Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

My computer is slow and delayed


  • Please log in to reply
25 replies to this topic

#1 pizzahutray

pizzahutray

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:51 AM

Posted 19 August 2016 - 06:19 PM

In addition if I type in YouTube.com in my browser it opens ebay.com's website, not all the time but the initial try at least. When I click on an email in Outlook to see it in the preview pane to the right it opens the email in its own box like I double clicked instead of single clicked, again not all the time. Files open slowly and I have delayed clicks everywhere all the time.

 

Help!



BC AdBot (Login to Remove)

 


#2 kaljukass

kaljukass

  • Banned
  • 291 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:51 AM

Posted 19 August 2016 - 07:54 PM

  1. what's the computer (CPU, RAM) and the OS
  2. what's the hard disk HDD or SSD
  3. when was the OS installed (I mean the last clean installation and not an upgrade)
  4. how you have removed junk and obsolete files and oselete registry keys 
  5. what antivirus or what ever you are using

Edited by kaljukass, 19 August 2016 - 07:55 PM.


#3 pizzahutray

pizzahutray
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:51 AM

Posted 20 August 2016 - 03:38 AM

1. 250Gb HD ACER, 3GB RAM, Windows 7 Home Premium.

2. ACER HD that came with the computer.

3. When the computer was manufactured.

4. Various programs from your site.  RKILL and TDSSKiller.

5. I use no Antivirus. MBAM, MBAR, MBAE



#4 Queen-Evie

Queen-Evie

    Official Bleepin' G.R.I.T.S. (and proud of it)


  • Members
  • 16,485 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:My own little corner of the universe (somewhere in Alabama). It's OK, they know me here
  • Local time:09:51 AM

Posted 20 August 2016 - 10:48 AM

4. how you have removed junk and obsolete files and oselete registry keys
5. what antivirus or what ever you are using

 

4. Various programs from your site.  RKILL and TDSSKiller.
5. I use no Antivirus. MBAM, MBAR, MBAE


RKill does not remove "junk and obsolete files and oselete registry keys"
RKill - What it does and What it Doesn't - A brief introduction to the program
 
Neither does TDSSKiller.
http://www.bleepingcomputer.com/download/tdsskiller/

TDSSKiller is a utility created by Kaspersky Labs that is designed to remove the TDSS rootkit. This rootkit is know under other names such as Rootkit.Win32.TDSS, Tidserv, TDSServ, and Alureon. TDSSKiller will also attempt to remove other rootkits such as the ZeroAccess or ZeroAccess rootkit if it is detected.

 
MBAR searches for rootkits and removes them.
http://www.bleepingcomputer.com/download/malwarebytes-anti-rootkit/

Malwarebytes Anti-Rootkit is a free program that can be used to search for and remove rootkits from your computer.  When started, Malwarebytes Anti-Rootkit will scan your computer and allow you to remove any rootkits that it finds.

 
MBAE
http://www.bleepingcomputer.com/download/malwarebytes-anti-exploit/

Malwarebytes Anti-Exploit is a security program that protects you from zero-day exploits that target browser and application vulnerabilities. This program is meant to run alongside your traditional anti-virus or anti-malware products and provides extra protection against software and Windows vulnerabilities that are discovered, but do not have a patch available to fix them.

 
MBAM is not an antivirus.
 https://support.malwarebytes.com/customer/portal/articles/1834872-does-malwarebytes-anti-malware-replace-antivirus-software-?b_id=6438

Malwarebytes Anti-Malware is not meant to be a replacement for antivirus software. Malwarebytes Anti-Malware is a complementary but essential program which detects and removes zero-day malware and "Malware in the Wild".
 
This includes malicious programs and files, such as virus droppers, worms, trojans, rootkits, dialers, spyware, and rogue applications that many antivirus programs do not detect or cannot fully remove. That being said, there are many infections that Malwarebytes Anti-Malware does not detect or remove which any antivirus software will, such as file infectors. 
 

It is important to note that Malwarebytes Anti-Malware works well and should run alongside antivirus software without conflicts. In some rare instances, exclusions may need to be set for your specific antivirus product to achieve the best possible system performance.


Edited by Queen-Evie, 20 August 2016 - 10:50 AM.


