2nd Machine For Review -senior Couple Victimized By Phone Scam - Logs Attached

Logs attached. Desktop machine victimized by phone scam of elderly couple. I received the machine to help them out. This one still has trojans that AV couldn't remove. Was running slow and had a ton of crap on it. Machine had a 2011 version of Webroot AV w/Spy sweeper on it that didn't work. Malwarebytes Monitor had multiple attacks by websites while scanning. There are 17 networks created on this machine because of the crazy trojans. TimW helped on the laptop.

 

I just emptied the Recycle Bin if anything shows in there in the logs.
All steps completed. Success on the regedit merge.
Had to download Unlocker to aid in the removal of the 3 specific noted items found in Appdata/Local & /Appdata/Roaming but they were removed
Last scans show reference to Tific in the same Appdata location.

 

Tasks completed
Logs attached

 

Woo hoo!
No malware issues that I see. Things run quicker and smoother as they should. One issue I still see from the beginning is the Windows Firewall is says "update your firewall settings. Windows Firewall is not using the recommended settings to protect your computer." When I click to the right on the "Use Recommended settings" button a popup message says "Windows Firewall can't change some of your settings. error code 0x80070422"
I went into Services through and found it "Disabled". I enabled and started it then clicked on the Use Recommended Settings button in windows Firewall and all is green instead of red.

I believe at this time TimW we are done. I know how to reset UAC and run the MGTools cleaning and all the other things to get things back like they were.

I probably will delete previous restore points and set a fresh restore point for good measure. That has long been a practice of mine. I don't want any chance of having anything harmful saved in restore points.

Many thanks

 

Yeah you know I will stress that VERY MUCH! I now need to figure what the #$%& they are doing with an AOL CD they received in the mail and why they have a USB modem and NetMeeting configured on this machine. I was told to look at the Dial-up connection and to install an AOL CD provided. Hmmmm they have broadband! I'm a hardware guy with 25 years background. I don't see why they are even using an AOL CD when you can access it through the browser. AND why are NetMeeting and a Dial-up connection established? Hmmmm something isn't right. I'm dealing with this through a friend that the owners of this desktop and the laptop are his colleagues. Guess I'll be asking more questions. I'm just here to help.

Yours help TimW, was very much appreciated. As always the Majorgeeks Experts save the day!