Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

My Windows 8 came loaded with unnecessary programs?


  • Please log in to reply
30 replies to this topic

#1 Dippster

Dippster

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:03 PM

Posted 14 March 2015 - 02:39 PM

I want to delete more of the unnecessary programs but want to know if the following programs are needed or not:

Driver Detective (won't go away)

Presto Page Mgr. (do I need it?)

Scan Soft Omni Page (keeps popping up, is it necessary?

 

Thanks for any help you can give me.

 

HP Pav. Windows 8.1 - running very slow................................



BC AdBot (Login to Remove)

 


#2 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,545 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:07:03 PM

Posted 14 March 2015 - 03:16 PM

Hi Dippster :)

Usually, when you buy a pre-built computer or laptop, it comes with what we call OEM software, which is software bundled by that computer/laptop manufacturer in order to "enhance" your experience on Windows. However, most of these OEM software aren't required and can be uninstalled since all they do is take storage space and ressources. Let's take a look at which ones you can uninstall and which ones you can keep.

3Al62Pm.pngMiniToolBox
  • Download MiniToolBox and move the executable file to your Desktop;
  • Execute MiniToolBox and check the following options:
    • List Installed Programs;
    • List Last 10 Event Viewer Errors;
      Yjt97o0.png
  • Once this is done, click on Go and wait for the scan to complete;
  • Once the scan is complete, a log will open. Please copy/paste the content of the output log in your next reply;

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#3 Dippster

Dippster
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:03 PM

Posted 14 March 2015 - 07:04 PM

MiniToolBox by Farbar Version: 09-03-2015
Ran by Jo (administrator) on 14-03-2015 at 17:20:24
Running from "C:\Users\Jo\Downloads"
Microsoft Windows 8.1 (X64)
Model: HP 15 TouchSmart Notebook PC Manufacturer: Hewlett-Packard
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/14/2015 05:11:54 PM) (Source: Driver Detective) (User: )
Description:

Error: (03/14/2015 03:44:26 PM) (Source: Driver Detective) (User: )
Description:

Error: (03/14/2015 02:48:41 PM) (Source: Driver Detective) (User: )
Description:

Error: (03/14/2015 11:27:18 AM) (Source: Driver Detective) (User: )
Description:

Error: (03/14/2015 11:23:19 AM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event provider ProtectionManagement attempted to register query "select * from MSFT_MpEvent" whose target class "MSFT_MpEvent" in //./root/microsoft/protectionManagement namespace does not exist. The query will be ignored.

Error: (03/14/2015 11:23:19 AM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event provider attempted to register query "select * from MSFT_MpEvent" whose target class "MSFT_MpEvent" in //./root/microsoft/protectionManagement namespace does not exist. The query will be ignored.

Error: (03/14/2015 11:23:07 AM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe_stisvc, version: 6.3.9600.16384, time stamp: 0x5215dfe3
Faulting module name: ntdll.dll, version: 6.3.9600.17668, time stamp: 0x54c850f5
Exception code: 0xc0000008
Fault offset: 0x0000000000092cca
Faulting process id: 0x4dc
Faulting application start time: 0xsvchost.exe_stisvc0
Faulting application path: svchost.exe_stisvc1
Faulting module path: svchost.exe_stisvc2
Report Id: svchost.exe_stisvc3
Faulting package full name: svchost.exe_stisvc4
Faulting package-relative application ID: svchost.exe_stisvc5

Error: (03/14/2015 11:23:05 AM) (Source: Application Error) (User: )
Description: Faulting application name: 019522~1.EXE, version: 7.8.113.0, time stamp: 0x51e05b9a
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x444d432e
Faulting process id: 0x654
Faulting application start time: 0x019522~1.EXE0
Faulting application path: 019522~1.EXE1
Faulting module path: 019522~1.EXE2
Report Id: 019522~1.EXE3
Faulting package full name: 019522~1.EXE4
Faulting package-relative application ID: 019522~1.EXE5

