Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Strange files in StartUp folders


  • Please log in to reply
7 replies to this topic

#1 LuvHorses

LuvHorses

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:09:42 AM

Posted 22 October 2017 - 12:20 PM

Beginning on Oct 4th my download data usage increased from 2GB to 15GB per day without any known changes to system.  Discovered two files in startup - bvekb and ykniqysri which when shredded or deleted always regenerate themselves.  Also discovered esyjr.tsis in another folder.  Current on anti-virus, malware and firewalls.  All of these files have a origination date of Oct 4th or 11th and appear to be dependent on each other.  Can someone please tell me what is going on?  Thanks.



BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,103 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:09:42 AM

Posted 23 October 2017 - 06:44 AM

Welcome to BC...

 

Try using CCleaner to find what might be causing the download increase. It could also be adware running in the background.

 

Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the

Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of toolbars....especially Google.

After install, open CCleaner and run by clicking on the Run Cleaner button in the bottom right corner.

CCleaner - PC Optimization and Cleaning - Free Download

 

Download AdwCleaner by Xplode onto your desktop. (compatible with Windows 7, 8 and 10)

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
  • download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message

Post the three lists mentioned below using CCleaner.

Open CCleaner and click on Tools. Choose Startups. On that page you will see a list of Windows Startups and at the top tabs for each browser and Scheduled Tasks.

At the bottom right of that page you will see a button when clicked will allow you to Copy and Paste the list of Windows Startups and Scheduled Tasks into your next

post. Please do that.

 

Open CCleaner and click on Tools. Choose Uninstall. On that page you will see a list of programs installed on your computer and at the bottom right of that page you

will see a button when clicked will allow you to Copy and Paste that list in your next post. Please do that.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 LuvHorses

LuvHorses
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:09:42 AM

Posted 24 October 2017 - 10:22 AM

The unwanted startup files appear to be gone.  Thank you.  AdwCleaner would not install until Junkware was run.  Malwarebytes also found 11 issues which included the unwanted startup files after junkware was run.
 
 
 
Windows Startup:
Yes HKCU:Run Amazon Cloud Player Amazon Services LLC Georgie "C:\Users\Georgie\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe"
Yes HKCU:Run CCleaner Monitoring Piriform Ltd Georgie "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
No HKLM:Run (default) All users
Yes HKLM:Run APSDaemon Apple Inc. All users "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
Yes HKLM:Run BATINDICATOR Hewlett-Packard All users C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe
Yes HKLM:Run CanonMyPrinter CANON INC. All users C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
Yes HKLM:Run CanonSolutionMenu CANON INC. All users C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon
No HKLM:Run ConnectionCenter All users "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
Yes HKLM:Run HP Software Update Hewlett-Packard All users c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
Yes HKLM:Run hpsysdrv Hewlett-Packard All users c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
Yes HKLM:Run IAStorIcon Intel Corporation All users C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
Yes HKLM:Run IJNetworkScanUtility CANON INC. All users C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
Yes HKLM:Run iTunesHelper Apple Inc. All users "C:\Program Files\iTunes\iTunesHelper.exe"
Yes HKLM:Run LaunchHPOSIAPP Hewlett-Packard All users C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe
Yes HKLM:Run mcui_exe McAfee, Inc. All users "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
No HKLM:Run Norton Online Backup Symantec Corporation All users C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
No HKLM:Run PDF Complete PDF Complete Inc All users C:\Program Files (x86)\PDF Complete\pdfsty.exe
No HKLM:Run Redirector All users "C:\Program Files (x86)\Citrix\ICA Client\redirector.exe" /startup
Yes HKLM:Run SmartMenu Hewlett-Packard Company All users C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background
Yes HKLM:Run StartCCC Advanced Micro Devices, Inc. All users "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
Yes HKLM:Run SunJavaUpdateSched Oracle Corporation All users "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Yes Startup Common McAfee Security Scan Plus.lnk McAfee, Inc. All users C:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe
Yes Startup Common Snapfish PictureMover.lnk Hewlett-Packard Company All users C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe
 