#5 Voidz

Voidz

  • Members
  • 75 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:England
  • Local time:03:51 PM

Posted 20 August 2016 - 11:30 AM

Hi! A friend recently brought a new laptop and gave me his old laptop that didnt have an anti virus on, and this was used for around 2 years...

It had roughly the same problems as you, it was super slow, took around 20 minutes to boot etc etc.

 

The first scan I did with Avast had 137 threat detections, then i followed up with malwarebytes, adwcleaner and  junkware removal tool to try to clean it up..

 

Ive drastically reduced the boot time - It's around 3-5 minutes now, but it should be faster still, I spent around 7 hours yesterday trying to get rid of everything harmful on the computer, I would've done a factory reset but it was disabled, and I have no recovery media since it was a friends laptop

 

Bsaically what im saying is, you probably have multiple viruses/adware, etc... I suggest you download a free anti virus such as Avast or Avira, do a full scan, followed by a full scan of malware bytes, followed by adwcleaner and junkware removal tool. After this, I suggest that you run a defrag.

 

If your computer is still experiencing issues, and you dont care about the data on your computer or if it isnt important, you can reinstall your OS and it might help you out.



#6 buddy215

buddy215

  • Moderator
  • 13,194 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:09:51 AM

Posted 20 August 2016 - 12:53 PM

pizzahutray...welcome to BC..

 

Please follow the instructions below. I know you may have used MBAM recently but please run another scan with it using the settings described below.

 

Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the

Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of toolbars....especially Google.

After install, open CCleaner and run by clicking on the Run Cleaner button in the bottom right corner.

CCleaner - PC Optimization and Cleaning - Free Download

 


  • Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.
  • Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.
  • Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.
  • If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).
  • When MBAM is finished scanning it will display a screen that displays any malware that it has detected.
  • Click the Remove Selected button.
  • MBAM will now delete all of the files and registry keys and add them to the programs quarantine. When removing the files, MBAM may require a reboot in order to remove some of them. If it displays a message stating that it needs to reboot, please allow it to do so.
  • While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.
  • The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Logs.

POST THE LOG FOR  REVIEW.

 

Download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
  • download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#7 pizzahutray

pizzahutray
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:51 AM

Posted 23 August 2016 - 02:06 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.7 (07.03.2016)
Operating System: Windows 7 Home Premium x64
Ran by Ray (Administrator) on Sun 08/21/2016 at 23:30:20.04
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 24

Successfully deleted: C:\Users\Ray\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3HO2ICV0 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Ray\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A4KINHXW (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Ray\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G5X2KW71 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Ray\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GOAI5CR1 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Ray\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LL7FF2TO (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Ray\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LUL71U8P (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Ray\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\O54YQ7HB (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Ray\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q4Q6TNTX (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Ray\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UKGZFB0T (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Ray\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WPLR9AK6 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Ray\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YNBV1PTM (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Ray\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YQW6LF7L (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3HO2ICV0 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A4KINHXW (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G5X2KW71 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GOAI5CR1 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LL7FF2TO (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LUL71U8P (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\O54YQ7HB (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q4Q6TNTX (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UKGZFB0T (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WPLR9AK6 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YNBV1PTM (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YQW6LF7L (Temporary Internet Files Folder)



Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 08/21/2016 at 23:36:21.18
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

===========================================================================================================

 

# AdwCleaner v6.000 - Logfile created 21/08/2016 at 00:09:34
# Updated on 12/08/2016 by ToolsLib
# Database : 2016-08-20.1 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Ray - RAY-PC
# Running from : F:\Ray's Files 2013.3 (YM) forward\Computer Help\BleepingComputer.com 2016.8.20 ID pizzahutray PW 1212 pizzahutray@gmail.com\AdwCleaner.exe
# Mode: Clean
# Support : https://toolslib.net/forum



