Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

very slow usage until 20 min after start up


  • Please log in to reply
7 replies to this topic

#1 V_Polito26

V_Polito26

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:21 AM

Posted 01 January 2015 - 07:03 AM

Hi,

 

My comp was fine until I let my mom use my comp while I worked on hers and mine worked fine prior.  my mom plays a few games on facebook which I know has a lot of adware but I have cleaned out all that I know and it still does not run correctly.  For the first 10-15 min my computer is useless, and Norton says high cpu usage even though start up.  I cant run any programs for the first 10-15 min and takes forever for anything to load but im sure it is not a virus bc I have run so many programs including, malware bytes, Norton, JRT and Emisoft and nothing is found.  so ready to fdisk and reload windows.  any help would be greatly appreciated, thanks.


Edited by hamluis, 01 January 2015 - 12:12 PM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,391 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:06:21 AM

Posted 01 January 2015 - 08:45 AM

Try doing a System Restore.  Use a restore point prior to letting you mother use the computer.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#3 buddy215

buddy215

  • Moderator
  • 13,096 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:08:21 AM

Posted 01 January 2015 - 08:47 AM

First, clean up the computer's temporary files, logs, caches, cookies, etc. using CCleaner.

During install pay close attention and UNcheck offers of toolbars such as Google. No need to use the

Registry Cleaning Tool....risky. After install open CCleaner and click on the Run Cleaner button at the bottom right of that page.

 

Second...Open CCleaner and click on Tools. Choose Startups. On that page you will a list of Windows Startups. At the bottom

right of that page is a button when clicked will allow you to copy and paste that list in your next post.

At the top of that page you will see buttons when clicked will show startups for Browsers and Tasks. Copy and paste each of

those lists in your next post.

 

You didn't mention using AdwCleaner and if you haven't run a scan following these directions:

  • download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

Eset Online Scanner is excellent for finding and removing adware and malware. It will take more than an hour so plan accordingly.

 

Hold down Control and click on this link to open ESET OnlineScan in a new window. (Eset can take more than an hour to run so plan accordingly)

  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#4 V_Polito26

V_Polito26
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:21 AM

Posted 01 January 2015 - 06:13 PM

Thanks for helping.  what i have also noticed alot is norton keeps popping up and saying high usage 95% svchost.exe

 

Yes    HKCU:Run    CCleaner Monitoring    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
No    HKCU:Run    Google Update        "C:\Users\Vince\AppData\Local\Google\Update\GoogleUpdate.exe" /c
Yes    HKCU:Run    KiesPDLR    Samsung    C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
No    HKLM:Run    (default)        
Yes    HKLM:Run    00TCrdMain    TOSHIBA Corporation    %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
No    HKLM:Run    CanonMyPrinter        C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
No    HKLM:Run    CanonSolutionMenu        C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon
Yes    HKLM:Run    ETDCtrl    ELAN Microelectronics Corp.    %ProgramFiles%\Elantech\ETDCtrl.exe
No    HKLM:Run    NortonOnlineBackupReminder    Toshiba    "C:\Program Files (x86)\Toshiba\Toshiba Online Backup\Activation\TOBuActivation.exe" UNATTENDED
Yes    HKLM:Run    SmartAudio    Conexant systems, Inc.    C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
Yes    HKLM:Run    SmartFaceVWatcher    TOSHIBA Corporation    %ProgramFiles%\Toshiba\SmartFaceV\SmartFaceVWatcher.exe
Yes    HKLM:Run    SmoothView    TOSHIBA Corporation    %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
Yes    HKLM:Run    TosReelTimeMonitor    TOSHIBA Corporation    %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
Yes    HKLM:Run    TosSENotify    TOSHIBA Corporation    C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
Yes    HKLM:Run    TPwrMain    TOSHIBA Corporation    %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
 

 

# AdwCleaner v4.106 - Report created 01/01/2015 at 09:36:50
# Updated 21/12/2014 by Xplode
# Database : 2014-12-21.4 [Local]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Vince - VINCE-PC
# Running from : C:\Users\Vince\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IJYW2UHM\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17280


-\\ Mozilla Firefox v33.0.2 (x86 en-US)


