Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Ipadian malware, possible virus.


  • Please log in to reply
10 replies to this topic

#1 Sammi9834

Sammi9834

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:34 PM

Posted 26 November 2015 - 03:50 AM

Hi, my husband recently downloaded some ios "emulator" software called ipadian. after installing this the mcAfee antivirus started going haywire, turning on and off and picking up PUP in scans. After trying to fix our computer his way I am now here as our computer has been very slow, google chrome refusing to open, volume on the task bar won't open so I can't adjust without the keyboard, can't right click in file explorer without it crashing completely, and needless to say I don't think all of the traces of whatever it had was resolved properly. He used malware bytes. super anti spyware and hitman pro as far as I know to try to remove it. I am currently taking care of my two small children so I will try my best to check back as often as possible to continue my computers healing process, so thank you in advance for the reply.



BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,501 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:34 PM

Posted 26 November 2015 - 05:38 AM

Welcome to BC !

 

You will need to completely uninstall Google Chrome....that means uninstalling your Chrome profile, too.

 

Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the

Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of toolbars....especially Google.

After install, open CCleaner and run by clicking on the Run Cleaner button in the bottom right corner.

CCleaner - PC Optimization and Cleaning - Free Download

 

Download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
  • download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message

Download Emsisoft Emergency Kit and save it to your desktop. Double click on EmsisoftEmergencyKit.exe to extract its contents and create a shortcut on the desktop. Leave all settings as they are and click  Accept & Extract. A folder named EEK will be created in the root of the drive (usually c:\). .

  • After extraction an Emsisoft Emergency Kit window will open. Under "Run Directly:" click Emergency Kit Scanner.
  • When asked to run an online update, click Yes.
  • When the update is finished, click the Back to Security Status link in the left corner. On the main screen click the Scan Now button.
  • Select the Full Scan option and click the SCAN button.
  • When the scan is finished click the Quarantine selected objects button. Note, this option is only available if malicious objects were detected during the scan.
  • Click the View Report button and in the Reports window double-click on the most recent log. Note, logs are named as follows: a2scan_<date>-<time>.txt.
  • Copy/paste the report contents in your next reply.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 Sammi9834

Sammi9834
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:34 PM

Posted 26 November 2015 - 02:50 PM

# AdwCleaner v5.022 - Logfile created 26/11/2015 at 10:50:56
# Updated 22/11/2015 by Xplode
# Database : 2015-11-22.2 [Server]
# Operating system : Windows 10 Home  (x64)
# Username : Sammi - THECOMPUTER
# Running from : C:\Users\Sammi\Downloads\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****

[-] File Deleted : C:\Users\Sammi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Pokki Menu.lnk
[-] File Deleted : C:\Users\Sammi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Menu.lnk

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
[-] Key Deleted : HKCU\Software\Classes\Directory\shell\pokki
[-] Key Deleted : HKCU\Software\Classes\Drive\shell\pokki
[-] Key Deleted : HKCU\Software\Classes\lnkfile\shell\pokki
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B33BD6CF-BF4C-4CF0-AC84-B2974BC14ABD}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{B33BD6CF-BF4C-4CF0-AC84-B2974BC14ABD}
[-] Key Deleted : HKCU\Software\SweetLabs App Platform

***** [ Web browsers ] *****

[-] [C:\Users\Sammi\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : mystart.incredibar.com/mb139
[-] [C:\Users\Sammi\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com
[-] [C:\Users\Sammi\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : search.conduit.com
[-] [C:\Users\Sammi\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : homepage-web.com
[-] [C:\Users\Sammi\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://homepage-web.com/?s=acer&m=start

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2021 bytes] ##########
 

 

 

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 10 Home x64
Ran by Sammi (Administrator) on 2015-11-26 at 10:57:30.74
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 5

Successfully deleted: C:\ProgramData\alawar (Folder)
Successfully deleted: C:\Users\Sammi\AppData\Roaming\alawar (Folder)
Successfully deleted: C:\Users\Sammi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\pokki menu.lnk (Shortcut)
Successfully deleted: C:\Users\Sammi\Start Menu\Programs\pc app store.lnk (Shortcut)
Successfully deleted: C:\Users\Sammi\Start Menu\Programs\pokki menu.lnk (Shortcut)



