Need help, laptop cannot connect to certain websites.

Restarted my computer just to be sure, and it seems the problem is still continuing

Ok, go ahead with the Eset scan, then scan with AdsFix for me, this one seems to be hiding… We will get it.

Scan & Clean With Ads Fix

[ul]
[li]Disable Windows Defender & Antivirus Prior To Running This Tool!![/li][li]Save Ads Fix to your desktop.[/li][li]Right Click & Run As Administrator.[/li][li]You will then be prompted to install Certificates.[/li][li]Install then click OK.[/li][li]Right Click & Run As Administrator Again.[/li][li]Click Options then select Unlock the deletion.[/li][li]Then click on clean.[/li][li]Post the log created.[/li][/ul]

I would also suggest that you reset your router to factory settings.

Sorry the eset scanner seems to be taking quite a long time

It crashed on me after an hour

Well go ahead with Ads Fix. Download it in Safe Mode and run in normal mode. Make sure and disable Windows Defender etc…

Wouldn’t let me copy and paste it

---------- | AdsFix | g3n-h@ckm@n | 3_25.10.2016.2

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 14:41:10 - 26/10/2016

update on : 25/10/2016 | 23.40 by g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : Dépannage Informatique à Distance - Assistance Informatique | SOSVirus
Feedbacks : Télécharger KMSPico Activator Windows 11 et Office 2021
Facebook : AdsFix-Anti-Adware
C:\Users\Josh\Desktop\adsfix_3_25.10.2016.1.exe
Boot: Normal boot
[Josh (Administrator)] - [JOSH-PC] - (USA [0409])
SID = S-1-5-21-2025992066-4083076924-3298436488-1000 || [4a6f7368205e5e]
PC : Alienware - M17xR4 - M17xR4
Processor : X64 - 2693 - Intel(R) Core™ i7-3740QM CPU @ 2.70GHz
Bios : Alienware - 05/17/2013 - V.A12
CoreTemp : 29.8 C

CPU #1 value:0 %
CPU #2 value:0 %
CPU #3 value:0 %
CPU #4 value:0 %
CPU #5 value:0 %
CPU #6 value:0 %
CPU #7 value:0 %
CPU #8 value:0 %
Total Overall CPU Usage value:0 %

System : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1
RAM memory = Total (MB) : 16726 | Free (MB) : 14008
Pagefile = Total (MB) : 33451 | Free (MB) : 30464
Virtual = Total (MB) : 4194 | Free (MB) : 3993

C:\ → [Fixed] | | Total : 119.14 Go | Free : 34.51 Go → NTFS (SSD) [RAID]
D:\ → [Fixed] | | Total : 931.5 Go | Free : 174.37 Go → NTFS [RAID]
F:\ → [Removable] | | Total : 1.83 Go | Free : 1.75 Go → FAT [USB]

Registry saved, to restore : Click on Options & Restore the register (C:\AdsFix\Save\Registry [26.10.2016 @ 14_41_09]) or an element
Restore files or folders deleted by mistake : Click on Options & Restore Files | Folders, Select an item >> “restore”

---------- | Windows Updates

Last detection : 2016-10-26 12:48:38
Last downloaded : 2016-10-25 13:54:06
Last installation : 2016-10-25 13:54:16
Next search : 2016-10-27 10:13:07

---------- | Browsers

IE : 11.0.9600.18500 (© Microsoft Corporation. All rights reserved.)
GC : 54.0.2840.71 (Copyright 2016 Google Inc. All rights reserved.)

---------- | Security (atcav : 0)

AV :
AS : Windows Defender Disabled
AM : Malwarebytes’ Anti-Malware (2.3.173.0) [Update : 04/06/2015 23:19:54]
FW :
WMI : OK
WU: Windows Update Service [Auto(2)] = Order
AS: Windows Defender [Manual(3)] = Order
FW: Windows FireWall Service [Auto(2)] = Started
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = Started

