Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Need help. Not sure if infected


  • Please log in to reply
10 replies to this topic

#1 zubadoo

zubadoo

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 13 November 2016 - 01:03 PM

Noticed a 9mb file in windows/temp directory called HISTORY with no extension.  Opened it with textpad & it seems to have my chrome browsing history in it.  Scanned w/ malwarebytes & trendmicro & nothing came up.  Need help please.  Thank you.



BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,122 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:10:59 AM

Posted 13 November 2016 - 01:37 PM

Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the

Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of toolbars....especially Google.

After install, open CCleaner and run by clicking on the Run Cleaner button in the bottom right corner.

CCleaner - PC Optimization and Cleaning - Free Download

 

Download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
  • download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 zubadoo

zubadoo
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 13 November 2016 - 03:34 PM

All steps followed.

 

Here is AdwCleaner[C0] log:

 

# AdwCleaner v6.030 - Logfile created 13/11/2016 at 15:09:31
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-10-18.1 [Local]
# Operating System : Windows 10 Home  (X64)
# Username : Mark - M-PC
# Running from : C:\Users\Mark\Desktop\clean\AdwCleaner.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support
 
 
 
***** [ Services ] *****
 
 
 
***** [ Folders ] *****
 
 
 
***** [ Files ] *****
 
 
 
***** [ DLL ] *****
 
 
 
***** [ WMI ] *****
 
 
 
***** [ Shortcuts ] *****
 
 
 
***** [ Scheduled Tasks ] *****
 
 
 
***** [ Registry ] *****
 
[-] Key deleted: HKLM\SOFTWARE\Classes\InstallerControl.InstControl
[-] Key deleted: HKLM\SOFTWARE\Classes\InstallerControl.InstControl.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\InstallerControl.InstControl
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\InstallerControl.InstControl.1
[-] Key deleted: HKLM\SOFTWARE\Google\Chrome\Extensions\bmiabdepfhhiieiipmeecdmeljggmfee
[-] Key deleted: HKLM\SOFTWARE\Google\Chrome\Extensions\fmgckcapmffomaifonnhgkfdgljnkpgi
 
 
***** [ Web browsers ] *****
 
[-] [C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: aol.com
[-] [C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: ask.com
 
 
*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C0].txt - [1453 Bytes] - [13/11/2016 15:09:31]
C:\AdwCleaner\AdwCleaner[S0].txt - [1697 Bytes] - [13/11/2016 15:06:45]
C:\AdwCleaner\AdwCleaner[S1].txt - [1770 Bytes] - [13/11/2016 15:08:11]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1672 Bytes] ##########
 
Here is JRT log:
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 10 Home x64 
Ran by Mark (Administrator) on Sun 11/13/2016 at 15:25:31.58
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 0 
 
 
 
 
Registry: 0 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 11/13/2016 at 15:27:42.64
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 


#4 buddy215

buddy215

  • Moderator
  • 13,122 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:10:59 AM

Posted 13 November 2016 - 05:49 PM

Post the three lists mentioned below using CCleaner.

Open CCleaner and click on Tools. Choose Startups. On that page you will see a list of Windows Startups and at the top tabs for each browser and Scheduled Tasks.

At the bottom right of that page you will see a button when clicked will allow you to Copy and Paste the list of Windows Startups and Scheduled Tasks into your next

post. Please do that.

 

Open CCleaner and click on Tools. Choose Uninstall. On that page you will see a list of programs installed on your computer and at the bottom right of that page you

will see a button when clicked will allow you to Copy and Paste that list in your next post. Please do that.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#5 zubadoo

zubadoo
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 13 November 2016 - 07:17 PM

Windows Startups:

