-1003\$RJSMP73.exe => moved successfully

C:\Program Files\WinZip\Utils\WzSysScan => moved successfully

C:\Users\bryan\Downloads\ccsetup530.exe => moved successfully

C:\Users\bryan\Downloads\winzip18_cnet.exe => moved successfully

C:\Users\Kristen\Downloads\HP Downloads\HP Photosmart Plus All-in-One Printer series - B209 Full Feature Software and Driver - PS_AIO_06_B209a-m_USW_Full_Win_WW_140_175-4.exe => moved successfully

C:\Windows\Installer\3b010.msi => moved successfully

 

=========== EmptyTemp: ==========

 

BITS transfer queue => 32768 B

DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 34895276 B

Java, Flash, Steam htmlcache => 0 B

Windows/system/drivers => 5480344 B

Edge => 0 B

Chrome => 32067288 B

Firefox => 0 B

Opera => 0 B

 

Temp, IE cache, history, cookies, recent:

Default => 0 B

Users => 0 B

ProgramData => 0 B

Public => 0 B

systemprofile => 0 B

LocalService => 0 B

NetworkService => 0 B

bryan => 32111442 B

Kristen => 0 B

Kids => 0 B

DefaultAppPool => 0 B

 

RecycleBin => 0 B

EmptyTemp: => 99.7 MB temporary data Removed.

 

================================

 

 

The system needed a reboot.

 

==== End of Fixlog 19:50:21 ====

[Bruce1270]

Hi bkp

Not sure if you missed this step from earlier.

Your system restore is disabled. If you did not do this yourself please turn it back on. How to do this can be found here.


Then run FSC Scan


SFC Scan

1.Right Click on the Start button.
2.When you see Command Prompt (Admin) on the list, double click on it.
3.When command prompt opens, copy and paste the following commands into it and press enter.

sfc /scannow

Please note: there is one space between the c and the /

4.Let the scan complete.

If you get the message "Windows Resource Protection did not find any integrity violations" this means all is OK.
If you get any other message then copy and paste the following command at the command prompt and press enter

findstr /c:"[SR]" %windir%\Logs\CBS\CBS.log >"%userprofile%\Desktop\sfcdetails.txt"

5.This will create a file, sfcdetails.txt on your Desktop.
6.Type exit to close the command prompt window.
7.Open file sfcdetails.txt and copy/paste this in your next reply.
8.If the file is too large you can zip the file and attach to your post.

[bkp]

Looks like I was able to fix the system restore. I believe. I did have it scan and asked me give a name to the scan and I did. Then tried to look for it and could not find it. 

 

Did the scan and go the message that was OK

 

BKP

[bkp]

Just today on the lower right side of my bar on the bottom there is a chat box that tells me information and today had a red x saying to back up my files. So I still am not sure if it is doing a back up correctly.

 

BKP

[Bruce1270]

Hi bkp

Ok, run this to check the services running.


Please download Farbar Service Scanner to your desktop.

• Locate the FSS.exe file and right click on it. Choose run as administrator
• Make sure the following options are checked:
• Internet Services
• Windows Firewall
• System Restore
• Security Center
• Windows Update
• Press "Scan".
• It will create a log (FSS.txt) on your desktop.
• Please copy and paste the log to your reply.
  
  
  Then run process explorer
  
  
  Get Process Explorer from here
  
  Save it to your desktop then run it (right click and Run As Administrator).
• Click on View > Select Column > tick Verified Signer >OK
• Click Options >Verify Image Signatures
  
  
  Then Click twice on the CPU column header to sort things by CPU usage with the big hitters at the top.
  
  Wait a full minute then:
  
  File, Save As, Save to desktop. Open the file .txt on your desktop and copy and paste the text to a reply.

[bkp]

Here is the log from the first item. The second step I downloaded the zip folder however I do not have winzip? 

 

bkp

 

 

Farbar Service Scanner Version: 27-01-2016

Ran by bryan (administrator) on 20-06-2017 at 15:36:33

Running from "C:\Users\bryan\Desktop"

Microsoft Windows 10 Home  (X86)

Boot Mode: Normal

****************************************************************

 

Internet Services:

============

 

Connection Status:

==============

Localhost is accessible.

LAN connected.

Google IP is accessible.

Google.com is accessible.

Yahoo.com is accessible.

 

 

Windows Firewall:

=============

 

Firewall Disabled Policy: 

==================

 

 

System Restore:

============

 

System Restore Policy: 

========================

 

 

Windows Update:

============

 

Windows Autoupdate Disabled Policy: 

============================

 

 

Other Services:

==============

 

 

File Check:

========

C:\WINDOWS\system32\nsisvc.dll => File is digitally signed

C:\WINDOWS\system32\Drivers\nsiproxy.sys => File is digitally signed

C:\WINDOWS\system32\Drivers\afd.sys => File is digitally signed

C:\WINDOWS\system32\Drivers\tdx.sys => File is digitally signed

C:\WINDOWS\system32\Drivers\tcpip.sys => File is digitally signed

C:\WINDOWS\system32\dnsrslvr.dll => File is digitally signed

C:\WINDOWS\system32\dnsapi.dll => File is digitally signed

C:\WINDOWS\system32\mpssvc.dll => File is digitally signed

C:\WINDOWS\system32\bfe.dll => File is digitally signed

C:\WINDOWS\system32\Drivers\mpsdrv.sys => File is digitally signed

C:\WINDOWS\system32\SDRSVC.dll => File is digitally signed

C:\WINDOWS\system32\vssvc.exe => File is digitally signed

C:\WINDOWS\system32\wuaueng.dll => File is digitally signed

C:\WINDOWS\system32\qmgr.dll => File is digitally signed

C:\WINDOWS\system32\es.dll => File is digitally signed

C:\WINDOWS\system32\cryptsvc.dll => File is digitally signed

C:\WINDOWS\system32\svchost.exe => File is digitally signed

C:\WINDOWS\system32\rpcss.dll => File is digitally signed

 

 

**** End of log ****

[bkp]

Winzip comes up it is asking for a code or for me to buy. I looked for ones to download for free but I am afraid to download the wrong one and give me more of the problem I currently have. So if you have a good source let me know

 

BKP

[Bruce1270]

The services are all ok, system restore is set up now. The message you are getting about not backing up files will likely be from another program.

Process Explorer

On the downloaded zip file, right click and there should be an option Extract All.

Click on this and extract the files to the Desktop. Then run the .exe file.

[bkp]

I think it might be defaulting to use Winzip as I might of DL it a while back. Would there be another App to open this file? It has an option to do that 

[bkp]

here is what my options are when I right click.

 

I have attached a photo

Edited by bkp, 20 June 2017 - 02:23 PM.

[Bruce1270]

Hi bkp

You can download 7 zip from here. That should do it. Click on the download for the 32 bit (x86) version.