Registry: 2

Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\0122911447911837mcinstcleanup (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{81713C62-8DA0-4860-8622-2F9F3D6D28D7} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2015-11-26 at 11:03:56.90
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

 

 

 

 

 

Emsisoft Emergency Kit - Version 10.0
Last update: 2015-11-26 11:33:23 AM
User account: THECOMPUTER\Sammi

Scan settings:

Scan type: Malware Scan
Objects: Rootkits, Memory, Traces, Files

Detect PUPs: On
Scan archives: Off
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off

Scan start:    2015-11-26 11:35:10 AM
Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR     detected: Setting.DisableTaskMgr (A)
Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS     detected: Setting.DisableRegistryTools (A)
Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NORUN     detected: Setting.NoRun (A)
Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NOFOLDEROPTIONS     detected: Setting.NoFolderOptions (A)

Scanned    85596
Found    4

Scan end:    2015-11-26 11:46:33 AM
Scan time:    0:11:23

Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NOFOLDEROPTIONS    Quarantined Setting.NoFolderOptions (A)
Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NORUN    Quarantined Setting.NoRun (A)
Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS    Quarantined Setting.DisableRegistryTools (A)
Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR    Quarantined Setting.DisableTaskMgr (A)

Quarantined    4
 



#4 buddy215

buddy215

  • Moderator
  • 13,501 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:34 PM

Posted 26 November 2015 - 04:29 PM

Well, that got rid of some junk-ware and adware. Any improvement?

 

Post the three lists mentioned below using CCleaner.

 

Open CCleaner and click on Tools. Choose Startups. On that page you will see a list of Windows Startups and at the top tabs for each browser and Scheduled Tasks.

At the bottom right of that page you will see a button when clicked will allow you to Copy and Paste the list of Windows Startups and Scheduled Tasks into your next

post. Please do that.

 

Open CCleaner and click on Tools. Choose Uninstall. On that page you will see a list of programs installed on your computer and at the bottom right of that page you

will see a button when clicked will allow you to Copy and Paste that list in your next post. Please do that.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#5 Sammi9834

Sammi9834
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:34 PM

Posted 26 November 2015 - 05:50 PM

Yes, a big improvement in speed so far, I can right click on things and use the volume & task manager again thank the heavens I've left chrome uninstalled for now. Here are the lists asked for.

 

Yes    Task    ACC    Acer Incorporated    C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe -auto
Yes    Task    ACCAgent    Acer Incorporated    C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe
Yes    Task    AcerCloud    Acer    C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe task
Yes    Task    Adobe Flash Player Updater    Adobe Systems Incorporated    C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes    Task    BacKGroundAgent    Acer Incorporated    C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe task
Yes    Task    CCleanerSkipUAC    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes    Task    Hotkey Utility    Acer Incorporated    "C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe"
Yes    Task    McAfee Remediation (Prepare)    McAfee, Inc.    C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe /prepare
Yes    Task    McAfeeLogon    McAfee, Inc.    C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
Yes    Task    Nogiemjnag        "C:\ProgramData\Nogiemjnag\1.0.6.1\elroeomf.exe" "/e=L3A9MTkxMzAxXi91PWFhODE5MTk3YWU5MTQ5YzI4OGUyMGVmZDgyODIyY2JhXi9kPWNyaW1ldGhyZWF0YWxlcnQuY29tXi9uPUNSTUVeL2E9Q3JpbWVXYXRjaF4vdA=="
Yes    Task    Optimize Start Menu Cache Files-S-1-5-21-3058516960-564016962-2601797260-1001        
Yes    Task    Optimize Start Menu Cache Files-S-1-5-21-3058516960-564016962-2601797260-500        
Yes    Task    Quick Access    Acer Incorporate    "C:\Program Files\Acer\Acer Quick Access\QALauncher.exe"
Yes    Task    Quick Access Quick Launcher    Acer Incorporate    "C:\Program Files\Acer\Acer Quick Access\QALauncher.exe" -noui -normsvc
Yes    Task    Razer_Game_Booster_AutoUpdate        C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe /AUTORUN
Yes    Task    Software Update Application    Acer Incorporated    "C:\ProgramData\OEM\UpgradeTool\ListCheck.exe"
Yes    Task    SUPERAntiSpyware Scheduled Task 2c55ee23-6da7-4032-8d09-daf89f864af9    SUPERAdBlocker.com    C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:2c55ee23-6da7-4032-8d09-daf89f864af9
Yes    Task    SUPERAntiSpyware Scheduled Task 2eea3a39-f453-441c-ba10-2cc65384c9ce    SUPERAdBlocker.com    C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:2eea3a39-f453-441c-ba10-2cc65384c9ce
Yes    Task    SweetLabs App Platform    Pokki    %LOCALAPPDATA%\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe /LOGON
 