-\\ Google Chrome v39.0.2171.95

[C:\Users\Vince\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Vince\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

*************************

AdwCleaner[R0].txt - [7996 octets] - [16/02/2014 20:56:56]
AdwCleaner[R1].txt - [1766 octets] - [07/10/2014 12:29:54]
AdwCleaner[R2].txt - [1132 octets] - [01/01/2015 09:36:50]
AdwCleaner[S0].txt - [8071 octets] - [16/02/2014 20:59:36]
AdwCleaner[S1].txt - [1760 octets] - [07/10/2014 12:33:56]

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [1312 octets] ##########

 

 

 

 

 

ESET did not create a log
 



#5 buddy215

buddy215

  • Moderator
  • 13,096 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:08:21 AM

Posted 01 January 2015 - 06:39 PM

Okay...That looks like the Windows Startup List. What about the Browsers and Tasks startup lists?

Second...Open CCleaner and click on Tools. Choose Startups. On that page you will a list of Windows Startups. At the bottom

right of that page is a button when clicked will allow you to copy and paste that list in your next post.

At the top of that page you will see buttons when clicked will show startups for Browsers and Tasks. Copy and paste each of

those lists in your next post.

 

Disable these Startups:

Yes    HKCU:Run    CCleaner Monitoring    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

Yes    HKCU:Run    KiesPDLR    Samsung    C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#6 V_Polito26

V_Polito26
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:21 AM

Posted 15 January 2015 - 02:22 PM

sorry for the delay in response, i got hurt at work and im finally feeling a little better.  thank you for the help

 

 

 

 

internet explorer

 

Yes    Extension    Blog This    Microsoft Corporation    C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
Yes    Extension    Research    Microsoft Corporation    C:\PROGRA~2\MICROS~3\OFFICE11\REFIEBAR.DLL
No    Helper    E-Web Print    SEIKO EPSON CORPORATION    C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
No    Helper    Java™ Plug-In 2 SSV Helper    Oracle Corporation    C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
No    Helper    Java™ Plug-In SSV Helper    Oracle Corporation    C:\Program Files (x86)\Java\jre7\bin\ssv.dll
No    Helper    Norton Identity Protection    Symantec Corporation    C:\Program Files (x86)\Norton Security Suite\Engine\21.6.0.32\coIEPlg.dll
No    Helper    Norton Identity Protection    Symantec Corporation    C:\Program Files (x86)\Norton Security Suite\Engine64\21.6.0.32\coIEPlg.dll
No    Helper    Norton Vulnerability Protection    Symantec Corporation    C:\Program Files (x86)\Norton Security Suite\Engine\21.6.0.32\IPS\IPSBHO.DLL
No    Helper    Windows Live ID Sign-in Helper    Microsoft Corp.    C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
No    Helper    Windows Live ID Sign-in Helper    Microsoft Corp.    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
No    Toolbar    E-Web Print    SEIKO EPSON CORPORATION    C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
No    Toolbar    Norton Toolbar    Symantec Corporation    C:\Program Files (x86)\Norton Security Suite\Engine\21.6.0.32\coIEPlg.dll
No    Toolbar    Norton Toolbar    Symantec Corporation    C:\Program Files (x86)\Norton Security Suite\Engine64\21.6.0.32\coIEPlg.dll
 

 

 

firefox

 

No    Extension    E-Web Print    1.20.00    SEIKO EPSON CORPORATION    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
No    Extension    Norton Toolbar    2014.7.10.16    Symantec Corporation    default-1392603368539    Firefox 34.0.5    C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn
Yes    Plugin    Adobe Acrobat    11.0.10.32    Adobe Systems Inc.    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\Adobe\Reader 11.0\Reader\browser\nppdf32.dll
Yes    Plugin    Google Update    1.3.25.11    Google Inc.    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll
Yes    Plugin    Java Deployment Toolkit 7.0.550.14    10.55.2.14    Oracle Corporation    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
Yes    Plugin    Java™ Platform SE 7 U55    10.55.2.14    Oracle Corporation    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
Yes    Plugin    Photo Gallery    16.4.3505.912    Microsoft Corporation    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Yes    Plugin    QuickTime Plug-in 7.7    7.7.0.0    Apple Inc.    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\QuickTime\Plugins\npqtplugin7.dll
Yes    Plugin    Shockwave Flash    16.0.0.257    Adobe Systems Incorporated    default-1392603368539    Firefox 34.0.5    C:\windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll
Yes    Plugin    Silverlight Plug-In    5.1.30514.0     Microsoft Corporation    default-1392603368539    Firefox 34.0.5    c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
 