---------- | FlashPlayer

ActiveX : 23.0.0.185
Plugin : 23.0.0.185

---------- | Killed processes

544 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.AMD - AMD External Events Service Module.) - (21.19.151.3) = C:\Windows\System32\atiesrxx.exe
1272 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Creative Technology Ltd - Creative Audio Service.) - (3.80.5.0) = C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
1496 | [Owner : SYSTEM |Parent : 544()] - (.AMD - AMD External Events Client Module.) - (21.19.151.3) = C:\Windows\System32\atieclxx.exe
1592 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Microsoft Corporation - Spooler SubSystem App.) - (6.1.7601.17777) = C:\Windows\System32\spoolsv.exe
1804 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Intel Corporation - Bluetooth Device Monitor.) - (2.0.0.130) = C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
1812 | [Owner : Josh |Parent : 824(services.exe)] - (.Microsoft Corporation - Host Process for Windows Tasks.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe
2040 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Broadcom Corporation. - Bluetooth Support Server.) - (6.5.1.2410) = C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
1984 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Hi-Rez Studios - HiPatchService.) - (5.0.5.9) = C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
2248 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.23.219.2) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
2284 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (8.0.0.1399) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
2572 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.-.) - (0.0.0.0) = C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
2648 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.- GameScannerService.) - (1.0.6.2673) = C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2784 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) - (16.0.2.0) = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
2796 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.Intel Corporation - Bluetooth LE Services Control Program.) - (2.1.1.137) = C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
2808 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.Microsoft Corporation - Windows host process (Rundll32).) - (6.1.7600.16385) = C:\Windows\System32\rundll32.exe
2816 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.Advanced Micro Devices, Inc. - Radeon Settings: Host Application.) - (10.1.1.1648) = C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
2944 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.Nota Inc. - Gyazo Station.) - (2.2.0.0) = C:\Program Files (x86)\Gyazo\GyStation.exe
2984 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.Spotify Ltd - SpotifyWebHelper.) - (1.0.33.106) = C:\Users\Josh\AppData\Roaming\Spotify\SpotifyWebHe lper.exe
3000 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.Skype Technologies S.A. - Skype.) - (7.28.85.101) = C:\Program Files (x86)\Skype\Phone\Skype.exe
3024 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.Valve Corporation - Steam Client Bootstrapper.) - (3.65.13.80) = C:\Program Files (x86)\Steam\Steam.exe
2516 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.Broadcom Corporation. - Bluetooth Tray Application.) - (6.5.1.2410) = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
3104 | [Owner : Josh |Parent : 2460()] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) - (1.0.0.120) = C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
3156 | [Owner : Josh |Parent : 2460()] - (.Intel Corporation - IAStorIcon.) - (11.0.0.1032) = C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
3352 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.WellWeWeb - CheVolume.) - (0.4.1.2) = D:\CheVolume\CheVolume.exe
3368 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.-.) - (0.0.0.0) = C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
3404 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Zemana Ltd. - ZAM.) - (0.0.0.0) = C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
3468 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Intel Corporation - Bluetooth OBEX Service.) - (2.0.0.128) = C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
4120 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Intel Corporation - Bluetooth Media Service.) - (2.1.0.138) = C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
4368 | [Owner : Josh |Parent : 2880()] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) - (16.0.2.0) = C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4392 | [Owner : Josh |Parent : 992(svchost.exe)] - (.Intel Corporation - Bluetooth Media Player Controller.) - (2.0.0.128) = C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
4408 | [Owner : Josh |Parent : 3352()] - (.- CheVolumeHelper_x86.) - (1.0.0.0) = D:\CheVolume\CheVolumeHelper_x86.exe
4476 | [Owner : Josh |Parent : 2460()] - (.- Alienware On-Screen Display.) - (0.32.0.8) = C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
4492 | [Owner : Josh |Parent : 2460()] - (.Creative Technology Ltd - Sound Blaster Control Panel.) - (1.2.10.0) = C:\Program Files (x86)\Creative\Sound Blaster Recon3Di\Sound Blaster Recon3Di Control Panel\SBRcni.exe
4612 | [Owner : Josh |Parent : 4492()] - (.Creative Technology Ltd - Creative Jack Configuration.) - (1.0.11.2) = C:\Program Files (x86)\Creative\Sound Blaster Recon3Di\Sound Blaster Recon3Di Control Panel\CTJckCfg.exe
4840 | [Owner : LOCAL SERVICE |Parent : 1132(svchost.exe)] - (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Host Process.) - (6.2.9200.16384) = C:\Windows\System32\WUDFHost.exe
2468 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.Microsoft Corporation - Microsoft Help and Support.) - (6.1.7600.16385) = C:\Windows\HelpPane.exe
5684 | [Owner : Josh |Parent : 3024()] - (.Valve Corporation - Steam Client WebHelper.) - (3.65.13.80) = C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
5728 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Valve Corporation - Steam Client Service.) - (3.65.13.80) = C:\Program Files (x86)\Common Files\Steam\SteamService.exe
6552 | [Owner : Josh |Parent : 2516()] - (.Microsoft Corporation - Windows host process (Rundll32).) - (6.1.7600.16385) = C:\Windows\SysWOW64\rundll32.exe
6708 | [Owner : NETWORK SERVICE |Parent : 824(services.exe)] - (.Microsoft Corporation - Windows Media Player Network Sharing Service.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe
3976 | [Owner : SYSTEM |Parent : 3752()] - (.Google Inc. - Google Crash Handler.) - (1.3.31.5) = C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.ex e
4928 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Intel Corporation - IAStorDataSvc.) - (11.0.0.1032) = C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
6060 | [Owner : SYSTEM |Parent : 3752()] - (.Google Inc. - Google Crash Handler.) - (1.3.31.5) = C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64. exe
3736 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) - (1.4.5.1) = C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
8016 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Intel Corporation - Local Manageability Service.) - (8.0.1.1399) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
7328 | [Owner : SYSTEM |Parent : 824(services.exe)] - (.Intel Corporation - User Notification Service.) - (8.0.1.1399) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
6380 | [Owner : Josh |Parent : 2160(explorer.exe)] - (.Google Inc. - Google Chrome.) - (54.0.2840.71) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2768 | [Owner : Josh |Parent : 6380(chrome.exe)] - (.Google Inc. - Google Chrome.) - (54.0.2840.71) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
6192 | [Owner : Josh |Parent : 6380(chrome.exe)] - (.Google Inc. - Google Chrome.) - (54.0.2840.71) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