No HKCU:Run Amazon Drive Amazon.com Inc. Mark "C:\Users\Mark\AppData\Local\Amazon Drive\AmazonDrive.exe" --source-autostart
No HKCU:Run CAHeadless Adobe Systems Incorporated Mark c:\Program Files (x86)\Adobe\Elements 11 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
Yes HKCU:Run CCleaner Piriform Ltd Mark "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
Yes HKCU:Run CCleaner Monitoring Piriform Ltd Mark "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
No HKCU:Run Dropbox Update Dropbox, Inc. Mark "C:\Users\Mark\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
Yes HKCU:Run OneDrive Microsoft Corporation Mark "C:\Users\Mark\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
Yes HKCU:Run Second Copy Centered Systems Mark "C:\Program Files (x86)\Second Copy 8\SecCopy.exe"
Yes HKLM:Run AdobeAAMUpdater-1.0 Adobe Systems Incorporated All users "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
No HKLM:Run APSDaemon Apple Inc. All users "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
Yes HKLM:Run BeatsOSDApp Hewlett-Packard All users C:\Program Files\IDT\WDM\beats64.exe
No HKLM:Run CanonQuickMenu CANON INC. All users C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
Yes HKLM:Run DT_HPO Portrait Displays, Inc. All users "C:\Program Files (x86)\Common Files\Portrait Displays\Libs\DTuneStartup.exe" -HPO
Yes HKLM:Run IgfxTray Intel® pGFX All users "C:\WINDOWS\system32\igfxtray.exe"
Yes HKLM:Run IJNetworkScannerSelectorEX CANON INC. All users C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
Yes HKLM:Run Logitech Download Assistant Microsoft Corporation All users C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
Yes HKLM:Run Malwarebytes Anti-Exploit Malwarebytes Corporation All users C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
Yes HKLM:Run Platinum Trend Micro Inc. All users "C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe" 1
Yes HKLM:Run PwmConsole.exe Trend Micro Inc. All users "C:\Program Files\Trend Micro\TMIDS\PwmConsole.exe" -s
No HKLM:Run QuickTime Task Apple Inc. All users "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
Yes HKLM:Run SetDefault Hewlett-Packard Development Company, L.P. All users C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe
Yes HKLM:Run SunJavaUpdateSched Oracle Corporation All users "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Yes HKLM:Run SysTrayApp All users C:\Program Files\IDT\WDM\sttray64.exe
Yes HKLM:Run Trend Micro Client Framework Trend Micro Inc. All users "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
Yes Startup Common ColorVisionStartup.lnk Datacolor All users C:\Program Files (x86)\ColorVision\ColorVisionStartup\ColorVisionStartup.exe
No Startup Common GoPro Importer.lnk GoPro All users C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe
No Startup User Dropbox.lnk Dropbox, Inc. Mark C:\Users\Mark\AppData\Roaming\Dropbox\bin\Dropbox.exe

 

Scheduled Tasks:

Yes Task Adobe Acrobat Update Task Adobe Systems Incorporated All users C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Yes Task AdobeAAMUpdater-1.0-MicrosoftAccount-xxxxxx@yahoo.com Adobe Systems Incorporated Mark C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
Yes Task CCleanerSkipUAC Piriform Ltd Mark "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes Task DropboxUpdateTaskUserS-1-5-21-4032796890-2067116896-1109294571-1001Core1d23778a1e43f8e Dropbox, Inc. Mark C:\Users\Mark\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
Yes Task DropboxUpdateTaskUserS-1-5-21-4032796890-2067116896-1109294571-1001UA1d23778a25b7555 Dropbox, Inc. Mark C:\Users\Mark\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
Yes Task GoogleUpdateTaskMachineCore Google Inc. All users C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes Task GoogleUpdateTaskMachineUA Google Inc. All users C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes Task HPCeeScheduleForMark Hewlett-Packard Mark C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForMark (null)
Yes Task IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 Intel Corporation All users C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe --automatic
Yes Task IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon Intel Corporation All users "C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe" --automatic
Yes Task OneDrive Standalone Update Task Microsoft Corporation Mark C:\Users\Mark\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
No Task Optimize Start Menu Cache Files-S-1-5-21-4032796890-2067116896-1109294571-1001 Mark
 

Programs Installed:

3D Builder Microsoft Corporation 10/1/2016 11.1.9.0 All users
7-Zip 9.20 (x64 edition) Igor Pavlov 11/8/2013 3.79 MB 9.20.00.0 All users
Adobe Photoshop Elements 11 Adobe Systems Incorporated 10/13/2016 315 MB 11.0 All users
Adobe Photoshop Lightroom 5.6 64-bit Adobe Systems Incorporated 9/10/2014 1.19 GB 5.6.0 All users
Adobe Premiere Elements 11 11/8/2013 738 MB All users
Adobe Premiere Elements 11 Adobe Systems Incorporated 10/1/2016 723 MB 11.0 All users
Adobe Reader XI (11.0.18) Adobe Systems Incorporated 10/13/2016 371 MB 11.0.18 All users
Alarms & Clock Microsoft Corporation 10/25/2016 10.1609.2843.0 All users
Amazon Drive Amazon.com, Inc. 10/1/2016 97.6 MB 3.5.1.46 Mark
Amcrest IP Config 2.00.1 Amcrest Technologies LLC 10/1/2016 2.00.1 All users
App connector Microsoft Corporation 10/1/2016 1.3.3.0 All users
App Installer Microsoft Corporation 10/1/2016 1.0.2181.0 All users
Apple Application Support Apple Inc. 10/21/2014 83.6 MB 2.3.6 All users
Apple Software Update Apple Inc. 10/21/2014 4.53 MB 2.1.3.127 All users
BIG-IP Edge Client Components (All Users) F5 Networks, Inc. 10/1/2016 16.6 MB 70.2014.0312.0634 All users
Bonjour Apple Inc. 11/8/2013 3.23 MB 3.0.0.10 All users
BookWright version 1.1.122 Blurb, Inc. 12/29/2015 91.5 MB 1.1.122 All users
Box for Windows 8 Box, Inc. 10/1/2016 2.1.4.4 All users
Broadcom 802.11 Network Adapter Broadcom Corporation 10/1/2016 6.30.223.64 All users
Broadcom Bluetooth Software Broadcom Corporation 11/8/2013 330 MB 12.0.0.6300 All users
Calculator Microsoft Corporation 10/1/2016 10.1608.2213.0 All users
Camera Microsoft Corporation 10/1/2016 2016.816.20.0 All users
Candy Crush Soda Saga king.com 11/4/2016 1.76.1500.0 All users
Canon Easy-WebPrint EX Canon Inc. 10/1/2016 18.5 MB 1.5.0.0 All users
Canon IJ Network Scanner Selector EX Canon Inc. 10/1/2016 1.51 MB All users
Canon IJ Network Tool Canon Inc. 10/1/2016 3.3.0 All users
Canon IJ Scan Utility Canon Inc. 10/1/2016 7.21 MB All users
CANON iMAGE GATEWAY Task for ZoomBrowser EX Canon Inc. 10/1/2016 27.7 MB 1.7.0.4 All users
Canon Inkjet Print Utility Canon Inc. 10/1/2016 2.6.0.5 All users
Canon Internet Library for ZoomBrowser EX Canon Inc. 10/1/2016 27.7 MB 1.6.3.9 All users
Canon MG5500 series MP Drivers Canon Inc. 10/1/2016 1.01 All users
Canon MG5500 series On-screen Manual Canon Inc. 10/1/2016 7.6.1 All users
Canon MG5500 series User Registration ‭Canon Inc. 10/1/2016 All users
Canon MOV Decoder Canon Inc. 10/1/2016 4.69 MB 1.4.0.15 All users
Canon MOV Encoder Canon Inc. 10/1/2016 2.92 MB 1.2.0.10 All users
Canon MovieEdit Task for ZoomBrowser EX Canon Inc. 10/1/2016 27.7 MB 3.3.0.15 All users
Canon My Image Garden Canon Inc. 10/1/2016 331 MB 2.0.1 All users
Canon My Image Garden Design Files Canon Inc. 10/1/2016 331 MB 2.0.0 All users
Canon My Printer Canon Inc. 10/1/2016 11.3 MB 3.1.0 All users
Canon Quick Menu Canon Inc. 10/1/2016 19.6 MB 2.2.1 All users
Canon Utilities CameraWindow Canon Inc. 10/1/2016 1.47 MB 7.3.0.4 All users
Canon Utilities Digital Photo Professional Canon Inc. 10/1/2016 69.6 MB 3.13.51.1 All users
Canon Utilities EOS Utility Canon Inc. 10/1/2016 56.8 MB 2.13.40.0 All users