Error: (03/14/2015 10:17:39 AM) (Source: Driver Detective) (User: )
Description:

Error: (03/14/2015 09:50:58 AM) (Source: Application Error) (User: )
Description: Faulting application name: 019522~1.EXE, version: 7.8.113.0, time stamp: 0x51e05b9a
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x444d432e
Faulting process id: 0x64c
Faulting application start time: 0x019522~1.EXE0
Faulting application path: 019522~1.EXE1
Faulting module path: 019522~1.EXE2
Report Id: 019522~1.EXE3
Faulting package full name: 019522~1.EXE4
Faulting package-relative application ID: 019522~1.EXE5


System errors:
=============
Error: (03/14/2015 03:48:40 PM) (Source: Service Control Manager) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 2 time(s).

Error: (03/14/2015 00:22:11 PM) (Source: Service Control Manager) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 1 time(s).

Error: (03/14/2015 11:23:11 AM) (Source: Service Control Manager) (User: )
Description: The Windows Image Acquisition (WIA) service terminated unexpectedly. It has done this 1 time(s).

Error: (03/14/2015 11:23:11 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Application Installer Cleanup (0195221420730968) service terminated unexpectedly. It has done this 1 time(s).

Error: (03/14/2015 11:22:58 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Boot Delay Start Service service failed to start due to the following error:
%%2

Error: (03/14/2015 09:51:06 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Application Installer Cleanup (0195221420730968) service terminated unexpectedly. It has done this 1 time(s).

Error: (03/14/2015 09:50:50 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Boot Delay Start Service service failed to start due to the following error:
%%2

Error: (03/14/2015 09:02:22 AM) (Source: Service Control Manager) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 2 time(s).

Error: (03/14/2015 08:21:05 AM) (Source: Service Control Manager) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 1 time(s).

Error: (03/14/2015 08:09:57 AM) (Source: Service Control Manager) (User: )
Description: The Windows Image Acquisition (WIA) service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (03/14/2015 05:11:54 PM) (Source: Driver Detective)(User: )
Description:

Error: (03/14/2015 03:44:26 PM) (Source: Driver Detective)(User: )
Description:

Error: (03/14/2015 02:48:41 PM) (Source: Driver Detective)(User: )
Description:

Error: (03/14/2015 11:27:18 AM) (Source: Driver Detective)(User: )
Description:

Error: (03/14/2015 11:23:19 AM) (Source: Microsoft-Windows-WMI)(User: NT AUTHORITY)
Description: ProtectionManagementselect * from MSFT_MpEventMSFT_MpEvent//./root/microsoft/protectionManagement

Error: (03/14/2015 11:23:19 AM) (Source: Microsoft-Windows-WMI)(User: NT AUTHORITY)
Description: select * from MSFT_MpEventMSFT_MpEvent//./root/microsoft/protectionManagement

Error: (03/14/2015 11:23:07 AM) (Source: Application Error)(User: )
Description: svchost.exe_stisvc6.3.9600.163845215dfe3ntdll.dll6.3.9600.1766854c850f5c00000080000000000092cca4dc01d05e6ac0aff2fdC:\WINDOWS\system32\svchost.exeC:\WINDOWS\SYSTEM32\ntdll.dll037b3c1f-ca5e-11e4-8273-fc15b4029d05

Error: (03/14/2015 11:23:05 AM) (Source: Application Error)(User: )
Description: 019522~1.EXE7.8.113.051e05b9aunknown0.0.0.000000000c0000005444d432e65401d05e6abc167ef9C:\WINDOWS\TEMP\019522~1.EXEunknown028f2e03-ca5e-11e4-8273-fc15b4029d05

Error: (03/14/2015 10:17:39 AM) (Source: Driver Detective)(User: )
Description:

Error: (03/14/2015 09:50:58 AM) (Source: Application Error)(User: )
Description: 019522~1.EXE7.8.113.051e05b9aunknown0.0.0.000000000c0000005444d432e64c01d05e5ddbbf98dfC:\WINDOWS\TEMP\019522~1.EXEunknown2409972b-ca51-11e4-8272-fc15b4029d05


CodeIntegrity Errors:
===================================
Date: 2015-03-14 12:08:11.326
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-14 12:08:10.741
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-14 12:08:10.102
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-14 12:08:09.586
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-14 12:08:08.899
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-14 12:08:08.383
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-14 12:08:07.836
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-14 12:08:07.321
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-14 12:08:06.774
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-14 12:08:06.274
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.