 

 

 

 

 

 

 

- Games App -    WildTangent Games    2015-07-31        1.0.3.28
3D Builder    Microsoft Corporation    2015-09-16        10.9.6.0
abDocs    Acer Incorporated    2015-10-21        1.08.2005
abDocs    Acer Incorporated    2015-10-21    157 MB    1.08.2005
abDocs Office AddIn    Acer Incorporated    2015-10-21    3.59 MB    3.02.2000
abFiles    Acer Incorporated    2014-11-20        2.00.3002
abFiles    Acer Incorporated    2014-11-20        2.00.3002
abMedia    Acer Incorporated    2015-07-31        2.09.2002.1
abMedia    Acer Incorporated    2015-07-31        2.09.2002.1
abPhoto    Acer Incorporated    2015-11-26        3.06.2000.22
abPhoto    Acer Incorporated    2015-11-26        3.06.2000.22
AccuWeather - Weather for Life    AccuWeather    2015-08-11        4.1.0.24
Acer Care Center    Acer Incorporated    2015-07-19        1.00.3013
Acer Explorer    Acer Incorporated    2015-08-01        2.0.3006.0
Acer Explorer Agent    Acer Incorporated    2014-11-20        2.00.3000
Acer Portal    Acer Incorporated    2015-10-21        3.08.2006
Acer Portal    Acer Incorporated    2015-10-21        3.08.2006
Acer Quick Access    Acer Incorporated    2014-11-20        1.01.3016.0
Acer Quick Access    Acer Incorporated    2014-11-20    7.33 MB    1.01.3016.0
Acer User Experience Improvement Program App Monitor Plugin    Acer Incorporated    2014-11-20        1.02.3005
Acer User Experience Improvement Program App Monitor Plugin    Acer Incorporated    2014-11-20    2.69 MB    1.02.3005
Acer User Experience Improvement Program Framework    Acer Incorporated    2014-11-20        1.02.3005
Acer User Experience Improvement Program Framework    Acer Incorporated    2014-11-20    10.3 MB    1.02.3005
Acer Video Player    Acer Incorporated    2014-11-20        1.00.2005.0
Acer Video Player    Acer Incorporated    2014-11-20        1.00.2005.0
Adobe Flash Player 19 NPAPI    Adobe Systems Incorporated            19.0.0.245
Alarms & Clock    Microsoft Corporation    2015-11-18        10.1511.61020.0
Amazon    Amazon.com    2015-07-31        3.1.2.8
Amazon 1Button App    Amazon    2014-11-20    5.00 MB    1.0.8
AOP Framework    Acer Incorporated    2015-11-26        3.12.2002.0
AOP Framework    Acer Incorporated    2015-11-26        3.12.2002.0
App connector    Microsoft Corporation    2015-07-31        1.3.3.0
Apple Application Support (32-bit)    Apple Inc.    2015-10-22    114 MB    4.1
Apple Application Support (64-bit)    Apple Inc.    2015-10-22    128 MB    4.1
Apple Mobile Device Support    Apple Inc.    2015-10-22    28.0 MB    9.1.0.6
Apple Software Update    Apple Inc.    2015-10-04    2.39 MB    2.1.4.131
Battle.net    Blizzard Entertainment            
Big Fish: Game Manager                3.3.0.2
BlueStacks App Player    BlueStack Systems, Inc.    2015-10-08    1.44 GB    0.10.6.8001
Bonjour    Apple Inc.    2015-10-04    2.01 MB    3.1.0.1
Booking.com Partner Edition    Booking.com B.V.    2015-07-31        1.2.1.0
Burger Bustle: Ellie's Organics                
Burger Shop 2                
Calculator    Microsoft Corporation    2015-11-26        10.1511.24020.0
Camera    Microsoft Corporation    2015-10-30        2015.1078.40.0
Care Center    Acer Incorporated    2015-07-19    15.9 MB    1.00.3013
Castle Crashers    The Behemoth            
CCleaner    Piriform            5.12
Craft The World    Dekovir Entertainment            
Curse    Curse    2015-08-28    139 MB    6.0.0.0
CyberLink PhotoDirector 3    CyberLink Corp.    2014-11-20        3.0.1.5320
CyberLink PowerDirector 10    CyberLink Corp.    2014-11-20        10.0.0.4220
CyberLink PowerDVD 12    CyberLink Corp.    2014-11-20        12.0.4609.01
Dead Reckoning 3 - The Crescent Case Collector's Edition    Game-Owl.com            Final
