No Anti Virus software runs scans with anything, Not even cookies trackers.

Seems that I have programs and DLL's that are well known for Malware and Spyware etc but all that anti-virus programs I install comes back with any signs of infected files. Am told that am not on a network however I can't delete or add connections either LAN or WLAN but it's shows that there is a VPN configurated. I also unable to access wireless as it states that the WLAN services isn't running but under the Network and Sharing the signal bars are green. I hope that someone could give me some help.



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:00:57 PM, on 4/6/2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Users\krazykakes\AppData\Local\Google\Update\1.2.183.23\GoogleCrashHandler.exe
C:\Program Files (x86)\Comcast\Desktop Doctor\bin\sprtcmd.exe
C:\Users\krazykakes\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\krazykakes\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\krazykakes\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\krazykakes\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\krazykakes\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\krazykakes\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\krazykakes\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\krazykakes\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\krazykakes\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\krazykakes\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\comcasttb\CIDGlobalLight.exe
C:\Windows\SysWow64\Macromed\Flash\FlashUtil10d.exe
C:\Users\krazykakes\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\krazykakes\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\KRAZYK~1\DOWNLO~1\winlogon.scr

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Zynga Toolbar - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files (x86)\Zynga\tbZyn1.dll (file missing)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security Suite\Engine\4.0.0.127\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Security Suite\Engine\4.0.0.127\IPSBHO.DLL
O2 - BHO: Comcast Toolbar - {79CEEA4E-C231-4614-9E3B-53B2A02F39B7} - C:\Program Files (x86)\comcasttb\comcastdx.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Zynga Toolbar - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files (x86)\Zynga\tbZyn1.dll (file missing)
O3 - Toolbar: Comcast Toolbar - {79CEEA4E-C231-4614-9E3B-53B2A02F39B7} - C:\Program Files (x86)\comcasttb\comcastdx.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\4.0.0.127\coIEPlg.dll
O4 - HKLM\..\Run: [ddoctorv2] "C:\Program Files (x86)\Comcast\Desktop Doctor\bin\sprtcmd.exe" /P ddoctorv2
O4 - HKCU\..\Run: [Google Update] "C:\Users\krazykakes\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Desktop Software] "C:\Program Files (x86)\Common Files\SupportSoft\bin\bcont.exe" /ini "C:\Program Files (x86)\ComcastUI\Desktop Software\uinstaller.ini" /fromrun /starthidden
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - Global Startup: Secure Backup and Share Status.lnk = C:\Program Files\SecureBackupShare\ComcastSecureBackupSharestat.exe
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O13 - Gopher Prefix:
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/pcpitstop.cab
O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - http://support.dell.com/systemprofiler/SysProExe.CAB
O16 - DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} (SABScanProcesses Class) - http://www.superadblocker.com/activex/sabspx.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Access Utility Service - SprintNextel - C:\Program Files (x86)\SMBAUtilSvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Comcast AntiSpyware (AntiSpywareService) - Unknown owner - C:\Program Files (x86)\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe
O23 - Service: Comcast Secure Backup & Share Backup Service (ComcastSecureBackupSharebackup) - Secure Backup and Share - C:\Program Files\SecureBackupShare\ComcastSecureBackupSharebackup.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: CA Pest Patrol Realtime Protection Service (ITMRTSVC) - CA, Inc. - C:\Program Files (x86)\CA\PPRT\bin\ITMRTSVC.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Norton Security Suite (N360) - Symantec Corporation - C:\Program Files (x86)\Norton Security Suite\Engine\4.0.0.127\ccSvcHst.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SupportSoft Sprocket Service (ddoctorv2) (sprtsvc_ddoctorv2) - SupportSoft, Inc. - C:\Program Files (x86)\Comcast\Desktop Doctor\bin\sprtsvc.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe

--
End of file - 9931 bytes

Hello! We need to do some diagnostics to get started.

1. Please download Profiles by noahdfear.

• Save it to your desktop.
• Double-click profiles.exe and post its log when you reply

2. Download Win32kDiag by ad13 and save it to your Desktop.

• Double-click Win32kDiag.exe to run Win32kDiag and let it finish.
  
• When it states "Finished! Press any key to exit...", press any key on your keyboard to close the program.
  
• Double-click on the Win32kDiag.txt file that is located on your Desktop and post the entire contents of that log as a reply to this topic.

3. Please download Cheetah-Anti-Rogue by me, and save to your Desktop.

• Double-click on Cheetah-Anti-Rogue.zip, and extract the file to your Desktop.
  
• Double-click on Cheetah-Anti-Rogue.cmd to start.
  