Canon Utilities MyCamera Canon Inc. 10/1/2016 7.05 MB 7.3.0.5 All users
Canon Utilities PhotoStitch Canon Inc. 10/1/2016 6.07 MB 3.1.23.47 All users
Canon Utilities Picture Style Editor Canon Inc. 10/1/2016 46.8 MB 1.13.30.0 All users
Canon Utilities WFT-E1/E2/E3/E4/E5 Utility Canon Inc. 10/1/2016 4.50 MB 3.4.0.2 All users
Canon Utilities ZoomBrowser EX Canon Inc. 10/1/2016 27.7 MB 6.4.1.11 All users
Canon ZoomBrowser EX Memory Card Utility Canon Inc. 10/1/2016 12.7 MB 1.2.2.11 All users
CCleaner Piriform 10/1/2016 18.3 MB 5.20 All users
CyberLink LabelPrint CyberLink Corp. 11/8/2013 196 MB 2.5.4.6522 All users
CyberLink Media Suite 10 CyberLink Corp. 11/8/2013 58.3 MB 10.0.4.3003 All users
CyberLink Power2Go 8 CyberLink Corp. 11/8/2013 258 MB 8.0.4.2921 All users
CyberLink PowerDVD 12 CyberLink Corp. 11/8/2013 197 MB 12.0.1.3007 All users
CyberLink YouCam CyberLink Corp. 11/8/2013 192 MB 3.5.6.6119 All users
Dragon Assistant Application en-US version 1.5.7 Nuance Communications, Inc. 11/8/2013 38.5 MB 1.5.7 All users
Dragon Assistant Core Recognition Service version 1.1.10 Nuance Communications, Inc. 11/8/2013 55.8 MB 1.1.10 All users
Dragon Assistant Language Data en-US version 1.1.3 Nuance Communications, Inc. 11/8/2013 175 MB 1.1.3 All users
Dragon Assistant version 1.5.7 Nuance Communications, Inc. 11/8/2013 175 MB 1.5.7 All users
Dropbox Dropbox, Inc. 11/5/2016 13.4.21 Mark
eBay eBay, Inc 10/1/2016 1.6.0.34 All users
Energy Star Hewlett-Packard Company 11/8/2013 11.1 MB 1.0.9 All users
Feedback Hub Microsoft Corporation 10/1/2016 1.1608.2441.0 All users
Fresh Paint Microsoft Corporation 10/1/2016 3.1.10156.0 All users
Get Office Microsoft Corporation 10/1/2016 17.7420.23751.0 All users
Get Started Microsoft Corporation 10/21/2016 4.1.15.0 All users
Getting Started with Windows 8 Hewlett-Packard Company 10/1/2016 1.6.0.0 All users
Google Chrome Google Inc. 1/25/2014 487 MB 54.0.2840.99 All users
GoPro Studio 2.5.1 GoPro, Inc. 10/1/2016 2.5.1 All users
Groove Music Microsoft Corporation 10/27/2016 10.16092.10311.0 All users
H&R Block Deluxe + Efile + State 2013 HRB Technology, LLC. 4/12/2014 196 MB 13.05.6502 All users
H&R Block Deluxe + Efile + State 2014 HRB Technology, LLC. 4/13/2015 211 MB 14.05.7401 All users
H&R Block Deluxe + Efile + State 2015 HRB Technology, LLC. 4/18/2016 205 MB 15.05.8101 All users
HP AiO Printer Remote HP Inc. 10/1/2016 60.1.158.0 All users
HP Connected Music (Meridian - installer) Meridian Audio Ltd 10/1/2016 848 KB 1.0 All users
HP Connected Music (Meridian - player) Meridian Audio Ltd 10/1/2016 24.1 MB 1.1 (build 88) hp Mark
HP Games Hewlett-Packard Company 10/1/2016 1.0.0.50 All users
HP Launch Box Hewlett-Packard Company 11/8/2013 3.61 MB 1.1.5 All users
HP My Display TouchSmart Edition Portrait Displays, Inc. 11/8/2013 9.24 MB 2.05.003 All users
HP Registration Hewlett-Packard Company 10/1/2016 1.2.1.166 All users
HP Registration Service Hewlett-Packard 11/8/2013 28.0 MB 1.2.6668.4491 All users
HP Support Assistant Hewlett-Packard Company 11/8/2013 108 MB 7.2.23.56 All users
HP Support Information Hewlett-Packard 11/8/2013 3.37 MB 12.00.0000 All users
HPDetect HP 10/26/2014 7.43 MB 1.0.0.0 Mark