Delicious: Emily's New Beginning                
Diablo III    Blizzard Entertainment            
Document Manager 2016    LLC "SKYSPARK CORP"    2015-07-31        6.3.9600.18
Dungeon Defenders II    Trendy Entertainment            
Emerland Solitaire: Endless Journey                
Evernote Touch    Evernote    2015-11-04        3.2.2.96
Explorer Agent    Acer Incorporated    2014-11-20    2.13 MB    2.00.3000
Farm Frenzy Inc.                
Farm to Fork                
Farm Tribe 2                
Farmerama                
Films & TV    Microsoft Corporation    2015-11-18        3.6.15361.0
Flipboard    Flipboard    2015-10-15        2.1.0.0
Foxit PhantomPDF    Foxit Corporation    2014-11-20    157 MB    6.0.121.624
Game Explorer Categories - genres    WildTangent, Inc.            11.0.0.7
Game Explorer Categories - main    WildTangent, Inc.            11.0.0.7
Get Office    Microsoft Corporation    2015-11-26        17.6418.23501.0
Get Skype    Skype    2015-07-31        3.2.1.0
Get Started    Microsoft Corporation    2015-11-11        2.5.6.0
Groove Music    Microsoft Corporation    2015-11-11        3.6.15131.0
Hearthstone    Blizzard Entertainment            
Heroes of the Storm    Blizzard Entertainment            
Hotkey Utility    Acer Incorporated    2014-11-20        3.00.8104
Hotkey Utility    Acer Incorporated    2014-11-20    4.45 MB    3.00.8104
Intel® Processor Graphics    Intel Corporation            10.18.10.4276
Intel® Trusted Execution Engine    Intel Corporation    2014-11-20        1.0.0.1064
iStoryTime Library    zuuka Inc    2015-07-31        1.1.0.69
iTunes    Apple Inc.    2015-10-22    218 MB    12.3.1.23
Java 8 Update 65 (64-bit)    Oracle Corporation    2015-10-27    101 MB    8.0.650.17
Jo's Dream Organic Coffee 2                
Kindle    AMZN Mobile LLC    2015-07-31        2.1.0.2
Knights of Pen and Paper +1    Behold Studios            
Lantern Forge    Hearthfire Studios            
Magic 2014    Stainless Games            
Magic Farm 2: Fairy Lands                
Mail and Calendar    Microsoft Corporation    2015-11-18        17.6416.42001.0
Malwarebytes Anti-Malware version 2.2.0.1024    Malwarebytes    2015-11-09        2.2.0.1024
Maps    Microsoft Corporation    2015-11-18        4.1511.3161.0
McAfee LiveSafe – Internet Security    McAfee, Inc.            14.0.5120
McAfee WebAdvisor    McAfee, Inc.            4.0.203
Microsoft Jigsaw    Microsoft Studios    2015-10-27        1.3.1509.1706
Microsoft Office 365 - en-us    Microsoft Corporation            15.0.4771.1004
Microsoft Office Excel Viewer    Microsoft Corporation    2015-11-11    157 MB    12.0.6612.1000
Microsoft Solitaire Collection    Microsoft Studios    2015-11-09        3.5.11021.0
Microsoft Visual C++ 2005 Redistributable    Microsoft Corporation    2015-07-31    3.22 MB    8.0.61001
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17    Microsoft Corporation    2014-11-20    13.2 MB    9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161    Microsoft Corporation    2015-07-31    13.2 MB    9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022    Microsoft Corporation    2015-10-06    5.95 MB    9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17    Microsoft Corporation    2014-11-20    10.2 MB    9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148    Microsoft Corporation    2014-11-20    10.1 MB    9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161    Microsoft Corporation    2015-07-31    10.1 MB    9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219    Microsoft Corporation    2015-07-31    13.8 MB    10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219    Microsoft Corporation    2015-07-31    11.1 MB    10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030    Microsoft Corporation            11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501    Microsoft Corporation            12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501    Microsoft Corporation            12.0.30501.0
