Help Removing Manual Proxy Server 127.0.0.1:64550 Trojan

I had joined the Windows 10 Insiders about early last 2017. All of a sudden after one of the builds I could not access the Internet. I checked the proxy setting due to an error message and saw the manual proxy was turned on and an address was in there. So I deleted the address and turned it off. Everything was fine until I rebooted. It came back. It began to progress to now it just shows up and I do a REGEDIT to clean it out and it comes back. No matter what I do it returns now even during the cleanup of the registry. Needless to say, I am no longer in the Windows 10 Insiders program. I have posted for help there so many times like so many others have and to no avail. They don't even respond to that. How can I get rid of it once and for all?

I started the clean up advice from your website here and downloaded ADWCleaner. I have attached the file. The Advanced SystemCare 11 is what I have been using the keep my laptop clean. After clean up with AwdCleaner I downloaded the Malwarebytes, RogueKiller, HitmanPro & MGtools. The reason I have not proceeded forward is because I noticed these were from 2017 and 2016. I want to be sure that the most updated fix can be applied before I change anything else on here. After trying so many fixes it gets a bit crowded here with Anti malwares and all.

Please help me. Thank you.

 

I was in "Vista & Windows 7,8,10 Malware Removal/Cleaning Procedure" that was showing dates of 2016 and old software so I wanted to make sure I was in the most updated place for Windows 10 and for 2018 procedures. Thank you very much for responding. I have downloaded Farbar and attached the files requested. I do use SmartApp and Advanced SystemCare 11.

 

However, this manual proxy issue is with or without SmartApp. I had to do a system restore and went to a previous version of Windows 10. That was one of the things I did trying to fix this proxy problem. I did not realize at the time that is was a virus/trojan.

 

Oops I just noticed I did not fully comprehend your reply. I need to run all of the software fixes including the Farbar.

 

I have just completed running MALWAREBYTES, ROGUEKILLER, HITMANPRO, MGTOOLS and the files are attached. I did run the Farbar first by mistake. Please let me know if I will need to run that one again. It probably does not matter since these were not altered. I believe I cleaned my system with the ADWcleaner prior, I was following a tech from a different site. But I see that the issue was still there.

 

RogueKiller file

 

I should have explained that I was on my own after the Windows 10 Insiders would not help so I was using YouTube videos to find solutions. I was trying different things on my own until I remembered MajorGeeks. This is my first time getting any help at all. And believe me I am so very grateful!! It seems that the issue still exists.

 

Re ran Farbar files attached.

 

I ran a SCAN on the Farbar not FIX. Was that correct?

 

AFter the removal of SmartApp.

 

lets see how it holds for a few days. I would like to see if this is it. I did a system reset and it seemed to work for a few days but it came back. I won't install any other program. What would you advise for daily cleaning and keeping my laptop safe? Is Windows Defender sufficient?

 

Thank you so very much for your help. I really hope this is it. I am amazed if this SmartApp has caused all of this trouble.

 

I did a Windows 10 restore to a previous version. It stopped it for a short while then it came back. I thought the manual proxy was coming from a windows 10 build.

 

This was last year when I was in the Windows 10 Insiders programs.

 

Thank you so much. Yes, you most certainly correct. I was so positive it came from a build in the Windows 10 program because so many others had the same issue too about the same time I did and there was no solution offered. We were all ignored. The problem seems to be fixed. It has not come back. Too bad. I was due to collect payment for my troubles in July from this "SmartApp". However, this is far worth more! I am ready for the final steps. Thank you!

 

Thank you so very much! I greatly appreciate all of your excellent help.

 

After all of this fine work I was downloading something my brother was telling me about and along came all of this malware stuff. I did not realize that I had clicked on some suspicious stuff that started multiplying. I ran the Malwarebytes and cleaned up most of it but now I am getting a horrible message from a fake Microsoft that I must call them immediately or they will block my computer etc. This happens every time I open a window on my laptop in Chrome. I was also wondering if you could help with my Android phone. I had that Smart Panel installed on my phone and uninstalled it but it is horribly slow too. I installed the CCleaner and use it regular as well as the Android LG cleaner but it is still slow and won't allow me to access the Internet. But first the laptop issues. My Internet is a different color so I know there is virus on here because my screen is a different color.

Appended: After running Malwarebytes 7.2.2 My Chrome came back and I noted the infection is on Internet Explorer. Number to all is 888-929-7471. My Chrome has been restored. Advanced System Care 11 has been removed with the cleaning. What do you recommend as a good software to keep?

 

Sorry I meant Anti-malware software. I was using Advanced Systems Care but that does not seem to do the job very well or do I need something for Internet safety? I'm not sure what is good anymore these days to stay safe. It seems no matter what you do there is some virus hiding inside something.

 

Attached is the file requested. Thank you.

 

This should be the file from the Zemana I ran last night.

 

I am so sorry. I just so the rest of the message. It was a very long painful day. My brain has been in a cloud. I was getting the file names crossed. I am completing the second part now.

 

Attached is the ZHPCleaner report. Thank you.

 

Attached the the ZHPCleaner Repair file. Thank you.

 

Its not the Proxy-Hijacker its the SavingsCool and Click.adservinganalytics I am seeing that is hijacking Internet Explorer. When I open a window I get a weird message that states to not close my browser window but to call Microsoft to save my windows account. I have to use Task Manager to close the window. I was trying to download a file my brother sent me and it had a trojan in it. I cleaned up most of it but this item is still lingering. I am probably not explaining it well. I used the CCleaner and it found most of the items. It started duplicating some other items that I was able to remove. Also ran MalwareBytes and cleaned up others.

 

That is why I am not sure how this file slipped past all of these unless I some how bypassed the warnings or somehow clinked on the wrong thing.

 

These are the logs before deleting the personal settings. I went back and deleted the personal settings and will run Farbar Recovery Scan again because I had a full pop up again. So I just rebooted.

 

Thinking since there was no fix there was no difference. The issue still exists. These are the files after the second time running Farbar.

 

Malwarebytes report from today. Running RogueKiller.

 

Rogue Killer report.

 

Oh sorry I thought I did that one first. When I open ADWareCleaner it is MalwareBytes. Is that not correct? That is the file I uploaded first before Roguekiller. Did send the correct report?

 

HitmanPro log file

 

Okay running it now. I had 7.2.0.

 

AdwCleaner 72.2 file