 

 

chrome

 

 

Yes    App    Gmail    7    Default    C:\Users\Vince\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
Yes    App    Google Drive    6.3    Default    C:\Users\Vince\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
Yes    App    Google Search    0.0.0.20    Default    C:\Users\Vince\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
Yes    App    YouTube    4.2.6    Default    C:\Users\Vince\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
Yes    Extension    Google Docs    0.7    Default    C:\Users\Vince\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
No    Extension    Norton Identity Safe    1.0.5    Default    C:\Users\Vince\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif\1.0.5_0
 

 

 

sched tasks

 

 

Yes    Task    Adobe Acrobat Update Task    Adobe Systems Incorporated    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Yes    Task    Adobe Flash Player Updater    Adobe Systems Incorporated    C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes    Task    CCleanerSkipUAC    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes    Task    GarminUpdaterTask    Garmin International, Inc.    C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe
Yes    Task    GoogleUpdateTaskMachineCore    Google Inc.    C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes    Task    GoogleUpdateTaskMachineUA    Google Inc.    C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes    Task    RealPlayerRealUpgradeLogonTaskS-1-5-21-4082361273-2192034769-2097834512-1000        C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /logoncheck
Yes    Task    RealPlayerRealUpgradeScheduledTaskS-1-5-21-4082361273-2192034769-2097834512-1000        C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
Yes    Task    {0583B6AB-7F64-4EFD-88D9-6C37FAE2CAB4}        C:\Users\Vince\Desktop\PS_AIO_06_B209a-m_USW_Full_Win_Enu_140_175.exe
Yes    Task    {5E5338AE-D634-415D-B688-9467D0492D0F}        C:\Users\Vince\Desktop\PS_AIO_06_B209a-m_USW_Basic_Win_Enu_140_175.exe
Yes    Task    {86F17668-BA09-4EB0-8AE9-9E0FAAFE6EF4}        C:\Users\Vince\Desktop\PS_AIO_06_B209a-m_USW_Full_Win_Enu_140_175.exe
 

 

 

 

context

 

Yes    Drive    Emsisoft Shell Extension    Emsisoft GmbH    C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\A2CONTMENU.DLL
Yes    Drive    Emsisoft Shell Extension x64    Emsisoft GmbH    C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL
Yes    Drive    Symantec.Norton.Antivirus.IEContextMenu    Symantec Corporation    "C:\Program Files (x86)\Norton Security Suite\Engine64\21.6.0.32\NavShExt.dll"
Yes    File    00avast        
Yes    File    BUContextMenu    Symantec Corporation    C:\Program Files (x86)\Norton Security Suite\Engine64\21.6.0.32\buShell.dll
Yes    File    Emsisoft Shell Extension    Emsisoft GmbH    C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\A2CONTMENU.DLL
Yes    File    Emsisoft Shell Extension x64    Emsisoft GmbH    C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL
Yes    File    MBAMShlExt    Malwarebytes Corporation    C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
Yes    File    Symantec.Norton.Antivirus.IEContextMenu    Symantec Corporation    "C:\Program Files (x86)\Norton Security Suite\Engine64\21.6.0.32\NavShExt.dll"
Yes    Folder    BUContextMenu    Symantec Corporation    C:\Program Files (x86)\Norton Security Suite\Engine64\21.6.0.32\buShell.dll
Yes    Folder    Emsisoft Shell Extension    Emsisoft GmbH    C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\A2CONTMENU.DLL
Yes    Folder    Emsisoft Shell Extension x64    Emsisoft GmbH    C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL
Yes    Folder    MBAMShlExt    Malwarebytes Corporation    C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
Yes    Folder    Symantec.Norton.Antivirus.IEContextMenu    Symantec Corporation    "C:\Program Files (x86)\Norton Security Suite\Engine64\21.6.0.32\NavShExt.dll"
 