---------- | Tasks

---------- | Services

---------- | AppCertDlls | AppInit_DLLs

---------- | DNSapi.dll

C:\Windows\System32\dnsapi.dll : \drivers\etc\hosts
C:\Windows\SysWOW64\dnsapi.dll : \drivers\etc\hosts

---------- | Hosts

---------- | SafeBoot

---------- | Winsock

Deleted successfully : HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Pa rameters\Protocol_Catalog9\Catalog_Entries\0000000 00016 : BfLLR

---------- | DNS

---------- | Register

Deleted successfully : HKLM\SOFTWARE\Classes.CETRAINER : CheatEngine
Deleted successfully : HKLM\SOFTWARE\Classes.CT : CheatEngine
Deleted successfully : HKU\S-1-5-21-2025992066-4083076924-3298436488-1000\SOFTWARE\Microsoft\Internet Explorer\DOMStorage\bigfootnetworks.speedtest.net
Deleted successfully : HKU\S-1-5-21-2025992066-4083076924-3298436488-1000\SOFTWARE\Microsoft\Internet Explorer\DOMStorage\speedtest.net
Deleted successfully : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Ap plication\SystemUsageReportSvc
Deleted successfully : HKLM\SOFTWARE\Microsoft\Tracing\wyUpdate_RASAPI32
Deleted successfully : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted]~[C:\Windows\TEMP_ir_sf_temp_0\irsetup.exe]
Deleted successfully : HKU\S-1-5-21-2025992066-4083076924-3298436488-1000\SOFTWARE\Chromium
Deleted successfully : HKU\S-1-5-21-2025992066-4083076924-3298436488-1000\SOFTWARE\EasiSlides
Deleted successfully : [HKU\S-1-5-21-2025992066-4083076924-3298436488-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] : {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Deleted successfully : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope]
Deleted successfully : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope]
Deleted successfully : HKU\S-1-5-21-2025992066-4083076924-3298436488-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A} : C:\Users\Josh\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
Deleted successfully : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Deleted successfully : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Deleted successfully : HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\UserData\S-1-5-18\Components\06850FD9E8167C14691CCE29BF27312A : C:\Program Files (x86)\EasiSlides\Interop.JRO.dll
Deleted successfully : HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\UserData\S-1-5-18\Components\47FCD4D276791DA4798B6A83FD0B30BA : C:\Program Files (x86)\EasiSlides\Easislides.exe
Deleted successfully : HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\UserData\S-1-5-18\Components\60838B991E0754E4D9AEE55158460630 : C:\Program Files (x86)\EasiSlides\Interop.VBIDE.dll
Deleted successfully : HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\UserData\S-1-5-18\Components\7DB61B846F1BA974BAED585C7CEEACD6 : C:\Program Files (x86)\EasiSlides\DirectShowLib.dll
Deleted successfully : HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\UserData\S-1-5-18\Components\824FF458FD6D95541894B5A439DBE972 : C:\Program Files (x86)\EasiSlides\Backgrounds
Deleted successfully : HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\UserData\S-1-5-18\Components\9079E619A352D1F4C86C1E16AFA4DFFC : C:\Program Files (x86)\EasiSlides\Interop.stdole.dll
Deleted successfully : HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\UserData\S-1-5-18\Components\9C5A7ED97FF079345B618BAABFF6A574 : C:\Program Files (x86)\EasiSlides\Interop.Word.dll
Deleted successfully : HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\UserData\S-1-5-18\Components\D37C7BE93CAB3704EADE653E5CE6CCC9 : C:\Program Files (x86)\EasiSlides\GetOffice.dll
Deleted successfully : HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\UserData\S-1-5-18\Components\EC24964B9B81FC345B811111FA6564A4 : C:\Program Files (x86)\EasiSlides\Interop.Office.dll
Deleted successfully : HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\UserData\S-1-5-18\Products\B1612738C301ACB4891AF43C035BA394 : [C:\Windows\Installer\11547.msi]
Deleted successfully : [HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\Folders]~[C:\Program Files (x86)\EasiSlides\Backgrounds]
Deleted successfully : [HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\Folders]~[C:\Program Files (x86)\EasiSlides\Backgrounds\Scenery]
Deleted successfully : [HKLM\Software\Microsoft\Windows\CurrentVersion\Ins taller\Folders]~[C:\Program Files (x86)\EasiSlides\Sys]
Deleted successfully : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\Curren tVersion\Uninstall{8372161B-103C-4BCA-98A1-4FC330B53A49} : (EasiSlides) MsiExec.exe /I{8372161B-103C-4BCA-98A1-4FC330B53A49} → C:\Program Files (x86)\EasiSlides\