=========================== Installed Programs ============================
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
AMD Accelerated Video Transcoding (Version: 13.15.100.30925 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{301D3AA1-5DCC-FCFD-622E-3C7CBA87C80F}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden
AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 3.4.4.2 - AppEx Networks)
AMD Start Now (Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon MP Navigator 2.2 (HKLM-x32\...\MP Navigator 2.2) (Version: - )
Canon PowerShot SX50 HS Camera User Guide (HKLM-x32\...\CameraUserGuide-PSSX50HS) (Version: 1.0.0.1 - Canon Inc.)
Canon Utilities CameraWindow DC 8 (HKLM-x32\...\CameraWindowDC) (Version: 8.9.0.4 - Canon Inc.)
Canon Utilities Digital Photo Professional (HKLM-x32\...\Digital Photo Professional) (Version: 3.12.20.0 - Canon Inc.)
Canon Utilities Easy-PhotoPrint (HKLM-x32\...\Easy-PhotoPrint) (Version: - )
Canon Utilities ImageBrowser EX (HKLM-x32\...\ImageBrowser EX) (Version: 1.5.1.7 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.23.47 - Canon Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.5.6902 - CyberLink Corp.) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.7.4023 - CyberLink Corp.)
CyberLink Media Suite 10 (x32 Version: 10.0.7.4023 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.7.4016 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.7.4016 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.2.3418 - CyberLink Corp.)
CyberLink PowerDVD 12 (x32 Version: 12.0.2.3418 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.2.3302 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 5.0.2.3302 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Firefox Packages (HKCU\...\Firefox Packages) (Version: - )
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Customer Experience Enhancements (x32 Version: 6.0.1.8 - Hewlett-Packard) Hidden
HP Documentation (HKLM-x32\...\{71D55970-20A4-43F2-BECD-8F315DEB64F1}) (Version: 1.1.1.0 - Hewlett-Packard)
HP Postscript Converter (Version: 4.5.12202 - Hewlett-Packard) Hidden
HP Recovery Manager (x32 Version: 12.00 - Hewlett-Packard) Hidden
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7127.4628 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.00.57 - Hewlett-Packard)
HP SimplePass (Version: 8.00.57 - Hewlett-Packard) Hidden
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{96D12EC9-720B-45FB-904C-36D6307A1C76}) (Version: 11.51.0048 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{F35EE4BC-95E1-4417-BA36-7C32FF24A59A}) (Version: 1.0.11 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{D72E8F9D-1FB1-4816-93DA-19B4E45604BF}) (Version: 2.3.3 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Inst5675 (Version: 8.00.57 - Softex Inc.) Hidden
Inst5676 (Version: 8.00.57 - Softex Inc.) Hidden
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 36.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 36.0 (x86 en-US)) (Version: 36.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
OEM Application Profile (HKLM-x32\...\{70D5F822-F4C4-33D9-7EEC-2A4AF4EA7BDC}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OmniPage SE 2.0 (HKLM-x32\...\{79D5997E-BF79-48BB-8B41-9BE59C15C2D7}) (Version: 2.00.0004 - ScanSoft, Inc.)
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Pinger (HKLM-x32\...\Pinger 1.4.0.1) (Version: 1.4.0.1 - Pinger Inc.)
Pinger (x32 Version: 1.4.0.1 - Pinger Inc.) Hidden
Presto! PageManager 7.15.11 (HKLM-x32\...\{EA52A1AC-D35D-4D25-8686-9466FE2C5CE5}) (Version: - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.29070 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.20.815.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.00.12.0906 - REALTEK Semiconductor Corp.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.15.0 - Synaptics Incorporated)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

**** End of log ****

#4 Dippster

Dippster
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:03 PM

Posted 14 March 2015 - 07:26 PM

Well, except for almost everything being wrong.........................................

What next?

#5 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,545 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:07:03 PM

Posted 14 March 2015 - 09:49 PM

You can uninstall the following:
  • Firefox Packages;
  • OmniPage SE 2.0;
  • Pinger;
  • Presto! PageManager 7.15.11;
You don't have a lot of HP bloatware, which is good. As for that Driver Detective program, I can see it throwing errors in the Event Viewer, but I don't see it listed as an installed program. Does it have a folder in Program Files or Program Files (x86)?

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#6 Dippster

Dippster
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:03 PM

Posted 15 March 2015 - 06:32 PM

Can't find Program Files (x86) and Driver Detective doesn't show up except on by Task Mgr. Bar.  I'll keep trying.



#7 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,545 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:07:03 PM

Posted 15 March 2015 - 06:38 PM

You mean, it shows as a running process? If so, right click on it and select Open File Location then tell me from where the executable runs.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#8 Dippster

Dippster
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:03 PM

Posted 15 March 2015 - 07:05 PM

Here is the document:

See the end of this message for details on invoking
just-in-time (JIT) debugging instead of this dialog box.

************** Exception Text **************
System.NullReferenceException: Object reference not set to an instance of an object.
at DriversHQ.DriverDetective.Client.g.b6()
at DriversHQ.DriverDetective.Client.g.al()
at DriversHQ.DriverDetective.Client.g.d1()
at DriversHQ.DriverDetective.Client.g.a(ApplicationModes A_0)
at DriversHQ.DriverDetective.Client.g.c(ApplicationModes A_0)
at DriversHQ.DriverDetective.Client.g.f(Object A_0, EventArgs A_1)
at System.Windows.Forms.ToolStripItem.RaiseEvent(Object key, EventArgs e)
at System.Windows.Forms.ToolStripMenuItem.OnClick(EventArgs e)
at System.Windows.Forms.ToolStripItem.HandleClick(EventArgs e)
at System.Windows.Forms.ToolStripItem.HandleMouseUp(MouseEventArgs e)
at System.Windows.Forms.ToolStrip.OnMouseUp(MouseEventArgs mea)
at System.Windows.Forms.ToolStripDropDown.OnMouseUp(MouseEventArgs mea)
at System.Windows.Forms.Control.WmMouseUp(Message& m, MouseButtons button, Int32 clicks)
at System.Windows.Forms.Control.WndProc(Message& m)
at System.Windows.Forms.ToolStrip.WndProc(Message& m)
at System.Windows.Forms.ToolStripDropDown.WndProc(Message& m)
at System.Windows.Forms.Control.ControlNativeWindow.WndProc(Message& m)
at System.Windows.Forms.NativeWindow.Callback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)


************** Loaded Assemblies **************
mscorlib
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/Windows/Microsoft.NET/Framework64/v2.0.50727/mscorlib.dll
----------------------------------------
Agent
Assembly Version: 9.1.5.5
Win32 Version: 9.1.5.5
CodeBase: file:///C:/Program%20Files%20(x86)/Driver%20Support/DriverSupport.exe
----------------------------------------
System.Runtime.Remoting
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.8012 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Runtime.Remoting/2.0.0.0__b77a5c561934e089/System.Runtime.Remoting.dll
----------------------------------------
System
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
System.Windows.Forms
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.8008 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Windows.Forms/2.0.0.0__b77a5c561934e089/System.Windows.Forms.dll
----------------------------------------
System.Drawing
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.8007 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Drawing/2.0.0.0__b03f5f7f11d50a3a/System.Drawing.dll
----------------------------------------
ExceptionLogging
Assembly Version: 4.0.0.41
Win32 Version: 4.0.0.41
CodeBase: file:///C:/Program%20Files%20(x86)/Driver%20Support/ExceptionLogging.DLL
----------------------------------------
System.Xml
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Xml/2.0.0.0__b77a5c561934e089/System.Xml.dll
----------------------------------------
Common
Assembly Version: 1.0.5464.29611
Win32 Version: 1.0.5464.29611
CodeBase: file:///C:/Program%20Files%20(x86)/Driver%20Support/Common.DLL
----------------------------------------
Agent.Common
Assembly Version: 9.1.5.5
Win32 Version: 9.1.5.5
CodeBase: file:///C:/Program%20Files%20(x86)/Driver%20Support/Agent.Common.DLL
----------------------------------------
Agent.Communication
Assembly Version: 9.1.5.5
Win32 Version: 9.1.5.5
CodeBase: file:///C:/Program%20Files%20(x86)/Driver%20Support/Agent.Communication.DLL
----------------------------------------
System.Configuration
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.8007 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Configuration/2.0.0.0__b03f5f7f11d50a3a/System.Configuration.dll
----------------------------------------
ttjanbye
Assembly Version: 9.1.5.5
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
System.Web.Services
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.7905 (win9rel.050727-7900)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Web.Services/2.0.0.0__b03f5f7f11d50a3a/System.Web.Services.dll
----------------------------------------
System.Data
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.8007 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_64/System.Data/2.0.0.0__b77a5c561934e089/System.Data.dll
----------------------------------------
Agent.Communication.XmlSerializers
Assembly Version: 9.1.5.5
Win32 Version: 9.1.5.5
CodeBase: file:///C:/Program%20Files%20(x86)/Driver%20Support/Agent.Communication.XmlSerializers.DLL
----------------------------------------
liksobz7
Assembly Version: 9.1.5.5
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
Microsoft.Win32.TaskScheduler
Assembly Version: 1.6.4219.15519
Win32 Version: 1.6.3.0
CodeBase: file:///C:/Program%20Files%20(x86)/Driver%20Support/Microsoft.Win32.TaskScheduler.DLL
----------------------------------------
a-fj-ggt
Assembly Version: 9.1.5.5
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
System.Management
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.8007 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System.Management/2.0.0.0__b03f5f7f11d50a3a/System.Management.dll
----------------------------------------
Agent.Common.XmlSerializers
Assembly Version: 9.1.5.5
Win32 Version: 9.1.5.5
CodeBase: file:///C:/Program%20Files%20(x86)/Driver%20Support/Agent.Common.XmlSerializers.DLL
----------------------------------------
8n9wszr1
Assembly Version: 9.1.5.5
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
odilvw70
Assembly Version: 9.1.5.5
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
nx9kvrmh
Assembly Version: 9.1.5.5
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
npfc6kto
Assembly Version: 9.1.5.5
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
tzmyhpbt
Assembly Version: 9.1.5.5
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
iock37su
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
f1dhh1gw
Assembly Version: 9.1.5.5
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
RuleEngine
Assembly Version: 8.2.0.30
Win32 Version: 8.2.0.30
CodeBase: file:///C:/Program%20Files%20(x86)/Driver%20Support/RuleEngine.DLL
----------------------------------------
RuleEngine.XmlSerializers
Assembly Version: 8.2.0.30
Win32 Version: 8.2.0.30
CodeBase: file:///C:/Program%20Files%20(x86)/Driver%20Support/RuleEngine.XmlSerializers.DLL
----------------------------------------
qon3pnie
Assembly Version: 8.2.0.30
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
tiv0nux_
Assembly Version: 9.1.5.5
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
d3hezcpj
Assembly Version: 8.2.0.30
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
oyruukyr
Assembly Version: 8.2.0.30
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
xytg2cac
Assembly Version: 8.2.0.30
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
lih8ecmz
Assembly Version: 8.2.0.30
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
39n2nuzh
Assembly Version: 8.2.0.30
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
pim1orlc
Assembly Version: 8.2.0.30
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
c0aari6g
Assembly Version: 8.2.0.30
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
dplfpc6e
Assembly Version: 8.2.0.30
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
c_1_5owu
Assembly Version: 8.2.0.30
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
phkns3jd
Assembly Version: 8.2.0.30
Win32 Version: 2.0.50727.8009 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/System/2.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
Microsoft.ApplicationBlocks.Updater
Assembly Version: 2.1.0.0
Win32 Version: 2.1.0.0
CodeBase: file:///C:/Program%20Files%20(x86)/Driver%20Support/Microsoft.ApplicationBlocks.Updater.DLL
----------------------------------------
Microsoft.Practices.EnterpriseLibrary.Common
Assembly Version: 2.0.0.0
Win32 Version: 2.0.0.0
CodeBase: file:///C:/Program%20Files%20(x86)/Driver%20Support/Microsoft.Practices.EnterpriseLibrary.Common.DLL
----------------------------------------
Accessibility
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.8007 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_MSIL/Accessibility/2.0.0.0__b03f5f7f11d50a3a/Accessibility.dll
----------------------------------------
CustomMarshalers
Assembly Version: 2.0.0.0
Win32 Version: 2.0.50727.8007 (FX35W81RTMGDR.050727-8000)
CodeBase: file:///C:/WINDOWS/assembly/GAC_64/CustomMarshalers/2.0.0.0__b03f5f7f11d50a3a/CustomMarshalers.dll
----------------------------------------

