Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

WINDOWS SECURITY VIRUS


  • Please log in to reply
9 replies to this topic

#1 Mrpug

Mrpug

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:07:06 PM

Posted 04 September 2016 - 10:15 PM

Hi,

 

My laptop seems to have a virus, my malwarebytes seems to keep picking up a windowsecurity malware but it reappears each time i restart computer. I am using Windows 10. 

 

Thank you



BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,118 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:06 PM

Posted 05 September 2016 - 03:20 AM

Does MBAM delete the file? Use the settings for MBAM described below and run another scan using it after rebooting.

 

  • Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.
  • Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.
  • Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.
  • If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).
  • When MBAM is finished scanning it will display a screen that displays any malware that it has detected.
  • Click the Remove Selected button.
  • MBAM will now delete all of the files and registry keys and add them to the programs quarantine. When removing the files, MBAM may require a reboot in order to remove some of them. If it displays a message stating that it needs to reboot, please allow it to do so.
  • While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.
  • The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Logs.

POST THE LOG FOR  REVIEW.

 

Download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
  • download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 Mrpug

Mrpug
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:07:06 PM

Posted 06 September 2016 - 09:47 PM

Hi,

 

Thanks for your help  :lol:, I actually don't have access to my laptop until Friday, so I will definitely try then and post back my results.  

 

Thanks!!



#4 buddy215

buddy215

  • Moderator
  • 13,118 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:06 PM

Posted 08 September 2016 - 07:59 AM

Okay....


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#5 Mrpug

Mrpug
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:07:06 PM

Posted 10 September 2016 - 10:47 PM

HI,

 

Here are the logs:

 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 9/10/2016
Scan Time: 10:43 PM
Logfile: Malwarebytes log.txt
Administrator: Yes
 
Version: 2.2.1.1043
Malware Database: v2016.09.11.01
Rootkit Database: v2016.08.15.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 10
CPU: x64
File System: NTFS
User: eathu
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 323917
Time Elapsed: 13 min, 38 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
# AdwCleaner v6.010 - Logfile created 10/09/2016 at 23:00:36
# Updated on 12/08/2016 by ToolsLib
# Database : 2016-09-10.1 [Server]
# Operating System : Windows 10 Home  (X64)
# Username : eathu - DESKTOP-F38899T
# Running from : C:\Users\eathu\Downloads\AdwCleaner (1).exe
# Mode: Clean
 
 
 
***** [ Services ] *****
 
 
 
***** [ Folders ] *****
 
 
 
***** [ Files ] *****
 
 
 
***** [ DLL ] *****
 
 
 
***** [ WMI ] *****
 
 
 
***** [ Shortcuts ] *****
 
 
 
***** [ Scheduled Tasks ] *****
 
 
 
***** [ Registry ] *****
 
[-] Key deleted: [x64] HKLM\SOFTWARE\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\cmptch.com
[-] Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\static.cmptch.com
[-] Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\cmptch.com
[-] Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\static.cmptch.com
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Control\Class\{0C95ABFE-4FB6-49DB-B22F-0E1F5FC4BEEC}
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Control\Class\{EEEFACB3-729F-4484-B66D-E7A7917BBFC1}
 
 
***** [ Web browsers ] *****
 
 
 
*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C1].txt - [1779 Bytes] - [16/07/2016 16:35:15]
C:\AdwCleaner\AdwCleaner[C2].txt - [2252 Bytes] - [16/07/2016 17:18:01]
C:\AdwCleaner\AdwCleaner[C3].txt - [1438 Bytes] - [16/07/2016 17:28:26]
C:\AdwCleaner\AdwCleaner[C4].txt - [2283 Bytes] - [10/09/2016 23:00:36]
C:\AdwCleaner\AdwCleaner[S1].txt - [1764 Bytes] - [16/07/2016 16:34:23]
C:\AdwCleaner\AdwCleaner[S2].txt - [2581 Bytes] - [16/07/2016 17:16:54]
C:\AdwCleaner\AdwCleaner[S3].txt - [1264 Bytes] - [16/07/2016 17:27:17]
C:\AdwCleaner\AdwCleaner[S4].txt - [2815 Bytes] - [10/09/2016 22:59:46]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C4].txt - [2648 Bytes] ##########
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.7 (07.03.2016)
Operating System: Windows 10 Home x64 
Ran by eathu (Administrator) on Sat 09/10/2016 at 23:04:54.29
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 0 
 
