Repeat infections each day

[Homerr]

I have a pc infected that I can't seem to resolve.  Pretty sure it's from a 'download manager' type deal on some utilities 'website'.  

 

The symptoms are independent MyPCBackup pop-ups and multiple pop-ups within browser windows.  I've done the fixes listed below 2 times now and then find the next morning that my PC's hard drive is chugging away and the pop-ups are back.

 

Here's what I've done so far:

 

1.  Uninstalled MyPCBackup via the Control Panel.  (No Ask items were present there)

 

2.  Followed Maniac's suggestions in this thread:  https://forums.malwarebytes.org/index.php?showtopic=140477&hl=    (JRT, Adwcleaner, Malwarebytes)

 

3.  Additional searching suggested following up with HitmanPro so I ran that.

 

I really appreciate any help on cleaning my PC!

 

 

Here are the logs after this morning's scans:

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.1.4 (04.06.2014:1)

OS: Windows 7 Ultimate x64

Ran by HTPC on Fri 04/11/2014 at  5:17:22.45

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

~~~ Services

 

 

 

~~~ Registry Values

 

 

 

~~~ Registry Keys

 

 

 

~~~ Files

 

 

 

~~~ Folders

 

 

 

~~~ FireFox

 

Successfully deleted the following from C:\Users\HTPC\AppData\Roaming\mozilla\firefox\profiles\2xano0fz.default\prefs.js

 

user_pref("extensions.qGJ70RwlWXKT.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"txtlnkusaolp000

 

 

 

~~~ Event Viewer Logs were cleared

 

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on Fri 04/11/2014 at  5:24:52.29

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

# AdwCleaner v3.023 - Report created 11/04/2014 at 05:27:19

# Updated 01/04/2014 by Xplode

# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)

# Username : HTPC - HTPC-PC

# Running from : C:\My Dropbox\AdwCleaner.exe

# Option : Clean

 

***** [ Services ] *****

 

 

***** [ Files / Folders ] *****

 

 

***** [ Shortcuts ] *****

 

 

***** [ Registry ] *****

 

 

***** [ Browsers ] *****

 

-\\ Internet Explorer v11.0.9600.17041

 

 

-\\ Mozilla Firefox v28.0 (en-US)

 

[ File : C:\Users\HTPC\AppData\Roaming\Mozilla\Firefox\Profiles\2xano0fz.default\prefs.js ]

 

Line Deleted : user_pref("extensions.qGJ70RwlWXKT.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"txtlnkusaolp00000800\")>-1||url.indexOf([...]

 

-\\ Google Chrome v33.0.1750.154

 

[ File : C:\Users\HTPC\AppData\Local\Google\Chrome\User Data\Default\preferences ]

 

 

*************************

 

AdwCleaner[R0].txt - [2336 octets] - [10/04/2014 07:51:04]

AdwCleaner[R1].txt - [1221 octets] - [11/04/2014 05:26:13]

AdwCleaner[s0].txt - [2427 octets] - [10/04/2014 07:54:25]

AdwCleaner[s1].txt - [1144 octets] - [11/04/2014 05:27:19]

 

########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [1204 octets] ##########

 

 

# AdwCleaner v3.023 - Report created 11/04/2014 at 05:32:13

# Updated 01/04/2014 by Xplode

# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)

# Username : HTPC - HTPC-PC

# Running from : C:\My Dropbox\AdwCleaner.exe

# Option : Scan

 

***** [ Services ] *****

 

 

***** [ Files / Folders ] *****

 

 

***** [ Shortcuts ] *****

 

 

***** [ Registry ] *****

 

 

***** [ Browsers ] *****

 

-\\ Internet Explorer v11.0.9600.17041

 

 

-\\ Mozilla Firefox v28.0 (en-US)

 

[ File : C:\Users\HTPC\AppData\Roaming\Mozilla\Firefox\Profiles\2xano0fz.default\prefs.js ]

 

 

-\\ Google Chrome v33.0.1750.154

 

[ File : C:\Users\HTPC\AppData\Local\Google\Chrome\User Data\Default\preferences ]

 

 

*************************

 

AdwCleaner[R0].txt - [2336 octets] - [10/04/2014 07:51:04]

AdwCleaner[R1].txt - [1221 octets] - [11/04/2014 05:26:13]

AdwCleaner[R2].txt - [861 octets] - [11/04/2014 05:32:13]

AdwCleaner[s0].txt - [2427 octets] - [10/04/2014 07:54:25]

AdwCleaner[s1].txt - [1284 octets] - [11/04/2014 05:27:19]

 

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [1040 octets] ##########

 

 

Malwarebytes Anti-Malware

www.malwarebytes.org

 

Scan Date: 4/11/2014

Scan Time: 6:14:22 AM

Logfile: 

Administrator: Yes

 

Version: 2.00.1.1004

Malware Database: v2014.04.11.06

Rootkit Database: v2014.03.27.01

License: Free

Malware Protection: Disabled

Malicious Website Protection: Disabled

Chameleon: Disabled

 

OS: Windows 7 Service Pack 1

CPU: x64

File System: NTFS

User: HTPC

 

Scan Type: Threat Scan

Result: Completed

Objects Scanned: 270749

Time Elapsed: 11 min, 50 sec

 

Memory: Enabled

Startup: Enabled

Filesystem: Enabled

Archives: Enabled

Rootkits: Disabled

Shuriken: Enabled

PUP: Enabled

PUM: Enabled

 

Processes: 0

(No malicious items detected)

 

Modules: 0

(No malicious items detected)

 

Registry Keys: 0

(No malicious items detected)

 

Registry Values: 0

(No malicious items detected)

 

Registry Data: 0

(No malicious items detected)

 

Folders: 0

(No malicious items detected)

 

Files: 0

(No malicious items detected)

 

Physical Sectors: 0

(No malicious items detected)

 

 

(end)

 

 

 

 

[Maniac]

Hello Homerr! My name is Borislav and I will be glad to help you solve your malware problem.

Please note:

• If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
• I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
• Make sure you read all of the instructions and fixes thoroughly before continuing with them.
• Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
• Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
• Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.

Download OTL to your Desktop

• Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
• Please tick the Scan All users. Next, click the Quick Scan button. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic.

[AdvancedSetup]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!