IDT Audio IDT 11/8/2013 88.3 MB 1.0.6486.0 All users
Intel® Management Engine Components Intel Corporation 11/8/2013 9.0.0.1310 All users
Intel® Processor Graphics Intel Corporation 10/26/2014 10.18.10.3325 All users
Intel® SDK for OpenCL - CPU Only Runtime Package Intel Corporation 11/8/2013 3.0.0.63463 All users
Intel® Update Manager Intel Corporation 10/18/2016 46.3 MB 3.4.1942 All users
Intel® WiDi Intel Corporation 2/15/2014 168 MB 4.2.24.0 All users
Java 7 Update 71 Oracle 11/30/2014 146 MB 7.0.710 All users
Kindle AMZN Mobile LLC 10/1/2016 2.1.0.2 All users
Mail and Calendar Microsoft Corporation 11/11/2016 17.7466.41147.0 All users
Malwarebytes Anti-Exploit version 1.9.1.1235 Malwarebytes 10/29/2016 7.27 MB 1.9.1.1235 All users
Malwarebytes Anti-Malware version 2.2.1.1043 Malwarebytes 7/2/2016 56.7 MB 2.2.1.1043 All users
Maps Microsoft Corporation 10/1/2016 5.1609.2651.0 All users
Messaging Microsoft Corporation 10/1/2016 3.19.1001.0 All users
Microsoft Mahjong Microsoft Studios 11/9/2016 3.3.10255.0 All users
Microsoft Office Professional Plus 2013 - en-us Microsoft Corporation 11/9/2016 2.75 GB 15.0.4867.1003 All users
Microsoft Solitaire Collection Microsoft Studios 11/2/2016 3.12.10310.0 All users
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 11/8/2013 3.85 MB 3.1.0000 All users
Microsoft Sticky Notes Microsoft Corporation 10/19/2016 1.1.41.0 All users
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 11/8/2013 7.35 MB 8.0.56336 All users
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 4/3/2013 9.19 MB 8.0.61000 All users
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 4/3/2013 1.63 MB 9.0.30729 All users
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 5/1/2014 830 KB 9.0.30729.6161 All users
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 4/3/2013 5.57 MB 9.0.30729 All users
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 11/8/2013 5.55 MB 9.0.30729.4148 All users
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 5/1/2014 4.92 MB 9.0.30729.6161 All users
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 Microsoft Corporation 2/14/2015 18.0 MB 10.0.40219 All users
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 Microsoft Corporation 2/14/2015 19.0 MB 10.0.40219 All users
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 10/1/2016 20.5 MB 11.0.61030.0 All users
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 10/1/2016 17.3 MB 11.0.61030.0 All users
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 Microsoft Corporation 10/1/2016 20.5 MB 12.0.21005.1 All users
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 10/1/2016 17.1 MB 12.0.30501.0 All users
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 10/1/2016 2.42 MB 10.0.50903 All users
Microsoft Wi-Fi Microsoft Corporation 10/1/2016 1.1604.4.0 All users
Money Microsoft Corporation 10/14/2016 4.16.19.0 All users
Movies & TV Microsoft Corporation 10/25/2016 10.16092.10311.0 All users
Mozilla Firefox 44.0.2 (x86 en-US) Mozilla 10/1/2016 87.5 MB 44.0.2 All users
Mozilla Maintenance Service Mozilla 10/1/2016 231 KB 44.0.2.5884 All users
MSN Food & Drink Microsoft Corporation 10/1/2016 3.0.4.336 All users