***** [ Services ] *****



***** [ Folders ] *****



***** [ Files ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKLM\SOFTWARE\Description


***** [ Web browsers ] *****



*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C11].txt - [2533 Bytes] - [12/01/2016 00:56:55]
C:\AdwCleaner\AdwCleaner[C1].txt - [12816 Bytes] - [17/04/2016 00:48:54]
C:\AdwCleaner\AdwCleaner[C2].txt - [3391 Bytes] - [04/06/2016 23:43:36]
C:\AdwCleaner\AdwCleaner[C3].txt - [2466 Bytes] - [07/06/2016 01:12:31]
C:\AdwCleaner\AdwCleaner[C4].txt - [5208 Bytes] - [10/06/2016 02:07:09]
C:\AdwCleaner\AdwCleaner[C5].txt - [2669 Bytes] - [12/08/2016 00:28:50]
C:\AdwCleaner\AdwCleaner[C7].txt - [3251 Bytes] - [18/08/2016 01:28:16]
C:\AdwCleaner\AdwCleaner[C8].txt - [1406 Bytes] - [21/08/2016 00:09:34]
C:\AdwCleaner\AdwCleaner[R14].txt - [1113 Bytes] - [27/04/2015 00:15:40]
C:\AdwCleaner\AdwCleaner[R15].txt - [1488 Bytes] - [02/08/2015 21:18:52]
C:\AdwCleaner\AdwCleaner[R16].txt - [1548 Bytes] - [02/08/2015 21:21:28]
C:\AdwCleaner\AdwCleaner[R18].txt - [6016 Bytes] - [16/01/2016 17:51:43]
C:\AdwCleaner\AdwCleaner[R19].txt - [612 Bytes] - [10/02/2016 20:57:13]
C:\AdwCleaner\AdwCleaner[R20].txt - [514 Bytes] - [10/02/2016 21:13:03]
C:\AdwCleaner\AdwCleaner[R21].txt - [2064 Bytes] - [17/03/2016 00:47:08]
C:\AdwCleaner\AdwCleaner[S11].txt - [4303 Bytes] - [16/01/2016 22:20:42]
C:\AdwCleaner\AdwCleaner[S12].txt - [2154 Bytes] - [17/03/2016 00:49:19]
C:\AdwCleaner\AdwCleaner[S13].txt - [3351 Bytes] - [18/08/2016 01:27:42]
C:\AdwCleaner\AdwCleaner[S14].txt - [3153 Bytes] - [20/08/2016 16:34:46]
C:\AdwCleaner\AdwCleaner[S18].txt - [2321 Bytes] - [11/01/2016 23:54:58]
C:\AdwCleaner\AdwCleaner[S1].txt - [12799 Bytes] - [10/02/2016 21:17:31]
C:\AdwCleaner\AdwCleaner[S2].txt - [3163 Bytes] - [04/06/2016 23:23:18]
C:\AdwCleaner\AdwCleaner[S3].txt - [2110 Bytes] - [04/06/2016 23:54:37]
C:\AdwCleaner\AdwCleaner[S4].txt - [2292 Bytes] - [07/06/2016 01:03:49]
C:\AdwCleaner\AdwCleaner[S5].txt - [399 Bytes] - [08/06/2016 03:29:56]
C:\AdwCleaner\AdwCleaner[S7].txt - [2357 Bytes] - [10/06/2016 02:01:45]
C:\AdwCleaner\AdwCleaner[S8].txt - [2576 Bytes] - [10/08/2016 13:38:10]
C:\AdwCleaner\AdwCleaner[S9].txt - [3609 Bytes] - [27/04/2015 00:21:17]

########## EOF - C:\AdwCleaner\AdwCleaner[C8].txt - [2949 Bytes] ##########

  ESET said there were ZERO infections found



#8 buddy215

buddy215

  • Moderator
  • 13,194 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:09:51 AM

Posted 23 August 2016 - 02:51 PM

Okay....what about the MBAM scan results?

 

Post the three lists mentioned below using CCleaner.

Open CCleaner and click on Tools. Choose Startups. On that page you will see a list of Windows Startups and at the top tabs for each browser and Scheduled Tasks.

At the bottom right of that page you will see a button when clicked will allow you to Copy and Paste the list of Windows Startups and Scheduled Tasks into your next

post. Please do that.