 
 
 
Registry: 0 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 09/10/2016 at 23:06:14.71
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
ESET LOG:
 
C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\chrome_elf_wk.dll a variant of Win32/Egguard.H trojan cleaned by deleting (after the next restart)
C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\Installer\chrome\125\temp a variant of Win32/Egguard.H trojan deleted
C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\Installer\chrome\125\work.dll a variant of Win32/Egguard.H trojan cleaned by deleting
C:\Users\eathu\AppData\Local\Temp\LogiOptions\Updater\LogiOptions_3.40.25.exe a variant of Win32/WebBar.D potentially unwanted application,a variant of Win64/WebBar.B potentially unwanted application deleted
Operating memory a variant of Win32/Egguard.H trojan contained infected files
 
 
 
 
Thanks for your help!


#6 buddy215

buddy215

  • Moderator
  • 13,118 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:06 PM

Posted 11 September 2016 - 04:07 AM

Because Eset found Egguard.H trojan need to run another scan.

 

Download the Emsisoft Emergency Kit and execute it. From there, click on the Extract button to extract the program in the EEK folder;

  • Once the extraction is complete, Emsisoft Emergency Kit will open, and suggest you to run an online update before using the program. Click on Yes to launch it.
  • After the update, click on Malware Scan under 2. Scan and accept to let Emsisoft Emergency Kit detect PUPs (click on Yes).
  • Once the scan is complete, make sure that every item in the list is checked, and click on Quarantine selected
  • If it asks you for a reboot to delete some items, click on Ok to reboot automatically
  • After the restart, click on the Start Emsisoft Emergency Kit icon again on your desktop to open it
  • This time, click on Logs
  • From there, go under the Quarantine Log tab, and click on the Export button
  • Save the log on your desktop, then open it, and copy/paste its content in your next reply

 

Post the three lists mentioned below using CCleaner.

Open CCleaner and click on Tools. Choose Startups. On that page you will see a list of Windows Startups and at the top tabs for each browser and Scheduled Tasks.

At the bottom right of that page you will see a button when clicked will allow you to Copy and Paste the list of Windows Startups and Scheduled Tasks into your next

post. Please do that.

 

Open CCleaner and click on Tools. Choose Uninstall. On that page you will see a list of programs installed on your computer and at the bottom right of that page you

will see a button when clicked will allow you to Copy and Paste that list in your next post. Please do that.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#7 Mrpug

Mrpug
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:07:06 PM

Posted 18 September 2016 - 05:40 PM

Hi,

 

Here are the logs:

 

Emsisoft Emergency Kit - Version 11.9
Last update: 9/18/2016 6:32:24 PM
User account: DESKTOP-F38899T\eathu
Computer name: DESKTOP-F38899T
OS version: Windows 10x64 
 
Scan settings:
 
Scan type: Malware Scan
Objects: Rootkits, Memory, Traces, Files
 
Detect PUPs: On
Scan archives: Off
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off
 
Scan start: 9/18/2016 6:34:03 PM
 
Scanned 77393
Found 0
 
Scan end: 9/18/2016 6:34:28 PM
Scan time: 0:00:25
 
CCleaner: scheduled task
Yes Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes Task CreateExplorerShellUnelevatedTask Microsoft Corporation C:\Windows\explorer.exe /NOUACCHECK
Yes Task Dell SupportAssistAgent AutoUpdate Dell Inc. C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe AutoUpdate
Yes Task DropboxOEM "%ProgramFiles(x86)%\Dropbox\DropboxOEM\DropboxOEM.exe" auto
Yes Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes Task OneDrive Standalone Update Task Microsoft Corporation C:\Users\eathu\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Yes Task PCDDataUploadTask "uaclauncher.exe" -lloc dataupload --ignoresecondarysplash --runsilently --skipidlewait
Yes Task RtHDVBg_PushButton Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
 
