01-15-2017, 10:56 AM (This post was last modified: 01-15-2017, 11:10 AM by SmilerRyan.
Edit Reason: Removing Licence keys from report
)
Okay, after a few days I am finally able to reply to this thread.
Apparently, I do not have the privilege to attach these files, so I had to host them elsewhere.
There doesn't seem to be much wrong from the Belarc report, I would advise however, uninstalling iObit Advanced System Care (snake oil) it will do more harm than good.
Can you try creating a new user account and logging into that to see if the effects are the same.
More than likely that particular account has been corrupted in some way, is the 3d screensaver disabled? if not try disabling and restart the computer.
Ok if there is no working screensaver, then I would assume due to the working other accounts that this one is corrupted by either malware or a registry issue (probably caused by that snake oil).
Please download and run Adwcleaner post the scan logs.
Just see if any of the ratings for the processes in the last column titled VirusTotal are in red. In the screenshot below, the ratings are in blue, indicating that no suspicious processes are active
If a process has a rating of 2/54 for instance, that would mean that out of 54 antimalware, 2 detects it as a threat
Such ratings will appear in red and not in blue. Let me know if any ratings in red appear
The chrome extension that was found was LivePage, which is an extension in the web store that i often use. I assume that was not the cause of the problem because i would actually have to open chrome for it to do this.
I checked the WhatsappAPI file and it seems like a rat that is no longer active. I deleted it and the folder from windows explorer.
Restarting after deleting the file did not make any different effect to the computer.
The only thing process explorer / virustotal detects is my screen recorder (bandicam) as 1/54. That seems fine to me.