---------- | Folders | Files

Deleted successfully : C:\Users\Josh\AppData\Roaming\Microsoft\Windows\St art Menu\Programs\Stаrt Тоr Вrоwsеr.lnk (.-.) C:\Users\Josh\Desktop\Tor Browser\Browser\firefox.bat
Deleted successfully : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasiSlides\Start Easislides.lnk (.-.)
Deleted successfully : C:\Users\Josh\AppData\Local\238010
Deleted successfully : C:\Users\Josh\AppData\Local\Chromium
Deleted successfully : C:\Users\Josh\AppData\Local\Kholat
Deleted successfully : C:\Users\Josh\Desktop\Zemana.AntiMalware.Setup.exe (© Copyright 2015 .-.Advanced Malware Protection )
Deleted successfully : C:\ProgramData\Bigfoot Networks\SpeedTest.ini (.-.)
Deleted successfully : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasiSlides
Deleted successfully : C:\Users\Josh\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico (.-.)
Deleted successfully : C:\Windows\Installer\11547.msi (.-.) [Package Install]
Deleted successfully : C:\ProgramData\boost_interprocess
Deleted successfully : C:\ProgramData.mono

---------- | .LNK

---------- | opening unknown extension

---------- | Proxy

---------- | Internet Explorer

Repaired : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\SysWOW64\blank.htm → C:\Windows\System32\blank.htm
Repaired : [HKU\S-1-5-21-2025992066-4083076924-3298436488-1000\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[Enabled] : → 2
Repaired : [HKU\S-1-5-21-2025992066-4083076924-3298436488-1000\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[EnabledV8] : → 1
Repaired : [HKU\S-1-5-21-2025992066-4083076924-3298436488-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Int ernet settings]~[WarNonBadCertReceving] : → 1
Repaired : [HKU\S-1-5-21-2025992066-4083076924-3298436488-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Int ernet settings]~[WarNonHTTPSToHTTPRedirect] : → 1
Repaired : [HKU\S-1-5-21-2025992066-4083076924-3298436488-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar]~[Locked] : 1 → 0

---------- | Yandex

---------- | Google Chrome

Deleted successfully : C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Web Data (.-.) Reseted successfully : SearchURL
Deleted successfully : C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Preferences (.-.) Reseted successfully : Preferences
Deleted successfully : C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (.-.) Reseted successfully : Preferences
Deleted successfully : C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\extensions\cmeakgjggjdlcpncigglobpjbk abhmjl = permissions: [ notifications alarms storage background webRequest webRequestBlocking ://steamcommunity.com/ ://.steampowered.com/* http://.steamstatic.com/ ://steamrep.com/ ://steamcdn-a.akamaihd.net/ ]
Deleted successfully : C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\extensions\gfenjblodoldnbiddmggcbkcap iolbig = key: MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwyKV+G kA2d6vVlnqBHUZkZ8iA0A5hItqFtNLmTQZW87Bb/GOrRmP+5RetP9er7sDYaCutKHCN1d5Bd4fMMK4dfe4EnWhtaVM uYaQauCfAK/Csg3zoU9PCfFgEzHTnKom668IYnUYqbpOvxMbBIXFMZCYOS6Dq Mhut1Zpw513PbkPDhgRlyWUTRb50Z6ecA+6UFhg4W4WTSeS6l2 YKuEHYZZ15GadbuYPuzL87dC1bqGOjU6kck9rpbpRTFujRxMjG HVB7RuXn3LT5O51wJXt+Yoqk+k4BUYhinYyA7GuegtOIM660tk Wlcsne0Ccva0zf9yCmXVxwDAyhUABwN6vxwIDAQAB
Deleted successfully : C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\extensions\kbmfpngjjgdllneeigpgjifpgo cmfgmb = description: A suite of modules that enhance your Reddit browsing experience
Deleted successfully : C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\extensions\pkedcjkdefgpdelpbcmbmeomcj beemfm = permissions: [ alarms cast cast.streaming declarativeWebRequest desktopCapture dial gcm http:/// identity identity.email management mdns mediaRouterPrivate metricsPrivate networkingPrivate processes storage system.cpu settingsPrivate tabCapture tabs webview https://hangouts.google.com/* https://*.google.com/cast/chromecast/home/gsse ]

