Windows 10 Pc Running Very Slow

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by marie95, Mar 6, 2018.

  1. marie95

    marie95 Private E-2

    I'm writing about my daughters laptop. It takes a long time to start about 3 minutes. when it finally does anything you click takes about 1 minute to open up, wether it be a folder or a webpage.
    I first updated all the drives, malware and antivirus programs. I ran them through, but malwarebytes only found a couple of things. Avira found nothing.
    I went ahead and followed the" how to remove malware" and attached are the logs.
    Any help will be greatly appreciated.
    thank you,
    marie
     

    Attached Files:

    marie95, Mar 6, 2018
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Is there a reason you are using a proxy server?
     
    TimW, Mar 6, 2018
    #2
  3. marie95

    marie95 Private E-2

    My daughter is a college student and when she went to South Korea for a student trip of a couple of weeks, she needed that to access sites she couldnt while over there.
     
    marie95, Mar 6, 2018
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Ok...reopen Roguekiller and remove these item:
    ¤¤¤ Registry : 23 ¤¤¤
    [PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-372423961-3444332449-562191275-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : 162.244.135.188:8080 -> Found
    [PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-372423961-3444332449-562191275-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : 162.244.135.188:8080 -> Found
    [PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-372423961-3444332449-562191275-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03052018085041044\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : 162.244.135.188:8080 -> Found
    [PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-372423961-3444332449-562191275-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03052018085041044\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : 162.244.135.188:8080 -> Found
    [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 99.196.99.99 99.197.99.99 ([X][X]) -> Found
    [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{e436e3e9-2e48-4a14-81fe-de4b467291da} | DhcpNameServer : 99.196.99.99 99.197.99.99 ([X][X]) -> Found

    ¤¤¤ Tasks : 2 ¤¤¤
    [Hj.Shortcut] \{A8D87E80-623D-4104-8048-FF6B4565584B} -- "c:\program files (x86)\google\chrome\application\chrome.exe" (http://www.skype.com/go/downloading?source=lightinstaller&ver=7.24.0.104&LastError=12002) -> Found

    Then have Hitman remove this:
    C:\Users\april\Downloads\adobe_flash_setup_1589425296.exe

    Reboot and rerun both RogueKiller and Hitman and attach the new logs.
     
    TimW, Mar 6, 2018
    #4
  5. marie95

    marie95 Private E-2

    Thanks. Did as you instructed. attached are the logs. Is proxy server something that shouldn't be used at all? I'm not familiar with them.
     

    Attached Files:

    marie95, Mar 6, 2018
    #5
  6. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Proxy servers are usually used to hide your actual IP address. They are not inherently bad, they can slow things down.

    HitMan is still showing this to be malware:
    C:\Users\april\Downloads\adobe_flash_setup_0043915452.exe

    Delete it.

    I want you to run one more scan:
    Please download Zemana Malware Removal to your desktop and run it please.

    It auto updates, and you click scan. After it's finished, click on the icon that looks like Cell phone strength bars. High-light the report (by date log was produced) and click on the "Open Report" icon. (looks like a folder). That notepad.txt can then be copied/pasted into another .txt doc and saved. Upload that, please.
     
    TimW, Mar 6, 2018
    #6
  7. marie95

    marie95 Private E-2

    Here it is
     

    Attached Files:

    marie95, Mar 7, 2018
    #7
  8. marie95

    marie95 Private E-2

    I'm sorry, I forgot to delete the malware on Hitman first, before I ran zemana. Attached is the log after I deleted the Hitman stuff.
     

    Attached Files:

    marie95, Mar 7, 2018
    #8
  9. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Good. Your logs are all clean now. If you continue to have issues with slowness, please post in the software forum and answer these questions:
    For example answer the below:

    * Is boot up slow?
    * Is shutdown slow?
    * Is browsing/surfing slow?
    * Is downloading slow?
    * Is running any application?
    * Is it also slow in safe boot mode?
    * Also are any process showing in Task Manager to be using a lot of CPU time?
    * Anything else slow?

    Since you are not having any malware problems, it is time to do our final steps:
    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
    2. Re-enable your Disk Emulation software with Defogger if you had disabled it in step 4 of the READ & RUN ME.
    3. Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.
    4. If running Vista, Win 7 or Win 8 or 10, it is time to make sure you have re-enabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Now go to the C:\MGtools folder and find the MGclean.bat file. Double click ( if running Vista, Win7, or Win 8 or 10 Right Click and Run As Administrator ) on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    6. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    7. After doing the above, you should work thru the below link:
     
    TimW, Mar 7, 2018
    #9
  10. marie95

    marie95 Private E-2

    Thank you very much. Sorry my initial message wasn't informative.
    So did her computer have malware? or was it just the proxy server slowing things down?
    I really appreciate all your help and time you took on helping me.
    Have a great day!
     
    marie95, Mar 7, 2018
    #10
  11. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Yes...the adobe downloads were packed with malware. And the google hijack. How is the system running now?
     
    TimW, Mar 7, 2018
    #11
  12. marie95

    marie95 Private E-2

    Yes, its running smoothly. Thank you very very much. I'll make sure she updates and runs the anti malware and anti virus programs regularly. (she was not doing either)
    Have a great day!
     
    marie95, Mar 7, 2018
    #12
  13. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Good to know! You are most welcome.
     
    TimW, Mar 7, 2018
    #13

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds