Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Unable to remove your.tvlink and windows7.exe BCM


  • Please log in to reply
9 replies to this topic

#1 lebeatnik

lebeatnik

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 21 September 2015 - 03:47 PM

its been a while now my mother used the pc on a website called zap2it.com looking for the cable tv schedule. She clamed she installed nothing said all she did was try to register for the site so IDK how she got this or how I might have.

 

I am running Windows 7

Most affected program is my browsers both firefox and internet explorer

I have malwarebytes antimalware and eset Nod 32

 

daily i will open my browser and its back i cant seam to get rif of or find the file creating this. I use Malwarebytes antimalware so it finds

your tvlink.chprst

google.xml (replaces all my search engine plugins and puts this thier)

windows7.exe BCM

 

I have even used AFW cleaner and it removes everything all the firefox prefrences

 

used cc cleaner for registry

 

I even tried a system restore to before she installed this

 

Right now i am at a complete loss as what to do MWBAM cant stop this and eset nod32 finds nothing........ any help is greatly appreciated

 

Below is a link to a screenshot of the mbam log i am greeted with daily

 

this is a sharing lik to my google drive the only way i could quickly post a screen shot

https://drive.google.com/file/d/0BxzorqLGXnOVVjNPbC1NekU4UHc/view?usp=sharing


Edited by lebeatnik, 21 September 2015 - 04:06 PM.


BC AdBot (Login to Remove)

 


#2 lebeatnik

lebeatnik
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 21 September 2015 - 07:19 PM

i am currently running bitdefender as a trial and is 70% done with a count currently of 33 unresolved i will updadate asap i hope this will help as if it does i found my new malware/virus solution as if it does resolve this without your help i will have to start recomending this app for everyonw as MBAM cant do it in conjuntiuon with eset which i have relied on for years i might have to change but ill know for shore after a reboot

 

If no one is answering because i have not given enough data to look at plese ask me what you would like to know i want to fix this i am just at a loss as of what to do MBAM always wors for malware and Eset Nod 32 has always taken care of such things ad bit coin miners but ill be a active convert is bitdefender can help me otherwise i need your help

 

I am sorry for multiple posts right now my browser is not happy so its the best i can do trying to edit made me crash the browser i TYIA for any help even if its to tell me i need to post something or i did something wrong on the forums

The site doesnt offer image hosting so my link is to my google drive it works for me when i click it to show my MBAM log if it helps anything i can do i will thanks



#3 buddy215

buddy215

  • Moderator
  • 13,196 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:08:19 PM

Posted 22 September 2015 - 11:29 AM

The MBAM log doesn't show you allowed MBAM to quarantine/ remove the PUPs.

 

Run the two scans below and post the results along with a MBAM log showing the PUPS have been quarantined/ removed.

 

Download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

 

Download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#4 lebeatnik

lebeatnik
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 22 September 2015 - 06:47 PM

Thank you for your help although right now after i installed Bitdefender it has been acting better but i believe it cant find something as it still finds puks on each startup. I am no longer affected by anything i can notice but bitdefender on startup is never happy and as i said still goes wild each starup, so it seams to be something bitdefender cant handle under normal circumstances. Nor can any other app I have tried.

 

Now That Malwarebytes anti malware is not longer finding anything as bitdefender is doing its thing automatically at startup, What should i run and what logs are important I downloaded both adwcleaner and junkware removal tool, I will use them an post like you said but the MBAM log shows nothing now.

 

Thank you and i apreciate you helping me out with this



#5 lebeatnik

lebeatnik
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 22 September 2015 - 07:03 PM

here are my logs things have quieted down and i dont notice much going on bitdefender seames to have been my saving grace unless im still infected by something hopefully "THESE LOGS ARE CLEAN!"

# AdwCleaner v5.008 - Logfile created 22/09/2015 at 16:49:49
# Updated 18/09/2015 by Xplode
# Database : 2015-09-22.3 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x64)
# Username : User - DESKTOP
# Running from : D:\Users\User\Desktop\malware removal

\adwcleaner_5.008.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****

[x] [C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles

\p83322sz.default\prefs.js] [Preference] Not Deleted : user_pref

("browser.uiCustomization.state", "{\"placements\":{\"PanelUI-contents

\":[\"edit-controls\",\"zoom-controls\",\"print-button\",\"history-

panelmenu\",\"preferences-button\",\"add-ons-button\",[...]

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [961 bytes] 

##########

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.3 (09.21.2015:1)
OS: Windows 7 Professional x64
Ran by User on Tue 09/22/2015 at 16:56:03.53
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully deleted: [Service] bdsandbox [Reboot required]



~~~ Tasks



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\DESKTOP



~~~ Files

Successfully deleted: [File] C:\Program Files (x86)\GUM6F.tmp
Successfully deleted: [File] C:\ProgramData\1442870449.bdinstall.bin



~~~ Folders



~~~ FireFox

Successfully deleted: [File] C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\p83322sz.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
Successfully deleted the following from C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\p83322sz.default\prefs.js

user_pref(browser.uiCustomization.state, {\placements\:{\PanelUI-contents\:[\edit-controls\,\zoom-controls\,\print-button\,\history-panelmenu\,\preferences-but
user_pref(extensions.wips.stats.last_false_url, startpage.com);
Emptied folder: C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\p83322sz.default\minidumps [2 files]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 09/22/2015 at 16:58:56.47
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#6 buddy215

buddy215

  • Moderator
  • 13,196 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:08:19 PM

Posted 22 September 2015 - 07:39 PM

Run a scan using Eset Online Scanner. This scan will take more than hour. Scan time will depend on the computer's resources and volume of files scanned. Plan accordingly.

 

Hold down Control and click on this link to open ESET OnlineScan in a new window. (Eset can take more than an hour to run so plan accordingly)

  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#7 lebeatnik

lebeatnik
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 22 September 2015 - 07:53 PM

i just finished a mwbam scan and here is the scan log i was told by MBAM to restart to finish cleaning these files I am doing so now and once i boot back up i will do as stated in your last post thank you i hope im getting this closer to being resolved things are different right now as im not being bothered but something is going on thanks for sticking with me If thier is any way after this is resolved to help you or this site i want to find out how as this is the most help i have ever recieved without a bill first, in all im restarting right now 

TY SO Much

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 9/22/2015
Scan Time: 5:05 PM
Logfile: 
Administrator: Yes

Version: 2.1.8.1057
Malware Database: v2015.09.22.07
Rootkit Database: v2015.09.22.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: User

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 374745
Time Elapsed: 17 min, 51 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 2
PUP.RiskWare.Patcher, C:\Windows\Temp\tmp0000168b\tmp00006a27, Quarantined, [8c63c46ef09b47ef832de5c6639ed828], 
PUP.RiskWare.Patcher, C:\Windows\Temp\tmp0000168b\tmp00006a2d, Quarantined, [18d74ce63f4c1c1acae6efbc6f9212ee], 

Physical Sectors: 0
(No malicious items detected)


(end)

Edited by lebeatnik, 22 September 2015 - 07:57 PM.


#8 buddy215

buddy215

  • Moderator
  • 13,196 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:08:19 PM

Posted 22 September 2015 - 08:40 PM

After Eset fnishes its scan and you have posted the results if it found anything to post, do the below as often something shows up in these lists that need attention.

 

Please post the THREE lists using CCleaner.

Open CCleaner and click on Tools. Choose Startups. On that page you will see a list of Windows Startups and at the top tabs for each browser and Scheduled Tasks.

At the bottom right of that page you will see a button when clicked will allow you to Copy and Paste the list of Windows Startups and Scheduled Tasks into your next

post. Please do that.

 

Open CCleaner and click on Tools. Choose Uninstall. On that page you will see a list of programs installed on your computer and at the bottom right of that page you

will see a button when clicked will allow you to Copy and Paste that list in your next post. Please do that.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#9 lebeatnik

lebeatnik
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 22 September 2015 - 09:23 PM

I ran the eset online scan over night i botched the logs i closed it it was late and i forgot to get the log althgough it did find les than ten files all were in the temp directory one .bat file the others no extensions and all temp file named these were all removed.

 

Now i just finished with my cc cleaner scan and here are the logs

 

Intall Log:

@BIOS	GIGABYTE	5/17/2015		2.11
AMD Catalyst Install Manager	Advanced Micro Devices, Inc.	9/20/2015	33.5 MB	8.0.916.0
Apple Application Support (32-bit)	Apple Inc.	8/14/2015	96.0 MB	3.2
Apple Application Support (64-bit)	Apple Inc.	8/14/2015	109 MB	3.2
Apple Mobile Device Support	Apple Inc.	8/14/2015	27.9 MB	8.2.1.3
Apple Software Update	Apple Inc.	5/18/2015	2.38 MB	2.1.3.127
ARK: Survival Evolved	Studio Wildcard	8/21/2015		
AutoGreen B10.1021.1	GIGABYTE	5/17/2015	4.77 MB	1.00.0000
Battle.net	Blizzard Entertainment	6/12/2015		
Big Pharma	Positech Games	6/25/2015	964 MB	
Bitdefender Total Security 2015	Bitdefender	9/21/2015		18.20.0.1429
Bonjour	Apple Inc.	5/18/2015	2.00 MB	3.0.0.10
Box Sync	Box, Inc.	6/24/2015	24.0 MB	4.0.6442.0
calibre	Kovid Goyal	7/23/2015	170 MB	2.32.1
Canon IJ Scan Utility	Canon Inc.	5/27/2015		1.1.10.15
Canon MG2900 series MP Drivers	Canon Inc.	5/27/2015		1.00
Canon MG2900 series User Registration	‭Canon Inc.	5/27/2015		
Canon My Printer	Canon Inc.	5/27/2015		3.2.1
CCleaner	Piriform	6/18/2015		5.06
ComicRack v0.9.176	cYo Soft	5/29/2015		v0.9.176
CPUID CPU-Z 1.73		8/13/2015	3.85 MB	
CPUID HWMonitor 1.28		8/13/2015	2.89 MB	
Defraggler	Piriform	6/15/2015		2.19
Dolby Home Theater v4	Dolby Laboratories Inc	5/17/2015	28.0 MB	7.2.7000.7
DYMO Label v.8	Sanford, L.P.	9/22/2015		8.5.1.1816
DYMO LabelWriter Drivers	Sanford L.P.	9/22/2015	2.52 MB	8.3.0.443
Easy Tune 6 B11.0427.1	GIGABYTE	5/17/2015	33.0 MB	1.00.0000
EasySaver B9.1214.1	Gigabyte	5/17/2015		1.00.0000
ESET NOD32 Antivirus	ESET, spol s r. o.	5/17/2015	95.6 MB	8.0.312.0
Fraps		5/19/2015		
Heroes of the Storm	Blizzard Entertainment	6/17/2015		
iCloud	Apple Inc.	8/14/2015	91.6 MB	4.1.1.53
iTunes	Apple Inc.	8/14/2015	238 MB	12.2.2.25
LastPass (uninstall only)	LastPass	6/1/2015		
Malwarebytes Anti-Malware version 2.1.8.1057	Malwarebytes Corporation	8/27/2015	64.5 MB	2.1.8.1057
Marvel Heroes Game	Gazillion Entertainment	5/17/2015	17.6 GB	1.0
Microsoft .NET Framework 4.5.2	Microsoft Corporation	7/16/2015	38.8 MB	4.5.51209
Microsoft LifeCam	Microsoft Corporation	5/29/2015	60.0 MB	3.22.270.0
Microsoft Silverlight	Microsoft Corporation	3/1/2011	14.9 MB	3.0.40624.0
Microsoft SQL Server 2005 Compact Edition [ENU]	Microsoft Corporation	3/1/2011	1.72 MB	3.1.0000
Microsoft Sync Framework Runtime Native v1.0 (x86)	Microsoft Corporation	3/1/2011	625 KB	1.0.1215.0
Microsoft Sync Framework Services Native v1.0 (x86)	Microsoft Corporation	3/1/2011	1.44 MB	1.0.1215.0
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001	Microsoft Corporation	6/17/2015	298 KB	8.0.61001
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161	Microsoft Corporation	6/18/2015	787 KB	9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17	Microsoft Corporation	5/17/2015	596 KB	9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161	Microsoft Corporation	5/18/2015	600 KB	9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219	Microsoft Corporation	8/22/2015	19.2 MB	10.0.40219
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219	Microsoft Corporation	8/21/2015	14.9 MB	10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030	Microsoft Corporation	8/21/2015	20.5 MB	11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030	Microsoft Corporation	8/21/2015	17.3 MB	11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501	Microsoft Corporation	8/21/2015	20.5 MB	12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501	Microsoft Corporation	8/21/2015	17.1 MB	12.0.30501.0
Microsoft Xbox 360 Accessories 1.2	Microsoft	7/6/2015	7.78 MB	1.20.146.0	
Mozilla Firefox 39.0 (x86 en-US)	Mozilla	7/10/2015	84.9 MB	39.0
Mozilla Maintenance Service	Mozilla	5/27/2015	246 KB	38.0.1
MSI Afterburner 4.1.1	MSI Co., LTD	7/20/2015		4.1.1
Nitro Pro 9	Nitro	5/25/2015	251 MB	9.5.1.5
NVIDIA PhysX	NVIDIA Corporation	5/17/2015	116 MB	9.13.1220
ON_OFF Charge B11.0110.1	GIGABYTE	5/17/2015		1.00.0001
PAYDAY 2 version 1.24.1 (Update 52.1)	DigitalZone	6/25/2015	16.5 GB	1.24.1 (Update 52.1)
PowerISO	Power Software Ltd	5/17/2015		6.2
qBittorrent 3.2.3	The qBittorrent project	8/14/2015	49.9 MB	3.2.3
QuickTime 7	Apple Inc.	8/14/2015	70.3 MB	7.77.80.95
Raptr		5/17/2015		
Razer Synapse	Razer Inc.	5/30/2015	18.8 MB	1.18.21.26027
Realtek Ethernet Controller Driver	Realtek	5/17/2015		7.38.113.2011
Realtek HDMI Audio Driver for ATI	Realtek Semiconductor Corp.	5/17/2015		6.0.1.6409
Realtek High Definition Audio Driver	Realtek Semiconductor Corp.	5/17/2015		6.0.1.6433
Revo Uninstaller Pro 3.1.2	VS Revo Group, Ltd.	5/17/2015	35.5 MB	3.1.2
Skype™ 7.8	Skype Technologies S.A.	9/1/2015	71.1 MB	7.8.102
Steam	Valve Corporation	8/21/2015		2.10.91.91
Tunngle	Tunngle.net GmbH	6/17/2015	12.7 MB	5.2
UltraMon	Realtime Soft Ltd	5/17/2015	6.18 MB	3.1.0
Unity Web Player	Unity Technologies ApS	7/2/2015	12.0 MB	5.0.1f1
VLC media player	VideoLAN	5/18/2015		2.2.1
Winamp	Nullsoft, Inc	5/19/2015		5.666 
Windows 7 USB/DVD Download Tool	Microsoft Corporation	9/22/2015	2.71 MB	1.0.30
Windows Live Essentials	Microsoft Corporation	3/1/2011		14.0.8117.0416
Windows Live Sign-in Assistant	Microsoft Corporation	3/1/2011	1.93 MB	5.000.818.5
Windows Live Sync	Microsoft Corporation	3/1/2011	2.78 MB	14.0.8117.416
Windows Live Upload Tool	Microsoft Corporation	3/1/2011	224 KB	14.0.8014.1029
WinRAR 5.10 (64-bit)	win.rar GmbH	5/17/2015		5.10.0

Startup log:

Yes	HKCU:Run	Bitdefender Wallet Agent	Bitdefender	"C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe"
Yes	HKCU:Run	CCleaner Monitoring	Piriform Ltd	"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
No	HKCU:Run	CCleaner Monitoring	Piriform Ltd	"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Yes	HKCU:Run	DymoQuickPrint	Sanford, L.P.	"C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe" /startup
No	HKCU:Run	Hide.me	eVenture Limited	C:\Program Files (x86)\hide.me VPN\Hide.me.exe
No	HKCU:Run	PeerBlock		D:\Program Files\PeerBlock\peerblock.exe
Yes	HKCU:Run	Steam	Valve Corporation	"D:\Program Files (x86)\Steam\steam.exe" -silent
No	HKCU:Run	Steam	Valve Corporation	"D:\Program Files (x86)\SteamSteamer\steam.exe" -silent
Yes	HKLM:Run	Bdagent	Bitdefender	"C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe"
No	HKLM:Run	BoxSync	Box, Inc.	"C:\Program Files\Box\Box Sync\BoxSync.exe" -m
Yes	HKLM:Run	DLSService		"C:\Program Files (x86)\DYMO\DYMO Label Software\DLSService.exe"
Yes	HKLM:Run	Dolby Home Theater v4	Dolby Laboratories Inc.	"C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
Yes	HKLM:Run	egui	ESET	"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
Yes	HKLM:Run	iTunesHelper	Apple Inc.	"D:\Program Files\iTunes\iTunesHelper.exe"
Yes	HKLM:Run	LifeCam	Microsoft Corporation	"C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
Yes	HKLM:Run	PWRISOVM.EXE	Power Software Ltd	C:\Program Files\PowerISO\PWRISOVM.EXE -startup
Yes	HKLM:Run	QuickTime Task	Apple Inc.	"C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
Yes	HKLM:Run	Raptr	Raptr, Inc	"C:\Program Files (x86)\Raptr\raptrstub.exe" --startup
Yes	HKLM:Run	Razer Synapse	Razer Inc.	"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
Yes	HKLM:Run	RtHDVBg_Dolby	Realtek Semiconductor	C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4 
Yes	HKLM:Run	RTHDVCPL	Realtek Semiconductor	C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
Yes	HKLM:Run	StartCCC	Advanced Micro Devices, Inc.	"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
Yes	HKLM:Run	XboxStat	Microsoft Corporation	"C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
No	Startup Common	Install LastPass FF RunOnce.lnk	LastPass	C:\PROGRA~2\COMMON~1\LPUNIN~1.EXE -q -name=LastPass -ffuuid support@lastpass.com
No	Startup Common	Install LastPass IE RunOnce.lnk	LastPass	C:\PROGRA~2\COMMON~1\LPUNIN~1.EXE -p -name=LastPass -ffuuid support@lastpass.com
Yes	Startup Common	UltraMon.lnk		C:\Windows\Installer\{537056B7-32A4-4408-9B54-0341963C7C9C}\IcoUltraMon.ico
No	Startup User	UltraMon.lnk		C:\Windows\Installer\{537056B7-32A4-4408-9B54-0341963C7C9C}\IcoUltraMon.ico

Scheduled Log:

Yes	Task	ActivateWindowsSearch	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch	\Microsoft\Windows\Media Center
No	Task	AD RMS Rights Policy Template Management (Automated)			\Microsoft\Windows\Active Directory Rights Management Services Client
Yes	Task	AD RMS Rights Policy Template Management (Manual)			\Microsoft\Windows\Active Directory Rights Management Services Client
Yes	Task	AitAgent		aitagent	\Microsoft\Windows\Application Experience
Yes	Task	AnalyzeSystem	Microsoft Corporation	%SystemRoot%\System32\powercfg.exe -energy -auto	\Microsoft\Windows\Power Efficiency Diagnostics
Yes	Task	AppleSoftwareUpdate	Apple Inc.	C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe -task	\Apple
Yes	Task	arp_flush	eVenture Limited	C:\Program Files (x86)\hide.me VPN\FlushArpCache.exe	\
Yes	Task	AutomaticBackup	Microsoft Corporation	%systemroot%\system32\rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup	\Microsoft\Windows\WindowsBackup
No	Task	AutoWake			\Microsoft\Windows\SideShow
No	Task	Background Synchronization			\Microsoft\Windows\Offline Files
Yes	Task	Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8	Bitdefender	C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe	\
Yes	Task	CacheTask			\Microsoft\Windows\Wininet
No	Task	Calibration Loader			\Microsoft\Windows\WindowsColorSystem
Yes	Task	CCleanerSkipUAC	Piriform Ltd	"C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)	\
No	Task	ConfigNotification	Microsoft Corporation	%systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION	\Microsoft\Windows\WindowsBackup
Yes	Task	ConfigureInternetTimeService	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService	\Microsoft\Windows\Media Center
Yes	Task	Consolidator	Microsoft Corporation	%SystemRoot%\System32\wsqmcons.exe	\Microsoft\Windows\Customer Experience Improvement Program
Yes	Task	DispatchRecoveryTasks	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)	\Microsoft\Windows\Media Center
Yes	Task	ehDRMInit	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /DRMInit	\Microsoft\Windows\Media Center
Yes	Task	GadgetManager			\Microsoft\Windows\SideShow
Yes	Task	GatherNetworkInfo		%windir%\system32\gatherNetworkInfo.vbs	\Microsoft\Windows\NetTrace
No	Task	HiveUploadTask			\Microsoft\Windows\User Profile Service
Yes	Task	HotStart			\Microsoft\Windows\MobilePC
Yes	Task	InstallPlayReady	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)	\Microsoft\Windows\Media Center
Yes	Task	IpAddressConflict1	Microsoft Corporation	%windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem	\Microsoft\Windows\Tcpip
Yes	Task	IpAddressConflict2	Microsoft Corporation	%windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem	\Microsoft\Windows\Tcpip
No	Task	Logon Synchronization			\Microsoft\Windows\Offline Files
Yes	Task	LPRemove	Microsoft Corporation	%windir%\system32\lpremove.exe	\Microsoft\Windows\MUI
Yes	Task	mcupdate		%SystemRoot%\ehome\mcupdate $(Arg0)	\Microsoft\Windows\Media Center
Yes	Task	MediaCenterRecoveryTask	Microsoft Corporation	%SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask	\Microsoft\Windows\Media Center
Yes	Task	Microsoft Compatibility Appraiser	Microsoft Corporation	%windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly	\Microsoft\Windows\Application Experience
Yes	Task	MobilityManager			\Microsoft\Windows\Ras
Yes	Task	MSIAfterburner	MICRO-STAR INTERNATIONAL CO., LTD.	C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s	\
Yes	Task	Notifications	Microsoft Corporation	%windir%\System32\LocationNotifications.exe	\Microsoft\Windows\Location
Yes	Task	ObjectStoreRecoveryTask	Microsoft Corporation	%SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask	\Microsoft\Windows\Media Center
Yes	Task	OCURActivate	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /OCURActivate	\Microsoft\Windows\Media Center