C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\extensions\cjpalhdlnbpafiamejdnhcphjb keiagm = : MSG_extShortDesc - name: uBlock Origin - short_name: uBlock₀ - https://clients2.google.com/service/update2/crx
C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\extensions\ghbmnnjooekpmoecnnnilnnbdl olhkhi = : MSG_extDesc - MSG_extName - https://clients2.google.com/service/update2/crx
C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\extensions\mgamelhnfokapndfdodnmfinin gckjia = : Turns unclickable urls & email addresses into clickable ones. - Clickable Links - matches:[\u003Call_urls>] - https://clients2.google.com/service/update2/crx
C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\extensions\molncoemjfmpgdkbdlbjmhlcgn iigdnf = : Highlight copy edit and translate text from any image on the web. - short_name: Naptha - permissions:[clipboardWriteclipboardReadstoragecontextMenustts\ u003Call_urls>] - https://clients2.google.com/service/update2/crx
C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccm gmieda = : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx
C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\extensions\oglcbfocdkemachifmnimbblnd gmlhbi = : Easy way to edit images on Lunapic.com. Right click an image and open edit session on Lunapic.com. - Lunapic Right Click Edit - http://clients2.google.com/service/update2/crx

---------- | Comodo Dragon

---------- | Firefox

---------- | SeaMonkey

---------- | Pale moon

---------- | Opera

---------- | Spark

---------- | StartMenuInternet

---------- | Javascript

---------- | Firewall

---------- | ADS

Other(s) report(s)

Analyzed : 399801 | Modified : 6 | Deleted : 49

---------- |EOF| ---------- | 16:15:17 | [22 Ko]

Oh strange, apparently it did. Wasnt showing that I had pasted it earlier.

Ok, how is the issue now?
Also, have you reset the router to factory settings?

I did it for you.

I’ll go to reset the router now, but aside from that the problem still seemed to be there. Be back in a bit

Alright, we will dig deeper as this thing seems to be hidden.

Pre_Scan

Please download Pre_Scan.
Save it to your desktop.
Disable your antivirus, and windows defender.
Close All open work Pre_Scan will close all processes to run.
Right Click Run as Admin.
Allow completion, when it completes the program will reboot your machine and open a log.
Please post that log here in your next reply.

9-Lab Scan.

[ul]
[li]Download 9-Lab Removal Tool. [/li][li]CLICK HERE to determine whether you’re running 32-bit or 64-bit for Windows.[/li][li]Install the program onto your computer, then right click the icon run as administrator.[/li][li]Update the program and then run a full scan![/li][li]Make sure the program updates, might be better to install it update reboot and check for updates again.[/li][li]You need to make sure the database updates!!![/li][li]Upon Scan Completion Click on Show Results.[/li][li]Then Click On Clean[/li][li]Then Click on Save Log.[/li][li]Save it to your desktop, copy and paste the contents of the log here in your next reply.[/li][/ul]

Fresh FRST

Please re-run Farbar Recovery Scan Tool to give me a fresh look at your system.

[ul]
[li]Right-click on FRST icon and select Run as Administrator to start the tool.[/li](XP users click run after receipt of Windows Security Warning - Open File).
[li]Make sure that Addition option is checked.[/li][li]Press Scan button and wait.[/li][li]The tool will produce two logfiles on your desktop: FRST.txt, and Addition.txt.[/li][/ul]
Please Copy & Paste them into your next reply

Yeah it didnt help, I’ll be doing this stuff now.

Oh lord, hold on, should I have been running all of these scans in normal mode?

We will get it. These things rarely elude me, just take time. All malware issues are not easily solved unfortunate but true…