Windows Scheduled:
Yes Task Adobe Acrobat Update Task Adobe Systems Incorporated All users C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Yes Task Adobe Flash Player Updater Adobe Systems Incorporated All users C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes Task CCleanerSkipUAC Piriform Ltd Georgie "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes Task GoogleUpdateTaskMachineCore Google Inc. All users C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes Task GoogleUpdateTaskMachineUA Google Inc. All users C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes Task HPCeeScheduleForGeorgie Hewlett-Packard Georgie C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForGeorgie (null)
Yes Task HPOSIAPP64 Administrators "%ProgramFiles(x86)%\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe"
Yes Task Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse McAfee, Inc. All users C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe /script=mcnrdhck.lua /periodicRunCount=5
Yes Task Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse McAfee, Inc. All users C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe /timeout=60000 /script=mcnrdhck.lua /hcmode=postdatupdate /datver=3144.0 /datupdatestatus=0
Yes Task McAfee Remediation (Prepare) McAfee, Inc. Administrators C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe /prepare
Yes Task McAfeeLogon McAfee, Inc. All users C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui /runkey
Yes Task ServicePlan Hewlett-Packard Company Georgie "C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe" ServicePlan ShowMessageTask15D
Yes Task {1CF42FA1-DE24-4B99-8103-0C4E1C7A301E} Microsoft Corporation Georgie C:\Windows\system32\pcalua.exe -a "C:\Users\Georgie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M2QV55FW\AdobeAIRInstaller.exe" -d C:\Users\Georgie\Desktop
Yes Task {55B4ACF4-707B-42B3-A151-68D6634BD7ED} Microsoft Corporation Georgie C:\Windows\system32\pcalua.exe -a C:\Users\Georgie\AppData\Local\Temp\jre-8u91-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1
Yes Task {6DD80810-7665-4FE9-A973-B70097FD4EEC} Microsoft Corporation Georgie C:\Windows\system32\pcalua.exe -a C:\Users\Georgie\AppData\Local\HuluDesktop\Uninstall.exe
 

Uninstall:

Adobe Acrobat Reader DC Adobe Systems Incorporated 8/31/2017 262 MB 17.012.20098 All users
Adobe AIR Adobe Systems Incorporated 10/4/2017 27.0.0.124 All users
Adobe Flash Player 27 ActiveX Adobe Systems Incorporated 10/16/2017 19.3 MB 27.0.0.170 All users
Adobe Flash Player 27 NPAPI Adobe Systems Incorporated 10/16/2017 5.54 MB 27.0.0.170 All users
Amazon Cloud Player Amazon Services LLC 1/1/2014 2.2.0.399 Georgie
Amazon MP3 Downloader 1.0.17 Amazon Services LLC 10/15/2012 1.0.17 All users
AMD Catalyst Install Manager Advanced Micro Devices, Inc. 6/2/2012 22.7 MB 3.0.842.0 All users
Apple Application Support (32-bit) Apple Inc. 10/4/2017 133 MB 6.0.2 All users
Apple Application Support (64-bit) Apple Inc. 10/4/2017 149 MB 6.0.2 All users
Apple Mobile Device Support Apple Inc. 10/4/2017 27.8 MB 11.0.0.30 All users
Apple Software Update Apple Inc. 10/4/2017 4.03 MB 2.4.8.1 All users
ATT-RC Self Support Tool 7/31/2011 All users
Bing Bar Microsoft Corporation 4/26/2014 724 KB 7.3.132.0 All users
Bonjour Apple Inc. 10/12/2015 2.01 MB 3.1.0.1 All users
Canon Easy-WebPrint EX 12/11/2010 All users
Canon G.726 WMP-Decoder 5/30/2011 1.1.0.4 All users
Canon IJ Network Scan Utility 12/11/2010 All users
Canon IJ Network Tool 12/11/2010 All users
CANON iMAGE GATEWAY MyCamera Download Plugin Canon Inc. 2/21/2016 3.1.1.2 All users
CANON iMAGE GATEWAY Task for ZoomBrowser EX Canon Inc. 2/21/2016 1.9.0.9 All users
Canon MOV Decoder Canon Inc. 2/21/2016 1.8.0.7 All users
Canon MOV Encoder Canon Inc. 2/21/2016 1.6.0.1 All users
Canon MovieEdit Task for ZoomBrowser EX Canon Inc. 2/21/2016 3.7.0.4 All users
Canon MP Navigator EX 3.1 12/11/2010 All users
Canon MX870 series MP Drivers Canon Inc. 10/16/2017 All users
Canon MX870 series User Registration 12/11/2010 All users
Canon RAW Image Task for ZoomBrowser EX 5/30/2011 0.9.3.9 All users
Canon Speed Dial Utility 12/11/2010 All users
Canon Utilities CameraWindow 5/30/2011 7.0.0.8 All users
Canon Utilities CameraWindow DC 5/30/2011 7.0.0.15 All users
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX 5/30/2011 6.4.1.15 All users
Canon Utilities Digital Photo Professional 3.10 Canon Inc. 2/21/2016 3.10.2.0 All users
Canon Utilities Easy-PhotoPrint EX 12/11/2010 All users
Canon Utilities EOS Sample Music Canon Inc. 2/21/2016 1.0.0.204 All users
Canon Utilities EOS Utility Canon Inc. 2/21/2016 2.10.2.0 All users
Canon Utilities EOS Video Snapshot Task for ZoomBrowser EX Canon Inc. 2/21/2016 1.0.0.10 All users
Canon Utilities Movie Uploader for YouTube Canon Inc. 2/21/2016 1.2.0.7 All users
Canon Utilities My Printer 12/11/2010 All users
Canon Utilities MyCamera 5/30/2011 6.4.0.5 All users
Canon Utilities MyCamera DC 5/30/2011 7.0.0.5 All users
Canon Utilities PhotoStitch Canon Inc. 2/21/2016 3.1.22.46 All users
Canon Utilities Picture Style Editor Canon Inc. 2/21/2016 1.9.0.0 All users
Canon Utilities RemoteCapture DC 5/30/2011 3.0.1.8 All users
Canon Utilities RemoteCapture Task for ZoomBrowser EX 5/30/2011 1.7.1.9 All users
Canon Utilities Solution Menu 12/11/2010 All users
Canon Utilities ZoomBrowser EX Canon Inc. 2/21/2016 6.7.0.24 All users
Canon ZoomBrowser EX Memory Card Utility Canon Inc. 2/21/2016 1.5.0.9 All users
CCleaner Piriform 10/24/2017 5.36 All users
CinemaNow Media Manager CinemaNow, Inc. 11/1/2010 11.7 MB 1.9.1.105 All users
Cisco EAP-FAST Module Cisco Systems, Inc. 6/2/2012 1.55 MB 2.2.14 All users
Cisco LEAP Module Cisco Systems, Inc. 6/2/2012 644 KB 1.0.19 All users