#7 V_Polito26

V_Polito26
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:21 AM

Posted 15 January 2015 - 05:14 PM

Emsisoft Anti-Malware - Version 9.0
Quarantine log

Date    Source    Event    Detection    
1/15/2015 5:08:29 PM    Value: HKEY_USERS\S-1-5-21-4082361273-2192034769-2097834512-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR    Moved to quarantine    Setting.DisableTaskMgr (A)    
1/15/2015 5:08:28 PM    Value: HKEY_USERS\S-1-5-21-4082361273-2192034769-2097834512-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS    Moved to quarantine    Setting.DisableRegistryTools (A)    
 



#8 buddy215

buddy215

  • Moderator
  • 13,096 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:08:21 AM

Posted 16 January 2015 - 10:52 AM

If you haven't run the Eset Online Scanner, please do that. What Eisisoft has quarantined points to malware being on the computer and hasn't been identified. Hopefully Eset will.

If it doesn't, then I will ask you to post a NEW Topic in the Malware Removal Forum.

 

Suggest you disable these items in Firefox:

Yes    Plugin    Adobe Acrobat    11.0.10.32    Adobe Systems Inc.    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\Adobe\Reader 11.0\Reader\browser\nppdf32.dll
Yes    Plugin    Google Update    1.3.25.11    Google Inc.    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll
Yes    Plugin    Java Deployment Toolkit 7.0.550.14    10.55.2.14    Oracle Corporation    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
Yes    Plugin    Java™ Platform SE 7 U55    10.55.2.14    Oracle Corporation    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
Yes    Plugin    Photo Gallery    16.4.3505.912    Microsoft Corporation    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Yes    Plugin    QuickTime Plug-in 7.7    7.7.0.0    Apple Inc.    default-1392603368539    Firefox 34.0.5    C:\Program Files (x86)\QuickTime\Plugins\npqtplugin7.dll

Yes    Plugin    Silverlight Plug-In    5.1.30514.0     Microsoft Corporation    default-1392603368539    Firefox 34.0.5    c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
 

Suggest you disable these Tasks:

Yes    Task    Adobe Acrobat Update Task    Adobe Systems Incorporated    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Yes    Task    Adobe Flash Player Updater    Adobe Systems Incorporated    C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes    Task    CCleanerSkipUAC    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes    Task    GarminUpdaterTask    Garmin International, Inc.    C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe
Yes    Task    GoogleUpdateTaskMachineCore    Google Inc.    C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes    Task    GoogleUpdateTaskMachineUA    Google Inc.    C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes    Task    RealPlayerRealUpgradeLogonTaskS-1-5-21-4082361273-2192034769-2097834512-1000        C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /logoncheck
Yes    Task    RealPlayerRealUpgradeScheduledTaskS-1-5-21-4082361273-2192034769-2097834512-1000        C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck

The next three items in Tasks seem to be related to updating HP printer drivers. I suggest you disable them.

Yes    Task    {0583B6AB-7F64-4EFD-88D9-6C37FAE2CAB4}        C:\Users\Vince\Desktop\PS_AIO_06_B209a-m_USW_Full_Win_Enu_140_175.exe
Yes    Task    {5E5338AE-D634-415D-B688-9467D0492D0F}        C:\Users\Vince\Desktop\PS_AIO_06_B209a-m_USW_Basic_Win_Enu_140_175.exe
Yes    Task    {86F17668-BA09-4EB0-8AE9-9E0FAAFE6EF4}        C:\Users\Vince\Desktop\PS_AIO_06_B209a-m_USW_Full_Win_Enu_140_175.exe

 

EDIT: I looked again and saw that you reported that Eset did not create a log.

You need to post a new topic after creating a DDS log per instruction #6 in link below.

Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help - Virus, Trojan, Spyware, and Malware Removal Logs

 

Post the new Topic in the Virus, Trojan, Spyware, and Malware Removal Logs Forum - BleepingComputer.com

 

Once you have posted the new topic, DO NOT bump. Wait for a response which could be several days.
 


Edited by buddy215, 16 January 2015 - 10:58 AM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users