• It will finish quickly and launch a log.
  
• Post the contents of it in your next reply.

4. In your next reply, please post the following logs for my review:

• Profiles log (1)
  
• Win32kDiag log (2)
  
• Cheetah log (3)

Thanks!

Per your request here are the three tool logs you requested.

Profiles log :


HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-18
ProfileImagePath REG_EXPAND_SZ %systemroot%\system32\config\systemprofile

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-19
ProfileImagePath REG_EXPAND_SZ C:\Windows\ServiceProfiles\LocalService

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-20
ProfileImagePath REG_EXPAND_SZ C:\Windows\ServiceProfiles\NetworkService

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-521303698-2149037445-3264058582-1001
ProfileImagePath REG_EXPAND_SZ C:\Users\krazykakes

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-521303698-2149037445-3264058582-1007
ProfileImagePath REG_EXPAND_SZ C:\Users\ju-ju

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-521303698-2149037445-3264058582-1008
ProfileImagePath REG_EXPAND_SZ C:\Users\NaNa

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-521303698-2149037445-3264058582-500
ProfileImagePath REG_EXPAND_SZ C:\Users\Administrator

SystemRoot REG_SZ C:\Windows

Win32kDiag:


Running from: C:\Users\krazykakes\Desktop\Win32kDiag.exe Log file at : C:\Users\krazykakes\Desktop\Win32kDiag.txt WARNING: Could not get backup privileges! Searching 'C:\Windows'... Cannot access: C:\Windows\CSC\v2.0.6\pq [1] 2010-01-28 18:08:47 64 C:\Windows\CSC\v2.0.6\pq () Cannot access: C:\Windows\CSC\v2.0.6\temp\ea-{bec4397b-0c72-11df-8b05-cc74f1a19ba6} [1] 2010-01-28 18:08:47 0 C:\Windows\CSC\v2.0.6\temp\ea-{bec4397b-0c72-11df-8b05-cc74f1a19ba6} () Cannot access: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTDiagLog.etl [1] 2010-04-07 21:39:56 72 C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTDiagLog.etl () Cannot access: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-Application.etl [1] 2010-04-07 21:39:40 0 C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-Application.etl () Cannot access: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-ForwardedEvents.etl [1] 2010-04-07 21:39:40 0 C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-ForwardedEvents.etl () Cannot access: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventlog-Security.etl [1] 2010-04-07 21:39:54 72 C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventlog-Security.etl () Cannot access: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-System.etl [1] 2010-04-07 21:39:54 72 C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-System.etl () Cannot access: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTkerberos.etl [1] 2010-04-07 21:39:54 3176 C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTkerberos.etl () Cannot access: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTUBPM.etl [1] 2010-04-07 21:40:02 72 C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTUBPM.etl () Finished!




Cheetah-Anti-Rogue v1.3.35
by DragonMaster Jay

Microsoft Windows [Version 6.1.7600]
Date: 04/08/2010 - Time: 2:39:32 - Arch.: AMD64


-- Malware removal tools check --


-- Known infection --



Extra message: Detection only.


EOF

Please download Malwarebytes Anti-Malware from Malwarebytes.org.
Alternate link: BleepingComputer.com.
(Note: if you already have the program installed, just follow the directions. No need to re-download or re-install!)

Double Click mbam-setup.exe to install the application.

(Note: if you already have the program installed, open Malwarebytes from the Start Menu or Desktop shortcut, click the Update tab, and click Check for Updates, before doing the scan as instructed below!)

• Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
  
• If an update is found, it will download and install the latest version.
  
• Once the program has loaded, select "Perform Full Scan", then click Scan.
  
• The scan may take some time to finish,so please be patient.
  
• When the scan is complete, click OK, then Show Results to view the results.
  
• Make sure that everything is checked, and click Remove Selected.
  
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. If you are prompted to restart, please allow it to restart your computer. Failure to do this, will cause the infection to still be active on the computer.
  
• Please save the log to a location you will remember.
  
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  
• The log can also be found at C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt
  
• Copy and paste the entire report in your next reply.

here is the log requested:

Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Database version: 3970

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

4/8/2010 5:48:37 PM
mbam-log-2010-04-08 (17-48-37).txt

Scan type: Full scan (C:\|D:\|)
Objects scanned: 211546
Time elapsed: 29 minute(s), 45 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 1
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Users\krazykakes\downloads\winlogon.scr (Heuristics.Reserved.Word.Exploit) -> Quarantined and deleted successfully.