Cisco PEAP Module Cisco Systems, Inc. 6/2/2012 1.23 MB 1.1.6 All users
CyberLink DVD Suite Deluxe CyberLink Corp. 11/1/2010 36.5 MB 7.0.2823 All users
Digital Rewards Downloader version 1.0.4 Choose Digital, Inc. 10/15/2015 15.5 MB 1.0.4 All users
DVD Menu Pack for HP MediaSmart Video Hewlett-Packard 11/1/2010 101 MB 4.1.4030 All users
Google Chrome Google Inc. 10/20/2017 62.0.3202.62 All users
Google Toolbar for Internet Explorer Google Inc. 11/28/2016 7.5.8231.2252 All users
HP Advisor Hewlett-Packard 12/5/2010 54.5 MB 3.4.12850.3526 All users
HP Games WildTangent 11/2/2010 1.0.1.3 All users
HP MAINSTREAM KEYBOARD Hewlett-Packard 11/1/2010 1.4.3.0 All users
HP MediaSmart CinemaNow 2.0 Hewlett-Packard 11/2/2010 96.6 MB 2.0 All users
HP MediaSmart DVD Hewlett-Packard 11/1/2010 98.9 MB 4.1.4229 All users
HP MediaSmart Music Hewlett-Packard 11/1/2010 73.1 MB 4.1.4301 All users
HP MediaSmart Photo Hewlett-Packard 11/1/2010 261 MB 4.1.4211 All users
HP MediaSmart SmartMenu Hewlett-Packard 11/1/2010 2.02 MB 3.1.1.12 All users
HP MediaSmart Video Hewlett-Packard 11/1/2010 302 MB 4.1.4214 All users
HP MediaSmart/TouchSmart Netflix Hewlett-Packard 11/1/2010 9.61 MB 1.0.3.0 All users
HP Odometer Hewlett-Packard 11/1/2010 48.0 KB 2.10.0000 All users
HP Product Detection HP 6/2/2012 1.86 MB 11.14.0001 Georgie
HP Setup Hewlett-Packard 11/1/2010 8.1.4186.3400 All users
HP Support Assistant Hewlett-Packard Company 11/22/2015 65.1 MB 8.5.37.19 All users
HP Support Information Hewlett-Packard 11/1/2010 156 KB 10.1.0002 All users
HP Support Solutions Framework Hewlett-Packard Company 11/22/2015 5.69 MB 12.8.37.11 All users
HP Update Hewlett-Packard 11/1/2010 2.97 MB 5.002.003.003 All users
HP Vision Hardware Diagnostics Hewlett-Packard 11/1/2010 11.2 MB 2.1.2.27173 All users
Intel® Management Engine Components Intel Corporation 1/26/2014 6.0.0.1179 All users
Intel® Rapid Storage Technology Intel Corporation 5/30/2016 10.5.0.1026 All users
iTunes Apple Inc. 10/4/2017 397 MB 12.7.0.166 All users
Jacquie Lawson Christmas Market MicroCourt Limited 11/24/2014 1.0.1 All users
Jacquie Lawson Seaside Calendar Microcourt Limited 3/17/2017 1.0.7 All users
Jacquie Lawson Victorian Calendar Microcourt Limited 4/3/2016 1.0.3 All users
Java 8 Update 144 Oracle Corporation 8/3/2017 95.2 MB 8.0.1440.1 All users
Kobo 11/2/2010 All users
LabelPrint CyberLink Corp. 11/1/2010 230 MB 2.5.2823 All users
LightScribe System Software LightScribe 11/1/2010 24.5 MB 1.18.15.1 All users
Malwarebytes version 3.2.2.2029 Malwarebytes 10/24/2017 172 MB 3.2.2.2029 All users
McAfee Security Scan Plus McAfee, Inc. 12/6/2015 10.2 MB 3.11.266.3 All users
McAfee WebAdvisor McAfee, Inc. 10/19/2017 4.0.139 All users
Microsoft .NET Framework 4.7 Microsoft Corporation 8/28/2017 38.8 MB 4.7.02053 All users
Microsoft Office Click-to-Run 2010 Microsoft Corporation 12/17/2010 14.0.4763.1000 All users
Microsoft Office Home and Business 2010 Microsoft Corporation 11/17/2013 14.0.7015.1000 All users
Microsoft Office Home and Business 2010 - English Microsoft Corporation 12/17/2010 14.0.5128.5002 All users
Microsoft Office Outlook Connector Microsoft Corporation 12/18/2010 3.34 MB 14.0.5118.5000 All users
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit Microsoft Corporation 12/18/2010 1.38 MB 14.0.5120.5000 All users
Microsoft Silverlight Microsoft Corporation 6/16/2017 745 MB 5.1.50907.0 All users
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 11/28/2010 1.72 MB 3.1.0000 All users