************** JIT Debugging **************
To enable just-in-time (JIT) debugging, the .config file for this
application or computer (machine.config) must have the
jitDebugging value set in the system.windows.forms section.
The application must also be compiled with debugging
enabled.

For example:

<configuration>
<system.windows.forms jitDebugging="true" />
</configuration>

When JIT debugging is enabled, any unhandled exception
will be sent to the JIT debugger registered on the computer
rather than be handled by this dialog box.

#9 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,545 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:07:03 PM

Posted 15 March 2015 - 07:09 PM

So it's attempting to run, but it crashes. If you do a research for "driverdetective" or simply "detective" on your system, what files/folders comes up?

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#10 Dippster

Dippster
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:03 PM

Posted 15 March 2015 - 07:19 PM

It wants me to pay $29.95 and won't go away.  Still sitting on my task bar.   I ran ccleaner, malwarebytes..........................



#11 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,545 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:07:03 PM

Posted 15 March 2015 - 07:22 PM

And when you execute it, the message you copy/pasted here appears?

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#12 Dippster

Dippster
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:03 PM

Posted 15 March 2015 - 07:27 PM

I'm sorry I guess I'm not much help to you Helping Me!!!

 

It is more than willing to scan for me and says there are 2 drivers to update.  I think it comes directly from the HP package of horrors.  Maybe if I delete HP Help that will get rid of it.



#13 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,545 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:07:03 PM

Posted 15 March 2015 - 07:33 PM

Alright, open the program and let it run. From there, open the Task Manager and go under Details. Is there any process with the word driver or detective in it?

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#14 Dippster

Dippster
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:03 PM

Posted 16 March 2015 - 06:00 PM

Hi Aura,

The Driver Detective comes from Program:  Driver Support by PC Drivers Headquarters

 

c:ProgramFiles(x86)/DriverSupport/Driver Support.exe

 

Then it shows the block HP/Compaq Notebook

etc.

HP Envy Touch Smart

Windows 8 64 bit

 

Driver Detective.

 

Should I delete Driver Support?

 

Thanks.

Dippster



#15 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,545 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:07:03 PM

Posted 16 March 2015 - 06:07 PM

Can you tell me what files are present in the DriverSupport folder? Any setup.exe, uninstall.msi, uninstall.exe, etc?

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users