MSN Health & Fitness Microsoft Corporation 10/1/2016 3.0.4.336 All users
MSN Travel Microsoft Corporation 10/1/2016 3.0.4.336 All users
Netflix Netflix, Inc. 10/1/2016 6.13.45.0 All users
News Microsoft Corporation 11/3/2016 4.16.22.0 All users
Nik Collection Google 10/1/2016 1.2.11 All users
Norton Studio Symantec Corporation 10/1/2016 1.5.0.41 All users
OneNote Microsoft Corporation 11/4/2016 17.7466.57771.0 All users
Paid Wi-Fi & Cellular Microsoft Corporation 10/1/2016 1.1607.6.0 All users
Pdf995 (installed by H&R Block) 10/1/2016 All users
PdfEdit995 (installed by H&R Block) 10/1/2016 All users
People Microsoft Corporation 11/4/2016 10.1.2850.0 All users
Phone Microsoft Corporation 10/1/2016 1.10.15000.0 All users
Phone Companion Microsoft Corporation 10/1/2016 10.1609.2561.0 All users
Photos Microsoft Corporation 10/1/2016 16.722.10060.0 All users
Pinger Pinger Inc. 10/1/2016 31.3 MB 1.1.1.2 All users
QuickTime 7 Apple Inc. 10/21/2014 98.6 MB 7.75.80.95 All users
Reader Microsoft Corporation 10/1/2016 6.4.9926.18471 All users
Realtek Card Reader Realtek Semiconductor Corp. 11/8/2013 37.1 MB 6.2.9200.29064 All users
Second Copy 8 Centered Systems 2/2/2014 15.1 MB 8.1.2.0 All users
Skype Preview Skype 11/4/2016 11.9.251.0 All users
Snapfish Snapfish 10/1/2016 6.0.588.0 All users
Sports Microsoft Corporation 10/14/2016 4.16.17.0 All users
Spyder2express 10/1/2016 All users
Stardock ModernMix Stardock Software, Inc. 10/1/2016 8.44 MB 1.12 All users
Stardock Start8 Stardock Software, Inc. 10/1/2016 13.7 MB 1.31 All users
Store Microsoft Corporation 11/4/2016 11610.1001.10.0 All users
Store Purchase App Microsoft Corporation 10/1/2016 11608.1000.2431.0 All users
Sway Microsoft Corporation 10/1/2016 17.7369.45141.0 All users
Taptiles Microsoft Studios 10/1/2016 2.4.1412.201 All users
Trend Micro Maximum Security Trend Micro Inc. 6/6/2016 262 MB 10.0 All users
Trend Micro Password Manager Trend Micro Inc. 10/1/2016 100 MB 1.9.1189 All users
Twitter Twitter Inc. 10/1/2016 5.3.5.0 All users
UxStyle The Within Network, LLC 10/1/2016 2.84 MB 0.2.3.0 All users
Visual Studio 2012 x64 Redistributables AVG Technologies 11/13/2016 1.89 MB 14.0.0.1 All users
Visual Studio 2012 x86 Redistributables AVG Technologies CZ, s.r.o. 11/13/2016 1.69 MB 14.0.0.1 All users
Voice Recorder Microsoft Corporation 10/1/2016 10.1608.2211.0 All users
Weather Microsoft Corporation 10/20/2016 4.16.15.0 All users
WildTangent Games WildTangent 10/1/2016 29.8 MB 1.0.4.0 All users
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices  (03/07/2012 ) GoPro 10/1/2016 03/07/2012 All users
Windows Live Essentials Microsoft Corporation 11/8/2013 16.4.3505.0912 All users
Windows Reading List Microsoft Corporation 10/1/2016 6.3.9654.21234 All users
Windows Scan Microsoft Corporation 10/1/2016 6.3.9654.17133 All users
Wordament Microsoft Studios 10/1/2016 2.8.4.0 All users
Xbox Microsoft Corporation 11/12/2016 22.23.11005.0 All users
Xbox Identity Provider Microsoft Corporation 10/1/2016 11.19.19003.0 All users
Xvid Video Codec Xvid Team 10/1/2016 10.7 MB 1.3.4 All users
YouCam for HP CYBERLINKCOM CORP 10/1/2016 1.0.2.29632 All users