Windows startup:
Yes HKCU:Run Amazon Music Amazon Services LLC "C:\Users\eathu\AppData\Local\Amazon Music\Amazon Music Helper.exe"
Yes HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Yes HKCU:Run DAEMON Tools Pro Agent Disc Soft Ltd "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
Yes HKCU:Run OneDrive Microsoft Corporation "C:\Users\eathu\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
Yes HKCU:Run Spotify Spotify Ltd "C:\Users\eathu\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
Yes HKCU:Run Spotify Web Helper Spotify Ltd "C:\Users\eathu\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
Yes HKCU:RunOnce Uninstall C:\Users\eathu\AppData\Local\Microsoft\OneDrive\17.3.6386.0412_1\amd64 Microsoft Corporation C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\eathu\AppData\Local\Microsoft\OneDrive\17.3.6386.0412_1\amd64"
Yes HKLM:Run Acrobat Assistant 8.0 Adobe Systems Inc. "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
Yes HKLM:Run Adobe Acrobat Speed Launcher Adobe Systems Incorporated "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
Yes HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Yes HKLM:Run IAStorIcon Intel Corporation "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60
Yes HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
Yes HKLM:Run LogiOptions Logitech, Inc. C:\Program Files\Logitech\LogiOptions\LogiOptions.exe /noui
Yes HKLM:Run RtHDVBg_MAXX6 Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX6
Yes HKLM:Run RTHDVCPL Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
Yes HKLM:Run TUCCDUtil Magic Control Technology Corporation C:\PROGRA~2\MCTCOR~1\UVTP100\Driver\TUCCDUTIL\TUCCD.exe
Yes HKLM:Run WavesSvc Waves Audio Ltd. "C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe"
Yes Startup Common Bluetooth.lnk Broadcom Corporation. C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
 