Yes	Task	OCURDiscovery	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)	\Microsoft\Windows\Media Center
Yes	Task	PBDADiscovery	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery	\Microsoft\Windows\Media Center
Yes	Task	PBDADiscoveryW1	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery	\Microsoft\Windows\Media Center
Yes	Task	PBDADiscoveryW2	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery	\Microsoft\Windows\Media Center
No	Task	PeriodicScanRetry	Microsoft Corporation	%windir%\ehome\MCUpdate.exe -pscn 0	\Microsoft\Windows\Media Center
No	Task	PolicyConverter	Microsoft Corporation	%windir%\system32\appidpolicyconverter.exe	\Microsoft\Windows\AppID
Yes	Task	ProgramDataUpdater	Microsoft Corporation	%windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate	\Microsoft\Windows\Application Experience
Yes	Task	Proxy	Microsoft Corporation	%windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations	\Microsoft\Windows\Autochk
Yes	Task	PvrRecoveryTask	Microsoft Corporation	%SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask	\Microsoft\Windows\Media Center
Yes	Task	PvrScheduleTask	Microsoft Corporation	%SystemRoot%\ehome\mcupdate.exe -PvrSchedule	\Microsoft\Windows\Media Center
Yes	Task	QueueReporting	Microsoft Corporation	%windir%\system32\wermgr.exe -queuereporting	\Microsoft\Windows\Windows Error Reporting
No	Task	RecordingRestart		%SystemRoot%\ehome\ehrec /RestartRecording	\Microsoft\Windows\Media Center
Yes	Task	RegisterSearch	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)	\Microsoft\Windows\Media Center
Yes	Task	ReindexSearchRoot	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot	\Microsoft\Windows\Media Center
Yes	Task	ScheduledDefrag	Microsoft Corp.	%windir%\system32\defrag.exe -c	\Microsoft\Windows\Defrag
No	Task	SessionAgent			\Microsoft\Windows\SideShow
Yes	Task	SqlLiteRecoveryTask	Microsoft Corporation	%SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask	\Microsoft\Windows\Media Center
Yes	Task	SR	Microsoft Corporation	%windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation	\Microsoft\Windows\SystemRestore
Yes	Task	SynchronizeTime	Microsoft Corporation	%windir%\system32\sc.exe start w32time task_started	\Microsoft\Windows\Time Synchronization
No	Task	SystemDataProviders			\Microsoft\Windows\SideShow
Yes	Task	SystemSoundsService			\Microsoft\Windows\Multimedia
Yes	Task	SystemTask			\Microsoft\Windows\CertificateServicesClient
Yes	Task	UninstallDeviceTask	Microsoft Corporation	BthUdTask.exe $(Arg0)	\Microsoft\Windows\Bluetooth
Yes	Task	UpdateLibrary		"%ProgramFiles%\Windows Media Player\wmpnscfg.exe"	\Microsoft\Windows\Windows Media Sharing
Yes	Task	UpdateRecordPath	Microsoft Corporation	%SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)	\Microsoft\Windows\Media Center
Yes	Task	UPnPHostConfig	Microsoft Corporation	sc.exe config upnphost start= auto	\Microsoft\Windows\UPnP
Yes	Task	UserTask			\Microsoft\Windows\CertificateServicesClient
No	Task	UserTask-Roam			\Microsoft\Windows\CertificateServicesClient
No	Task	VerifiedPublisherCertStoreCheck	Microsoft Corporation	%windir%\system32\appidcertstorecheck.exe	\Microsoft\Windows\AppID
Yes	Task	Windows Backup Monitor	Microsoft Corporation	%systemroot%\system32\sdclt.exe /CHECKSKIPPED	\Microsoft\Windows\WindowsBackup
Yes	Task	WinSAT			\Microsoft\Windows\Maintenance
Yes	Task	{7FBAE6A5-EC92-4A1D-8703-3AD991C67F7D}	Microsoft Corporation	C:\Windows\system32\pcalua.exe -a D:\Users\User\Downloads\i2pinstall_0.9.21_windows.exe -d D:\Users\User\Downloads	\


Edited by lebeatnik, 23 September 2015 - 01:24 PM.


#10 buddy215

buddy215

  • Moderator
  • 13,196 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:08:19 PM

Posted 23 September 2015 - 09:14 PM

Is the computer performing up to par....if so....I'd say you are good to go.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users