 

Open CCleaner and click on Tools. Choose Uninstall. On that page you will see a list of programs installed on your computer and at the bottom right of that page you

will see a button when clicked will allow you to Copy and Paste that list in your next post. Please do that.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#9 pizzahutray

pizzahutray
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:51 AM

Posted 23 August 2016 - 03:01 PM

Yes    HKCU:Run    CCleaner Monitoring    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Yes    HKCU:Run    cdloader    magicJack L.P.    "C:\Users\Ray\AppData\Roaming\mjusbsp\cdloader2.exe" MAGICJACK
Yes    HKCU:Run    DymoQuickPrint    Sanford, L.P.    "C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe" /startup
No    HKCU:Run    Evdtion    Microsoft Corporation    regsvr32.exe C:\Users\Ray\AppData\Local\Evdtion\AsycDrvHelper.dll
Yes    HKCU:Run    ExtremeSync Background Scheduler    Super Flexible Software Ltd. & Co. KG    C:\Program Files (x86)\SuperFlexible\ExtremeSyncService.exe /TIMERASAPP /STARTUP
No    HKCU:Run    IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}    Nero AG    "C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
No    HKCU:Run    swg    Google Inc.    "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
No    HKLM:Run    Acer ePower Management    Acer Incorporated    C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
No    HKLM:Run    Adobe Reader Speed Launcher    Adobe Systems Incorporated    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
No    HKLM:Run    BackupManagerTray    NewTech Infosystems, Inc.    "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
No    HKLM:Run    BrStsMon00    Brother Industries, Ltd.    C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
Yes    HKLM:Run    CanonMyPrinter    CANON INC.    C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
Yes    HKLM:Run    CanonSolutionMenuEx    CANON INC.    C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
No    HKLM:Run    DLSService    Sanford, L.P.    "C:\Program Files (x86)\DYMO\DYMO Label Software\DLSService.exe"
No    HKLM:Run    EgisTecPMMUpdate    Egis Technology Inc.    "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
No    HKLM:Run    EgisUpdate    Egis Technology Inc.    "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
No    HKLM:Run    GrooveMonitor    Microsoft Corporation    "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
No    HKLM:Run    HotKeysCmds    Intel Corporation    C:\Windows\system32\hkcmd.exe
No    HKLM:Run    IAStorIcon    Intel Corporation    C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
No    HKLM:Run    IgfxTray    Intel Corporation    C:\Windows\system32\igfxtray.exe
No    HKLM:Run    LManager    Dritek System Inc.    C:\Program Files (x86)\Launch Manager\LManager.exe
Yes    HKLM:Run    Malwarebytes Anti-Exploit    Malwarebytes Corporation    C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
No    HKLM:Run    mwlDaemon    Egis Technology Inc.    C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
No    HKLM:Run    NA1Messenger    United Parcel Service    C:\PROGRAM FILES (X86)\UPS\WSTD\UPSNA1Msgr.exe
No    HKLM:Run    NBKeyScan    Nero AG    "C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
No    HKLM:Run    Persistence    Intel Corporation    C:\Windows\system32\igfxpers.exe
Yes    HKLM:Run    RtHDVCpl    Realtek Semiconductor    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
No    HKLM:Run    SuiteTray    Egis Technology Inc.    "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
No    HKLM:Run    SunJavaUpdateSched    Oracle Corporation    "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Yes    HKLM:Run    SynTPEnh    Synaptics Incorporated    %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
No    HKLM:Run    WSUpdater    UPS    C:\PROGRAM FILES (X86)\UPS\WSTD\CF\WorldShipCF.exe
No    Startup Common    1-Click Answers.lnk    Answers Corporation    C:\PROGRA~2\1-CLIC~1\answers.exe
Yes    Startup Common    Malwarebytes Anti-Ransomware.lnk    Malwarebytes    C:\Program Files\Malwarebytes\Anti-Ransomware\mbarw.exe
No    Startup Common    UPS WorldShip Messaging Utility.lnk    United Parcel Service, Inc.    C:\PROGRA~2\UPS\WSTD\WSTDME~1.EXE
No    Startup Common    UPS WorldShip PLD Reminder Utility.lnk    UPS    C:\PROGRA~2\UPS\WSTD\WSTDPL~1.EXE
No    Startup User    OneNote 2007 Screen Clipper and Launcher.lnk    Microsoft Corporation    C:\PROGRA~2\MICROS~2\Office12\ONENOTEM.EXE /tsr
No    Startup User    Wipe Tray Agent.lnk        C:\Program Files\Wipe\Wipe.exe tray