Please run a free online scan with the ESET Online Scanner

• Tick the box next to YES, I accept the Terms of Use
  
• Click Start
  
• When asked, allow the ActiveX control to install
  
• Click Start
  
• Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  
• Click Scan (This scan can take several hours, so please be patient)
  
• Once the scan is completed, you may close the window
  
• Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  
• Copy and paste that log as a reply to this topic
  

Am having issues with thw last request however I believe that you asked for this log.


Malwarebytes' Anti-Malware 1.45
DB: 3970

IE: Internet Explorer 8.0.7600.16385
OS: Windows 6.1.7600
EX: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam
DB: C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref

U: Administrator

W: C:\Windows

S: C:\Windows\system32

RD: C:

PF: C:\Program Files
PF: C:\Program Files (x86)

CF: C:\Program Files (x86)\Common Files
CF: C:\Program Files\Common Files

DAS: C:\Users

D: C:\Users\Administrator\Desktop
D: C:\Users\Default\Desktop
D: C:\Users\ju-ju\Desktop
D: C:\Users\krazykakes\Desktop
D: C:\Users\NaNa\Desktop
D: C:\Users\Public\Desktop
D: C:\Windows\ServiceProfiles\LocalService\Desktop
D: C:\Windows\ServiceProfiles\NetworkService\Desktop

SM: C:\ProgramData\Microsoft\Windows\Start Menu
SM: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu
SM: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu
SM: C:\Users\ju-ju\AppData\Roaming\Microsoft\Windows\Start Menu
SM: C:\Users\krazykakes\AppData\Roaming\Microsoft\Windows\Start Menu
SM: C:\Users\NaNa\AppData\Roaming\Microsoft\Windows\Start Menu
SM: C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Start Menu
SM: C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Start Menu

UR: C:\Users\Administrator
UR: C:\Users\AppData
UR: C:\Users\Default
UR: C:\Users\ju-ju
UR: C:\Users\krazykakes
UR: C:\Users\NaNa
UR: C:\Users\Public
UR: C:\Windows\ServiceProfiles\LocalService
UR: C:\Windows\ServiceProfiles\NetworkService
UR: C:\Windows\system32\config\systemprofile

F: C:\Users\Administrator\Favorites
F: C:\Users\Default\Favorites
F: C:\Users\ju-ju\Favorites
F: C:\Users\krazykakes\Favorites
F: C:\Users\NaNa\Favorites
F: C:\Users\Public\Favorites
F: C:\Windows\ServiceProfiles\LocalService\Favorites
F: C:\Windows\ServiceProfiles\NetworkService\Favorites

AD: C:\ProgramData
AD: C:\Users\Administrator\AppData\Roaming
AD: C:\Users\Default\AppData\Roaming
AD: C:\Users\ju-ju\AppData\Roaming
AD: C:\Users\krazykakes\AppData\Roaming
AD: C:\Users\NaNa\AppData\Roaming
AD: C:\Windows\ServiceProfiles\LocalService\AppData\Roaming
AD: C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming
AD: C:\Windows\system32\config\systemprofile\AppData\Roaming

QL: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch
QL: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch
QL: C:\Users\ju-ju\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch
QL: C:\Users\krazykakes\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch
QL: C:\Users\NaNa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch
QL: C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch
QL: C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch

TF: C:\Users\Administrator\AppData\Local\Temp
TF: C:\Users\Default\AppData\Local\Temp
TF: C:\Users\ju-ju\AppData\Local\Temp
TF: C:\Users\krazykakes\AppData\Local\Temp
TF: C:\Users\NaNa\AppData\Local\Temp
TF: C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp
TF: C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp
TF: C:\Windows\Temp

P: C:\ProgramData\Microsoft\Windows\Start Menu\Programs
P: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
P: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
P: C:\Users\ju-ju\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
P: C:\Users\krazykakes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
P: C:\Users\NaNa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
P: C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
P: C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs

S: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
S: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
S: C:\Users\ju-ju\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
S: C:\Users\krazykakes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
S: C:\Users\NaNa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

D: C:\Users\Administrator\Documents
D: C:\Users\Default\Documents
D: C:\Users\ju-ju\Documents
D: C:\Users\krazykakes\Documents
D: C:\Users\NaNa\Documents
D: C:\Users\Public\Documents
D: C:\Windows\ServiceProfiles\LocalService\Documents
D: C:\Windows\ServiceProfiles\NetworkService\Documents

Does Internet Explorer work?

Seems to be. However I also use Chrome browser too

Please re-open Malwarebytes, click the Update tab, and click Check for Updates. Then, click the Scanner tab, select Perform Quick Scan, and press Scan. Remove selected, and post the log in your next reply.