#6 buddy215

buddy215

  • Moderator
  • 13,122 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:10:59 AM

Posted 13 November 2016 - 08:25 PM

Suggest Disabling these Startups: Use CCleaner by clicking on each item and choosing Disable on the right.

Yes HKCU:Run CCleaner Piriform Ltd Mark "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
Yes HKCU:Run CCleaner Monitoring Piriform Ltd Mark "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Yes HKLM:Run IgfxTray Intel® pGFX All users "C:\WINDOWS\system32\igfxtray.exe"
Yes HKLM:Run Logitech Download Assistant Microsoft Corporation All users C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
Yes HKLM:Run SysTrayApp All users C:\Program Files\IDT\WDM\sttray64.exe
 
Disable these Tasks: Use CCleaner by clicking on each item and choosing Disable on the right.
Yes Task DropboxUpdateTaskUserS-1-5-21-4032796890-2067116896-1109294571-1001Core1d23778a1e43f8e Dropbox, Inc. Mark C:\Users\Mark\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
Yes Task DropboxUpdateTaskUserS-1-5-21-4032796890-2067116896-1109294571-1001UA1d23778a25b7555 Dropbox, Inc. Mark C:\Users\Mark\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
Yes Task GoogleUpdateTaskMachineUA Google Inc. All users C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes Task HPCeeScheduleForMark Hewlett-Packard Mark C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForMark (null)
 
Uninstall these programs:
Candy Crush Soda Saga king.com 11/4/2016 1.76.1500.0 All users
eBay eBay, Inc 10/1/2016 1.6.0.34 All users
Java 7 Update 71 Oracle 11/30/2014 146 MB 7.0.710 All users
Mozilla Firefox 44.0.2 (x86 en-US) Mozilla 10/1/2016 87.5 MB 44.0.2 All users (Uninstall or Update...your choice)
Norton Studio Symantec Corporation 10/1/2016 1.5.0.41 All users

QuickTime 7 Apple Inc. 10/21/2014 98.6 MB 7.75.80.95 All users

Snapfish Snapfish 10/1/2016 6.0.588.0 All users (Keep...if you actually use it)

WildTangent Games WildTangent 10/1/2016 29.8 MB 1.0.4.0 All users

 

After completing the above....please tell me if the computer is running up to par or not....any problems


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#7 zubadoo

zubadoo
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 14 November 2016 - 08:15 PM

Implemented all of your suggestions, will keep my eye on it to see if any more issues.  Any idea what the AdwCleaner hits were for?  Thank for your help w/ this.



#8 buddy215

buddy215

  • Moderator
  • 13,122 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:10:59 AM

Posted 14 November 2016 - 08:38 PM

I think two of them were Trend Micro toolbar/ extensions in Chrome. Which you don't need and may actually provide ad income for TM....not sure about that.

 

You're welcome...happy surfin'


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#9 zubadoo

zubadoo
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 19 November 2016 - 11:46 AM

still having the original issue



#10 buddy215

buddy215

  • Moderator
  • 13,122 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:10:59 AM

Posted 19 November 2016 - 01:11 PM

Try closing all of Chrome processes. Run CCleaner so it will clean all of of Chrome's cached history files. Then before reopening Chrome see if you find the

same file and the same size of content. I'm thinking it is not something malicious but the way Chrome stores/ hides certain file content.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#11 zubadoo

zubadoo
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 19 November 2016 - 01:54 PM

ok, I'll try this.  Thanks






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users