=================================================================================================================

scheduled tasks

 

Yes    Task    Adobe Flash Player Updater    Adobe Systems Incorporated    C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes    Task    CCleanerSkipUAC    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes    Task    GoogleUpdateTaskMachineCore    Google Inc.    C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes    Task    GoogleUpdateTaskMachineUA    Google Inc.    C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes    Task    PandaUSBVaccine    Panda Security S.L    "C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe" "C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe" /resident /autovaccinate  /agreelicense

=================================================================================================================

 

Installed programs

 

1-Click Answers        2/28/2013        
9-lab Removal Tool        6/11/2016        
ABBYY FineReader 9.0 Professional Edition    ABBYY    8/2/2013    303 MB    9.00.724.5507
Acer Backup Manager    NewTech Infosystems    7/22/2010    27.5 MB    2.0.0.68
Acer Crystal Eye webcam    Liteon    11/2/2012    3.25 MB    1.0.4.2
Acer ePower Management    Acer Incorporated    11/2/2012        5.00.3005
Acer eRecovery Management    Acer Incorporated    7/22/2010        4.05.3013
Acer Games    WildTangent    11/2/2012        1.0.1.3
Acer Registration    Acer Incorporated    11/2/2012        1.03.3003
Acer ScreenSaver    Acer Incorporated    11/2/2012        1.1.0707.2010
Acrobat.com    Adobe Systems Incorporated    7/22/2010    1.60 MB    1.6.65
Adobe AIR    Adobe Systems Incorporated    4/14/2015        16.0.0.245
Adobe Flash Player 21 ActiveX    Adobe Systems Incorporated    3/10/2016    9.95 MB    21.0.0.182
Adobe Flash Player 22 NPAPI    Adobe Systems Incorporated    7/27/2016    19.1 MB    22.0.0.209
Adobe Reader 9.1 MUI    Adobe Systems Incorporated    7/22/2010    650 MB    9.1.0
Barnes & Noble Desktop Reader    Barnesandnoble.com    11/2/2012    38.0 MB    2.5.1.21
Camtasia Studio 7    TechSmith Corporation    12/22/2012    217 MB    7.0.0
Camtasia Studio 8    TechSmith Corporation    12/23/2012    363 MB    8.0.4.1060
Canon Easy-PhotoPrint EX        8/11/2013        
Canon Inkjet Printer/Scanner/Fax Extended Survey Program        8/11/2013        
Canon MG2100 series MP Drivers        11/14/2012        
Canon MG2100 series On-screen Manual        11/14/2012        
Canon MG2100 series User Registration        8/11/2013        
Canon MP Navigator EX 5.0        8/11/2013        
Canon My Printer        8/11/2013        
Canon Solution Menu EX        8/11/2013        
Canon Utilities PhotoStitch 3.1        3/3/2013        
CCleaner    Piriform    8/18/2016        5.12
ChairGun4 4.2.0    Hawke Sport Optics    6/15/2015    9.51 MB    
Citrix Online Launcher    Citrix    2/23/2016    296 KB    1.0.408
ConvertHelper 2.2    DownloadHelper    2/21/2013        
ConvertHelper 3.1.1    DownloadHelper    1/16/2016    76.9 MB    
CopyTrans Control Center Uninstall Only    WindSolutions    1/1/2016        4.004
CutePDF Writer 3.0    Acro Software Inc.    1/10/2016         3.0
CyberLink PowerDVD 9    CyberLink Corp.    11/2/2012    114 MB    9.0.2829.50