Installed:
3D Builder Microsoft Corporation 11/7/2015 10.9.6.0
Adobe Acrobat X Pro - Romanian, Ukrainian, Russian, Turkish Adobe Systems 2/10/2016 0.97 GB 10.0.0
Alarms & Clock Microsoft Corporation 9/1/2016 10.1608.2312.0
Amazon Music Amazon Services LLC 2/14/2016 4.1.0.1229
App connector Microsoft Corporation 11/5/2015 1.3.3.0
Apple Application Support (32-bit) Apple Inc. 5/25/2016 117 MB 4.3.1
Apple Application Support (64-bit) Apple Inc. 5/25/2016 131 MB 4.3.1
Apple Mobile Device Support Apple Inc. 5/25/2016 28.5 MB 9.3.0.15
Apple Software Update Apple Inc. 3/19/2016 2.69 MB 2.2.0.150
avast! Browser Cleanup AVAST Software 7/16/2016 10.2.2218.80
Bonjour Apple Inc. 11/4/2015 2.01 MB 3.1.0.1
Calculator Microsoft Corporation 6/28/2016 10.1604.21020.0
Camera Microsoft Corporation 9/1/2016 2016.816.20.0
Candy Crush Saga king.com 9/1/2016 1.830.4.0
CCleaner Piriform 9/18/2016 5.12
CryptoPrevent Foolish IT LLC 5/25/2016 9.51 MB
DAEMON Tools Pro Disc Soft Ltd 2/11/2016 7.0.0.0555
Dell Customer Connect Dell Inc. 11/4/2015 5.64 MB 1.3.28.0
Dell Data Vault 10/29/2015
Dell Digital Delivery Dell Products, LP 10/29/2015 3.1.1018.0
Dell Foundation Services Dell Inc. 6/20/2016 3.3.7200.0
Dell Help & Support Dell Inc. 11/4/2015 52.5 MB 2.0.366.0
Dell Product Registration Dell Inc. 6/20/2016 31.9 MB 3.0.97.0
Dell Shop 5/1/2016
Dell SupportAssist Dell 1/31/2016 197 MB 1.2.6745.47
Dell SupportAssistAgent Dell 11/6/2015 29.0 MB 1.1.1.14
Dell System Detect Dell 11/6/2015 6.7.0.2
Dell Update Dell Inc. 11/4/2015 2.91 MB 1.7.1015.0
DisplayLink Core Software DisplayLink Corp. 1/15/2016 26.6 MB 7.9.1336.0
Dropbox 20 GB Dropbox, Inc. 10/29/2015 2.90 MB 1.0.8.0
DW WLAN Card Dell Inc. 12/27/2015 1.519.0.0
FlashGet3.7 http://www.FlashGet.com 2/13/2016 3.7.0.1220
Get Office Microsoft Corporation 9/1/2016 17.7319.23511.0
Get Skype Skype 11/5/2015 3.2.1.0
Get Started Microsoft Corporation 9/1/2016 4.0.12.0
Google Chrome Google Inc. 11/4/2015 51.0.2704.103
Groove Music Microsoft Corporation 11/12/2015 3.6.15131.0
H&R Block Deluxe + Efile + State 2015 HRB Technology, LLC. 4/3/2016 119 MB 15.05.8101
H&R Block New York 2015 HRB Technology, LLC. 4/3/2016 13.2 MB 1.15.11301
Intel® Dynamic Platform and Thermal Framework Intel Corporation 10/29/2015 8.1.10602.174
Intel® HID Event Filter Intel Corporation 10/29/2015 1.1.0.310
Intel® Management Engine Components Intel Corporation 10/29/2015 11.0.0.1162
Intel® Processor Graphics Intel Corporation 12/27/2015 20.19.15.4300
Intel® Rapid Storage Technology Intel Corporation 10/29/2015 14.5.2.1088
Intel® Serial IO Intel Corporation 10/29/2015 30.100.1519.7
Intel® Security Assist Intel Corporation 10/29/2015 2.85 MB 1.0.0.532
iTunes Apple Inc. 7/16/2016 215 MB 12.4.1.6
Logitech Options Logitech 12/27/2015 16.7 MB
Mail and Calendar Microsoft Corporation 4/5/2016 17.6568.46361.0
Malwarebytes Anti-Malware version 2.2.1.1043 Malwarebytes 5/25/2016 66.9 MB 2.2.1.1043
Maps Microsoft Corporation 5/24/2016 4.1603.1190.0
Microsoft Office Professional Plus 2016 - en-us Microsoft Corporation 9/1/2016 16.0.7167.2040
Microsoft Project Professional 2016 - en-us Microsoft Corporation 9/1/2016 16.0.7167.2040
Microsoft Solitaire Collection Microsoft Studios 8/22/2016 3.11.7293.0
Microsoft Visio Professional 2016 - en-us Microsoft Corporation 9/1/2016 16.0.7167.2040
Microsoft Visual C++ 2013 Preview Redistributable (x64) - 12.0.20617 Microsoft Corporation 12/27/2015 20.6 MB 12.0.20617.1
Money Microsoft Corporation 9/1/2016 4.13.47.0
Movies & TV Microsoft Corporation 9/1/2016 3.6.23941.0
News Microsoft Corporation 9/1/2016 4.13.47.0
OneNote 5/3/2016
People Microsoft Corporation 7/24/2016 10.0.11902.0
Phone Companion Microsoft Corporation 9/1/2016 10.1608.2211.0
Photos Microsoft Corporation 8/20/2016 16.722.10060.0
Realtek Card Reader Realtek Semiconductor Corp. 10/29/2015 10.0.10125.21277
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 11/22/2015 368 MB 6.0.1.7654
Realtek USB Ethernet Controller All-In-One Windows Driver Realtek 10/29/2015 10.1.506.2015
Rosetta Stone Ltd Services Rosetta Stone Ltd. 2/10/2016 10.0 MB 3.2.21
Rosetta Stone TOTALe Rosetta Stone, Ltd 2/10/2016 135 MB 4.5.5.0
Samsung Kies3 Samsung Electronics Co., Ltd. 7/16/2016 89.0 MB 3.2.16044.2
Samsung USB Driver for Mobile Phones Samsung Electronics Co., Ltd. 2/8/2016 24.6 MB 1.5.59.0
SiteAdvisor McAfee, Inc. 11/6/2015 3.7.203
Smart Switch Samsung Electronics Co., Ltd. 2/8/2016 64.4 MB 4.1.16021.15
Sports Microsoft Corporation 9/1/2016 4.13.47.0
Spotify Spotify AB 2/7/2016 1.0.21.143.g76c19bcd
Store Microsoft Corporation 5/10/2016 11602.1.26.0
Tableau 9.2 (9200.16.0303.2316) Tableau Software 3/16/2016 713 MB 9.2.1105
Thunderbolt™ Software Intel Corporation 10/29/2015 15.2.35.250
Trigger External Graphics Family 16.01.0113.0179 MCT Corp 2/7/2016 16.01.0113.0179
Twitter Twitter Inc. 8/22/2016 5.2.0.0
Voice Recorder Microsoft Corporation 9/1/2016 10.1608.2211.0
Weather Microsoft Corporation 9/1/2016 4.13.47.0
WIDCOMM Bluetooth Software Broadcom Corporation 10/29/2015 231 MB 12.0.1.720
Windows 10 Upgrade Assistant Microsoft Corporation 7/15/2016 5.00 MB 1.4.9200.17329
WinPcap 4.1.3 Riverbed Technology, Inc. 11/5/2015 4.1.0.2980
WinRAR 5.31 (64-bit) win.rar GmbH 2/10/2016 5.31.0
WinZip 15.5 WinZip Computing, S.L. 2/10/2016 36.9 MB 15.5.9468
Xbox Microsoft Corporation 9/18/2016 19.21.9012.0
ZyXEL PLA Series Configuration ZyXEL 11/4/2015 26.8 MB 7.00.0004
 
