OK, there is some work here.
Multiple steps are listed - be sure to perform them in the order mentioned
Deactivate Windows DefenderPlease follow the instructions
here and temporarily
switch-off Windows Defender.
It has to be done before other steps for the purpose of not interfering with the fix.
Fix with Farbar Recovery Scan Tool
This fix was created for this user for use on that particular machine.
Running it on another one may cause damage and render the system unstable. Press the
+
R on your keyboard at the same time. Type
Notepad and click
OK.
- Copy the entire content of the codebox below and paste into the Notepad document:
start
C:\Users\Elizabeth\AppData\Local\globalUpdate
C:\Program Files (x86)\globalUpdate
C:\Users\Elizabeth\AppData\Roaming\Bubble Dock.installation.log
C:\Users\Elizabeth\AppData\Roaming\Nosibay
C:\ProgramData\gogZnId
C:\Users\Elizabeth\Documents\PC Speed Maximizer
C:\Users\Elizabeth\AppData\Roaming\aps.uninstall.scan.results
C:\Program Files (x86)\NetCrawl
C:\Users\Elizabeth\AppData\Roaming\ProductData
C:\ProgramData\IObit
C:\Users\Elizabeth\AppData\Local\Slick Savings
C:\ProgramData\ProductData
C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
C:\Program Files (x86)\IObit
C:\Users\Elizabeth\AppData\Roaming\IObit
C:\Radsteroids
C:\Program Files (x86)\predm
C:\Windows\SysWOW64\${LOGFILE}
C:\Program Files (x86)\CinemaD-V1
C:\Windows\Tasks\ImCleanDisabled
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [aaaaihhnfnbnpbhpagnmoplpcjbediml] - C:\Users\Elizabeth\AppData\Local\imeshmusicboxtoolbar\GC\toolbar.crx []
C:\Users\Elizabeth\AppData\Local\imeshmusicboxtoolbar
C:\Program Files (x86)\di4BlockAndSurf
FF HKCU\...\Firefox\Extensions: [{0F0F3172-674B-A5D8-B3C3-5EF7C6C92F2F}] - C:\Program Files (x86)\di4BlockAndSurf\175.xpi
BHO-x32: No Name -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - No Name - {45177936-603b-4261-8d42-df6f7091d5d0} - No File
Toolbar: HKCU - No Name - {5733492D-4700-A76A-76A7-7A786E7484D7} - No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
c:\program files (x86)\Common Files\Spigot
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => No File
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
end- Click File, Save As and type fixlist.txt as the File Name.
Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!- Right-click on icon and select
Run as Administrator to start the tool.
(XP users click run after receipt of Windows Security Warning - Open File).
- Press the Fix button just once and wait.
- If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
- When finished FRST will generate a log on the Desktop, called Fixlog.txt.
Please include it in your reply.
Clean Temporary Files with TFCPlease download
TFC by OldTimer and save it to your desktop.
- Right-click on icon and select Run as Administrator to start the tool.
- Close any open programs and save your current work.
- Click the Start button to begin. Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a couple of minutes.
- Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.
This tool doesn't generate any report. Instead I recommend to keep it for good maintenance of your machine.
Fix with Junkware Removal ToolPlease download
JRT by Thisisu and save the file to your desktop.
Temporary disable your AntiVirus and AntiSpyware protection - instructions
here.
- Right-click on icon and select Run as Administrator to start the tool.
- Follow the prompts and let this process run uninterrupted.
- This scan can take a while, depending on your System specs.
- Upon completion, a log (JRT.txt) will open on your desktop.
Please include the contents of that file in your reply.
Do not forget to
re-enable your previously switched off
protection software!
Please also
manually reboot your machine after this procedure.
Fix with AdwCleanerPlease download
AdwCleaner by Xplode and save the file to your desktop.
- Right-click on icon and select Run as Administrator to start the tool.
- Follow the prompts and click Scan.
- When finished, please click Clean.
- Upon completion, click Report. A log (AdwCleaner[S*].txt) will open.
Please include the contents of that file in your reply.
Scan with Farbar Recovery Scan ToolPlease re-run
Farbar Recovery Scan Tool to give me a fresh look at your system.
- Right-click on icon and select Run as Administrator to start the tool.
(XP users click run after receipt of Windows Security Warning - Open File).
- Make sure that Addition option is checked.
- Press Scan button and wait.
- The tool will produce two logfiles on your desktop: FRST.txt and Addition.txt.
Please include their content into your next reply.