Microsoft Visual Studio 2010 Tools for Office Runtime (x64)    Microsoft Corporation    2015-07-31        10.0.50903
Millennium 2: Take Me Higher                
Millennium: A New Hope                
Minecraft    Mojang    2015-07-20    1.22 MB    1.0.3.0
Money    Microsoft Corporation    2015-11-18        4.7.118.0
Movie Moments    Microsoft Corporation    2015-07-31        6.3.9654.20464
Mozilla Firefox 42.0 (x86 en-US)    Mozilla            42.0
Mozilla Maintenance Service    Mozilla            42.0
MSN Food & Drink    Microsoft Corporation    2015-07-31        3.0.4.336
MSN Health & Fitness    Microsoft Corporation    2015-07-31        3.0.4.336
MSN Travel    Microsoft Corporation    2015-07-31        3.0.4.336
My Singing Monsters                
Netflix    Netflix, Inc.    2015-10-02        5.1.4.0
News    Microsoft Corporation    2015-11-18        4.7.118.0
OneNote    Microsoft Corporation    2015-11-26        17.6366.15391.0
Open your DOCX File    marclam    2015-07-31        1.1.0.0
People    Microsoft Corporation    2015-11-03        10.0.3030.0
Phone Companion    Microsoft Corporation    2015-11-26        10.1511.18010.0
Photos    Microsoft Corporation    2015-11-26        15.1120.13270.0
Pokki    Pokki            0.269.7.802
Pokki Start Menu    Pokki            0.269.7.800
Qualcomm Atheros WLAN and Bluetooth Client Installation Program    Qualcomm Atheros    2014-11-20        12.25
Reader    Microsoft Corporation    2015-07-31        6.4.9926.17994
Realtek Ethernet Controller Driver    Realtek    2014-11-20        8.29.314.2014
Realtek High Definition Audio Driver    Realtek Semiconductor Corp.            6.0.1.7535
Recettear: An Item Shop's Tale    EasyGameStation            
RuneScape Launcher 1.2.6    Jagex Ltd    2015-07-26    26.7 MB    1.2.6
Sea Of Lies 4 Tide Of Treachery CE 1.0    Èãðû íà Cat-A-Cat.NET    2015-08-13        1.0
Shadow Wolf Mysteries 5 - Tracks of Terror Collector's Edition    Game-Owl.com            Final
Shrouded Tales 2 Revenge CE ENG 1.0    Èãðû íà Cat-A-Cat.NET    2015-08-13        1.0
Skype Click to Call    Microsoft Corporation    2015-10-15    13.0 MB    7.5.0.9082
Skype™ 7.12    Skype Technologies S.A.    2015-10-08    75.2 MB    7.12.101
SoulCraft    MobileBits GmbH    2015-10-13        2.8.1.0
Sports    Microsoft Corporation    2015-11-26        4.7.130.0
Spotify    Spotify AB    2014-11-20        0.9.6.81.gd359a796
Steam    Valve Corporation            2.10.91.91
Store    Microsoft Corporation    2015-11-26        2015.23.23.0
SUPERAntiSpyware    SUPERAntiSpyware.com            6.0.1208
The Happy Hereafter                
TuneIn Radio    TuneIn    2015-07-31        1.1.0.0
Twitter    Twitter Inc.    2015-11-04        4.2.5.0
Unity Web Player    Unity Technologies ApS            5.2.0f3
Ventrilo Client    Flagship Industries, Inc.    2015-08-30    5.58 MB    3.0.8
VLC media player    VideoLAN            2.2.1
Voice Recorder    Microsoft Corporation    2015-11-26        10.1511.17110.0
Weather    Microsoft Corporation    2015-11-18        4.7.118.0
WildTangent Games    WildTangent            1.0.4.0
Windows Reading List    Microsoft Corporation    2015-08-12        6.3.9654.20947
Windows Scan    Microsoft Corporation    2015-07-31        6.3.9654.17133
WinRAR 5.30 beta 1 (64-bit)    win.rar GmbH            5.30.1
World of Warcraft    Blizzard Entertainment            
Xbox    Microsoft Corporation    2015-11-26        11.11.19012.0
Xbox 360 SmartGlass    Microsoft Corporation    2015-07-31        1.4.3.0
Zinio Reader    Zinio LLC    2015-07-31        2.1.0.317
 