DAZzle        10/18/2015        
DiskAid 5.01    DigiDNA    7/31/2013    18.5 MB    5.01
DYMO Label v.8    Sanford, L.P.    11/15/2015        8.2.0.794
eBay Worldwide    OEM    11/2/2012    100 KB    2.1.0901
Elcomsoft Wireless Security Auditor    Elcomsoft Co. Ltd.    1/23/2013    8.55 MB    4.0.211.448
Endicia Platinum Shipper        2/23/2016        
ESET Online Scanner v3        8/23/2013        
eSobi v2    esobi Inc.    7/22/2010    20.4 MB    2.0.4.000274
Freeraser    Codyssey.com    11/14/2012        1.0.0.23
GetDataBack for NTFS    Runtime Software    5/21/2013        3.64.000
Google Chrome    Google Inc.    12/12/2012        52.0.2743.116
Google Toolbar for Internet Explorer    Google Inc.    4/26/2016        7.5.7619.1252
Google+ Auto Backup    Google    1/9/2014    6.76 MB    1.0.21.81
HandBrake 0.10.1        6/3/2015        0.10.1
HL-2240D    Brother Industries, Ltd.    12/10/2012        1.0.7.0
ICCHelp    UPS    2/9/2016    39.8 MB    19.00.0000
Identity Card    Acer Incorporated    11/2/2012        1.00.3003
ImgBurn    LIGHTNING UK!    7/19/2013        2.5.8.0
Intel® Graphics Media Accelerator Driver    Intel Corporation    11/2/2012    54.2 MB    8.15.10.1892
Intel® Rapid Storage Technology    Intel Corporation    2/11/2016        9.6.2.1001
Jasc Paint Shop Pro 8    Jasc Software Inc    8/10/2013    149 MB    8.00.0000
Java 8 Update 71    Oracle Corporation    1/22/2016    20.8 MB    8.0.710.15
Juniper Networks, Inc. Setup Client    Juniper Networks, Inc.    4/24/2014    800 KB    7.3.5.34907
Juniper Networks, Inc. Setup Client 64-bit Activex Control    Juniper Networks, Inc.    4/24/2014        2.1.1.1
Juniper Networks, Inc. Setup Client Activex Control    Juniper Networks, Inc.    4/24/2014        2.1.1.1
Launch Manager    Acer Inc.    11/2/2012        4.0.12
magicJack    magicJack L.P.    9/2/2015        4.1.7574.5297
Malwarebytes Anti-Exploit version 1.8.1.2572    Malwarebytes    8/2/2016    6.53 MB    1.8.1.2572
Malwarebytes Anti-Malware version 2.2.1.1043    Malwarebytes    6/10/2016    66.8 MB    2.2.1.1043
Malwarebytes Anti-Ransomware version 0.9.15.416    Malwarebytes    4/20/2016    63.3 MB    0.9.15.416
Microsoft .NET Framework 4.5.2    Microsoft Corporation    2/9/2016    38.8 MB    4.5.51209
Microsoft Office Enterprise 2007    Microsoft Corporation    8/21/2013        12.0.6612.1000
Microsoft Silverlight    Microsoft Corporation    7/27/2016    149 MB    5.1.50428.0
Microsoft SQL Server 2005 Compact Edition [ENU]    Microsoft Corporation    11/2/2012    1.72 MB    3.1.0000
Microsoft SQL Server 2008 Setup Support Files     Microsoft Corporation    2/9/2016    28.5 MB    10.1.2731.0
Microsoft SQL Server 2012    Microsoft Corporation    2/9/2016        
Microsoft SQL Server 2012 Management Objects     Microsoft Corporation    2/9/2016    25.3 MB    11.2.5058.0
Microsoft SQL Server 2012 Native Client     Microsoft Corporation    2/9/2016    7.22 MB    11.2.5058.0
Microsoft SQL Server 2012 Setup (English)    Microsoft Corporation    2/9/2016    41.4 MB    11.2.5058.0
Microsoft SQL Server 2012 Transact-SQL ScriptDom     Microsoft Corporation    2/9/2016    4.54 MB    11.2.5058.0
Microsoft System CLR Types for SQL Server 2012    Microsoft Corporation    2/9/2016    2.82 MB    11.2.5058.0