 
Thanks!!!!!
 


#8 buddy215

buddy215

  • Moderator
  • 13,118 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:06 PM

Posted 19 September 2016 - 07:50 AM

Suggest Disabling these Scheduled Tasks: Use CCleaner by clicking on each item and choosing Disable on the right.

Yes Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes Task CreateExplorerShellUnelevatedTask Microsoft Corporation C:\Windows\explorer.exe /NOUACCHECK
Yes Task Dell SupportAssistAgent AutoUpdate Dell Inc. C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe AutoUpdate
Yes Task DropboxOEM "%ProgramFiles(x86)%\Dropbox\DropboxOEM\DropboxOEM.exe" auto
Yes Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes Task OneDrive Standalone Update Task Microsoft Corporation C:\Users\eathu\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Yes Task PCDDataUploadTask "uaclauncher.exe" -lloc dataupload --ignoresecondarysplash --runsilently --skipidlewait
 
Suggest Disabling these Windows Startups: Use CCleaner by clicking on each item and choosing Disable on the right.
Yes HKCU:Run Amazon Music Amazon Services LLC "C:\Users\eathu\AppData\Local\Amazon Music\Amazon Music Helper.exe"
Yes HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Yes HKCU:Run DAEMON Tools Pro Agent Disc Soft Ltd "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
Yes HKCU:Run Spotify Spotify Ltd "C:\Users\eathu\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
Yes HKCU:Run Spotify Web Helper Spotify Ltd "C:\Users\eathu\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
Yes HKCU:RunOnce Uninstall C:\Users\eathu\AppData\Local\Microsoft\OneDrive\17.3.6386.0412_1\amd64 Microsoft Corporation C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\eathu\AppData\Local\Microsoft\OneDrive\17.3.6386.0412_1\amd64"
Yes HKLM:Run Acrobat Assistant 8.0 Adobe Systems Inc. "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
Yes HKLM:Run Adobe Acrobat Speed Launcher Adobe Systems Incorporated "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
Yes HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Yes HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
 
Uninstall these programs:
Candy Crush Saga king.com 9/1/2016 1.830.4.0
SiteAdvisor McAfee, Inc. 11/6/2015 3.7.203
 
Dell has several Customer assist programs installed. If you don't use them I suggest you uninstall them.
 
After doing the above and rebooting....tell me what problem(s) exist or if the computer is running up to par.
 
 
 
 
 
 
 
 
 

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#9 Mrpug

Mrpug
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:07:06 PM

Posted 01 October 2016 - 08:39 PM

Hi,

 

Thanks for your help, So far I think the only issue is that Google Chrome seem to take a bit longer to open. Any Suggestion with that?

 

Thanks!



#10 buddy215

buddy215

  • Moderator
  • 13,118 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:06 PM

Posted 02 October 2016 - 08:09 AM

It may be slower because of allowing it to remember the tabs that were opened during prior session or the cached files are accumulating. Last I looked

Chrome did not have a setting for deleting cached files when closing. Run CCleaner often to remove those.

 

If you don't have an ad blocker installed I suggest using Adblock Plus. If you install it, open it by clicking on its ABP icon and choose Filter Preferences.

UNcheck the box next to Allow some non-intrusive advertisements.

Adblock Plus - Chrome Web Store

 

Stop third party cookies....aka....ad/ tracking cookies from installing in Chrome. Once they have been blocked, run CCleaner to remove the existing ones.

How to disable third-party cookies in all major web browsers


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users