#6 buddy215

buddy215

  • Moderator
  • 13,501 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:34 PM

Posted 26 November 2015 - 06:52 PM

I don't see the list of Windows Startups

 

Disable these Tasks: Use CCleaner by clicking on each item and then choosing Disable on the right.

Yes    Task    AcerCloud    Acer    C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe task
Yes    Task    Adobe Flash Player Updater    Adobe Systems Incorporated    C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Yes    Task    McAfee Remediation (Prepare)    McAfee, Inc.    C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe /prepare
Yes    Task    McAfeeLogon    McAfee, Inc.    C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui (Do Not Disable if you purchased McAfee)

Yes    Task    Nogiemjnag        "C:\ProgramData\Nogiemjnag\1.0.6.1\elroeomf.exe" "/e=L3A9MTkxMzAxXi91PWFhODE5MTk3YWU5MTQ5YzI4OGUyMGVmZDgyODIyY2JhXi9kPWNyaW1ldGhyZWF0YWxlcnQuY29tXi9uPUNSTUVeL2E9Q3JpbWVXYXRjaF4vdA=="

Delete...NOT just disable Nogiemjnag

Yes    Task    Optimize Start Menu Cache Files-S-1-5-21-3058516960-564016962-2601797260-1001        
Yes    Task    Optimize Start Menu Cache Files-S-1-5-21-3058516960-564016962-2601797260-500        
Yes    Task    Quick Access    Acer Incorporate    "C:\Program Files\Acer\Acer Quick Access\QALauncher.exe"
Yes    Task    Quick Access Quick Launcher    Acer Incorporate    "C:\Program Files\Acer\Acer Quick Access\QALauncher.exe" -noui -normsvc
Yes    Task    Razer_Game_Booster_AutoUpdate        C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe /AUTORUN
Yes    Task    Software Update Application    Acer Incorporated    "C:\ProgramData\OEM\UpgradeTool\ListCheck.exe"

Yes    Task    SweetLabs App Platform    Pokki    %LOCALAPPDATA%\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe /LOGON
 

Suggest Uninstalling these programs:

- Games App -    WildTangent Games    2015-07-31        1.0.3.28

Acer User Experience Improvement Program App Monitor Plugin    Acer Incorporated    2014-11-20    2.69 MB    1.02.3005
Acer User Experience Improvement Program Framework    Acer Incorporated    2014-11-20        1.02.3005

Acer User Experience Improvement Program Framework    Acer Incorporated    2014-11-20    10.3 MB    1.02.3005