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022    Microsoft Corporation    7/21/2015    2.24 MB    9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022    Microsoft Corporation    7/21/2015    1.41 MB    9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17    Microsoft Corporation    7/22/2010    596 KB    9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148    Microsoft Corporation    4/10/2013    608 KB    9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161    Microsoft Corporation    8/22/2013    600 KB    9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219    Microsoft Corporation    2/9/2016    13.8 MB    10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219    Microsoft Corporation    2/9/2016    11.1 MB    10.0.40219
Microsoft VSS Writer for SQL Server 2012    Microsoft Corporation    2/9/2016    2.93 MB    11.2.5058.0
Microsoft Works 6-9 Converter    Microsoft Corporation    2/10/2016    1.17 MB    14.0.6120.5002
Mozilla Firefox 47.0 (x86 en-US)    Mozilla    6/8/2016    91.9 MB    47.0
Mozilla Maintenance Service    Mozilla    6/8/2016    411 KB    47.0.0.5999
MSXML 4.0 SP2 (KB954430)    Microsoft Corporation    9/19/2013    1.27 MB    4.20.9870.0
MSXML 4.0 SP2 (KB973688)    Microsoft Corporation    9/19/2013    1.33 MB    4.20.9876.0
MyWinLocker Suite    Egis Technology Inc.    7/22/2010    2.20 MB    3.1.212.0
Nero 8    Nero AG    9/18/2013    1.63 GB    8.3.314
NTI Media Maker 9    NTI Corporation    7/22/2010    1.60 GB    9.0.2.8928
Panda USB Vaccine 1.0.1.16    Panda Security    8/10/2016        
PDFill PDF Editor with FREE Writer and FREE Tools    PlotSoft LLC    2/28/2016    27.2 MB    12.0
Picasa 3    Google, Inc.    10/27/2013        3.9
Realtek High Definition Audio Driver    Realtek Semiconductor Corp.    7/22/2010        6.0.1.6151
Realtek USB 2.0 Card Reader    Realtek Semiconductor Corp.    7/22/2010        6.1.7600.30121
Sierra I6    Sierra Bullets    3/3/2013        6.0
Sophos Virus Removal Tool    Sophos Limited    2/11/2016    145 MB    2.5.5
SQL Server Browser for SQL Server 2012    Microsoft Corporation    2/9/2016    9.89 MB    11.2.5058.0
Super Flexible File Synchronizer v4.42b    Super Flexible Software    7/21/2015        4.42b
Synaptics Pointing Device Driver    Synaptics Incorporated    11/2/2012        14.0.19.0
System Ninja version 3.0.6    SingularLabs    4/24/2015    6.95 MB    3.0.6
Times Reader    The New York Times Company    11/2/2012        2.055
Unchecky v1.0.1    RaMMicHaeL    8/23/2016        1.0.1
UPS WorldShip    UPS    2/9/2016        19.0
VLC media player    VideoLAN    1/29/2016        2.2.1
WebHelp    UPS    2/9/2016        19.00.0000
Welcome Center    Acer Incorporated    11/2/2012        1.02.3004
WiFi ReHacker version 1.1        1/15/2014    2.54 MB    1.1
Windows Live Essentials    Microsoft Corporation    11/2/2012        14.0.8089.0726
Windows Live Sign-in Assistant    Microsoft Corporation    11/2/2012    1.93 MB    5.000.818.5
Windows Live Sync    Microsoft Corporation    11/2/2012    2.78 MB    14.0.8089.726
Windows Live Upload Tool    Microsoft Corporation    11/2/2012    224 KB    14.0.8014.1029
WinMerge 2.14.0    Thingamahoochie Software    7/21/2015    7.90 MB    2.14.0
WinRAR 4.11 (64-bit)    win.rar GmbH    8/1/2015        4.11.0
Wise Data Recovery 3.36    WiseCleaner.com, Inc.    6/4/2013    3.93 MB    3.36