Amazon    Amazon.com    2015-07-31        3.1.2.8
Amazon 1Button App    Amazon    2014-11-20    5.00 MB    1.0.8

McAfee LiveSafe – Internet Security    McAfee, Inc.            14.0.5120 (Keep...if you purchased it)
McAfee WebAdvisor    McAfee, Inc.            4.0.203

Skype Click to Call    Microsoft Corporation    2015-10-15    13.0 MB    7.5.0.9082

Unity Web Player    Unity Technologies ApS            5.2.0f3

WildTangent Games    WildTangent            1.0.4.0


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#7 Sammi9834

Sammi9834
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:34 PM

Posted 26 November 2015 - 07:07 PM

Yes    HKCU:Run    AcerPortal    Acer    "C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" startup
Yes    HKCU:Run    CCleaner Monitoring    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Yes    HKCU:Run    OneDrive    Microsoft Corporation    "C:\Users\Sammi\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
Yes    HKCU:Run    Skype    Skype Technologies S.A.    "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
Yes    HKCU:Run    Steam    Valve Corporation    "C:\Program Files (x86)\Steam\steam.exe" -silent
Yes    HKCU:Run    SUPERAntiSpyware    SUPERAntiSpyware    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Yes    HKCU:RunOnce    Uninstall C:\Users\Sammi\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64    Microsoft Corporation    C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Sammi\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64"
Yes    HKLM:Run    abDocsDllLoader    Acer Incorporated    C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
Yes    HKLM:Run    BlueStacks Agent    BlueStack Systems, Inc.    C:\Program Files (x86)\BlueStacks\HD-Agent.exe
Yes    HKLM:Run    iTunesHelper    Apple Inc.    "C:\Program Files\iTunes\iTunesHelper.exe"
Yes    HKLM:Run    RazerCortex        C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe -autorun
Yes    HKLM:Run    RTHDVCPL    Realtek Semiconductor    "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
Yes    HKLM:Run    SunJavaUpdateSched    Oracle Corporation    "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Yes    Startup User    Curse.lnk    Curse, Inc    C:\Users\Sammi\AppData\Roaming\Curse Client\Bin\Curse.exe
 



#8 Sammi9834

Sammi9834
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:34 PM

Posted 26 November 2015 - 07:13 PM

Tasks have been disabled (one deleted and disabled) and programs have been uninstalled.



#9 buddy215

buddy215

  • Moderator
  • 13,501 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:34 PM

Posted 26 November 2015 - 07:47 PM

Disable these Startups: Use CCleaner by clicking on each item and then choose Disable on the right.

Yes    HKCU:Run    CCleaner Monitoring    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

Yes    HKCU:Run    Steam    Valve Corporation    "C:\Program Files (x86)\Steam\steam.exe" -silent

Yes    HKCU:RunOnce    Uninstall C:\Users\Sammi\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64    Microsoft Corporation    C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Sammi\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64"

Yes    HKLM:Run    abDocsDllLoader    Acer Incorporated    C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe

Yes    HKLM:Run    BlueStacks Agent    BlueStack Systems, Inc.    C:\Program Files (x86)\BlueStacks\HD-Agent.exe
Yes    HKLM:Run    iTunesHelper    Apple Inc.    "C:\Program Files\iTunes\iTunesHelper.exe"
Yes    HKLM:Run    RazerCortex        C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe -autorun

Yes    HKLM:Run    SunJavaUpdateSched    Oracle Corporation    "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Yes    Startup User    Curse.lnk    Curse, Inc    C:\Users\Sammi\AppData\Roaming\Curse Client\Bin\Curse.exe

 

Any problems...is the computer running up to par?
 


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#10 Sammi9834

Sammi9834
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:34 PM

Posted 27 November 2015 - 01:51 AM

I have disabled the windows start up items and it seems to be running normally again, no more lag, crashes or problems opening things.



#11 buddy215

buddy215

  • Moderator
  • 13,501 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:05:34 PM

Posted 27 November 2015 - 07:19 AM

Good...happy surfin'


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users