 


Edited by pizzahutray, 23 August 2016 - 03:02 PM.


#10 buddy215

buddy215

  • Moderator
  • 13,194 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:09:51 AM

Posted 23 August 2016 - 04:09 PM

Okay...what about the MBAM scan results?

 

I see Magic Jack....do you use it? Care to make any comment as to its performance?

 

Suggest Disabling these Startups: Use CCleaner by clicking on each item and choosing Disable on the right.

Yes    HKCU:Run    CCleaner Monitoring    Piriform Ltd    "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

Yes    HKCU:Run    DymoQuickPrint    Sanford, L.P.    "C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe" /startup
Yes    HKCU:Run    ExtremeSync Background Scheduler    Super Flexible Software Ltd. & Co. KG    C:\Program Files (x86)\SuperFlexible\ExtremeSyncService.exe /TIMERASAPP /STARTUP
Yes    HKLM:Run    CanonMyPrinter    CANON INC.    C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
Yes    HKLM:Run    CanonSolutionMenuEx    CANON INC.    C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon

 

Disable This Scheduled Task:

Yes    Task    GoogleUpdateTaskMachineUA    Google Inc.    C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

 

Uninstall these programs:

1-Click Answers        2/28/2013      

9-lab Removal Tool        6/11/2016   (Reason for removal...I know nothing about the tool and am not aware of any professional recommending it or using it)

Acer Games    WildTangent    11/2/2012        1.0.1.3

Acrobat.com    Adobe Systems Incorporated    7/22/2010    1.60 MB    1.6.65
Adobe AIR    Adobe Systems Incorporated    4/14/2015        16.0.0.245

Adobe Flash Player 21 ActiveX    Adobe Systems Incorporated    3/10/2016    9.95 MB    21.0.0.182 (UNinstall or UPdate)

Adobe Reader 9.1 MUI    Adobe Systems Incorporated    7/22/2010    650 MB    9.1.0 (UNinstall or UPdate)

eBay Worldwide    OEM    11/2/2012    100 KB    2.1.0901 (If you need this...keep it or look for a newer version)

ESET Online Scanner v3        8/23/2013  (this is an older version....did Eset update before you ran the scan? If you are not sure....please uninstall this one and download

again using the instructions I provided)

Google Toolbar for Internet Explorer    Google Inc.    4/26/2016        7.5.7619.1252

Java 8 Update 71    Oracle Corporation    1/22/2016    20.8 MB    8.0.710.15

Mozilla Firefox 47.0 (x86 en-US)    Mozilla    6/8/2016    91.9 MB    47.0 (UNinstall or UPdate to 48 or later.
Mozilla Maintenance Service    Mozilla    6/8/2016    411 KB    47.0.0.5999

Picasa 3    Google, Inc.    10/27/2013        3.9 (No longer supported)

 

 

 

 

Do you use / need Juniper Networks?


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#11 pizzahutray

pizzahutray
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:51 AM

Posted 23 August 2016 - 08:49 PM

Magic Jack is excellent. But I do not use it through the computer.

Malwarebytes showed nothing detected, as usual.

Eset also showed no Threats detected

 

What is next?



#12 buddy215

buddy215

  • Moderator
  • 13,194 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:09:51 AM

Posted 24 August 2016 - 06:56 AM

What happens if you Disable Magic Jack in the Windows Startup? Does your phone still work? If so, leave it Disabled.

I recall from several years back reading MJ's EULA that they might place ads.

 

Is this still happening...from your first post....if I type in YouTube.com in my browser it opens ebay.com's website....

 

Why is Juniper Networks software on this computer? From what little I know about Juniper I would not expect to see it on a

Windows 7 Home Premium computer. Is this something your ISP requires? Is your router a commercial grade router such as would

be used by Enterprises or ISPs?


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#13 pizzahutray

pizzahutray
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:51 AM

Posted 24 August 2016 - 10:17 AM

When MJ is disabled the phone still works.

No when I type in YouTube.com I get youtube.com, at least the past two days.

Not sure why or what Juniper is for.



#14 buddy215

buddy215

  • Moderator
  • 13,194 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:09:51 AM

Posted 24 August 2016 - 11:40 AM

Looking online a bit more....Juniper programs may be installed by Pulse Secure....QUOTE...The best mobile VPN to enable secure access from any device to enterprise apps and services in the data center or cloud.

 

Seems one problem solved...are there others? If not, happy surfin'


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#15 pizzahutray

pizzahutray
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:51 AM

Posted 24 August 2016 - 11:53 AM

does uninstalling  Juniper  sound like a good idea?

Is it possible I may need it for some program?

I don't see Pulse Secure installed on my computer?

 

Is there any redeeming value to Juniper ? It appears to be a very large company, $5 billion

 

i contacted Juniper and they said to contact my isp, as you recommended, to see if this is needed for the isp's modem, except i purchase my own modem 3 years ago which is not the same brand as the isp rents. The isp was pretty useless and said any docsis 3 will work and was unaware of any software needed for the modem.


Edited by pizzahutray, 24 August 2016 - 12:04 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users