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 Microsoft Corporation 12/7/2010 260 KB 8.0.50727.4053 All users
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 12/7/2010 250 KB 8.0.50727.4053 All users
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 6/19/2011 300 KB 8.0.61001 All users
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 11/1/2010 708 KB 8.0.61000 All users
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 Microsoft Corporation 5/14/2011 580 KB 8.0.51011 All users
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 Microsoft Corporation 5/14/2011 790 KB 9.0.30729.5570 All users
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Corporation 5/14/2011 598 KB 9.0.30729.5570 All users
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 11/1/2010 788 KB 9.0.30729 All users
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 11/1/2010 788 KB 9.0.30729.4148 All users
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 6/19/2011 788 KB 9.0.30729.6161 All users
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 11/1/2010 596 KB 9.0.30729 All users
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 11/1/2010 596 KB 9.0.30729.4148 All users
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 6/19/2011 600 KB 9.0.30729.6161 All users
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 Microsoft Corporation 2/13/2015 13.8 MB 10.0.40219 All users
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 Microsoft Corporation 2/13/2015 11.1 MB 10.0.40219 All users
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2/13/2015 10.0.50903 All users
Movie Theme Pack for HP MediaSmart Video Hewlett-Packard 11/1/2010 429 MB 4.1.4030 All users
Mozilla Firefox 43.0.1 (x86 en-US) Mozilla 6/5/2017 90.1 MB 43.0.1 All users
Mozilla Maintenance Service Mozilla 6/5/2017 341 KB 43.0.1.5828 All users
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 12/5/2010 1.27 MB 4.20.9870.0 All users
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 12/5/2010 1.33 MB 4.20.9876.0 All users
Norton Online Backup Symantec Corporation 11/1/2010 6.19 MB 2.1.17869 All users
PDF Complete Special Edition PDF Complete, Inc 11/2/2010 3.5.111 All users
PhotoNow! CyberLink Corp. 11/1/2010 34.2 MB 1.1.6904 All users
PictureMover Hewlett-Packard Company 11/1/2010 61.5 MB 3.5.0.28 All users
PlayReady PC Runtime amd64 Microsoft Corporation 11/1/2010 2.05 MB 1.3.0 All users
Power2Go CyberLink Corp. 11/1/2010 169 MB 6.1.4022 All users
PowerDirector CyberLink Corp. 11/1/2010 854 MB 8.0.2906 All users
PressReader NewspaperDirect Inc. 11/1/2010 8.18 MB 5.10.621.0 All users
QuickTime 7 Apple Inc. 1/10/2016 69.1 MB 7.79.80.95 All users
Ralink 802.11n Wireless LAN Card Ralink 6/2/2012 3.2.13.0 All users
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 11/1/2010 6.0.1.6196 All users
Search App by Ask 10/16/2014 All users
SecurityCenter McAfee, Inc. 10/11/2017 16.0.3 All users
Shared C Run-time for x64 McAfee 11/30/2012 2.78 MB 10.0.0 All users
System Requirements Lab 8/7/2011 All users
Windows Live Essentials Microsoft Corporation 12/18/2010 15.4.3502.0922 All users
Windows Live Mesh ActiveX Control for Remote Connections Microsoft Corporation 12/18/2010 5.57 MB 15.4.5722.2 All users
Windows Live Sync Microsoft Corporation 11/28/2010 2.78 MB 14.0.8089.726 All users
Yahoo Search Set Yahoo Inc. 7/21/2015 All users
Yahoo Toolbar Yahoo Inc. 9/3/2014 All users
Zinio Reader 4 Zinio LLC 11/2/2010 4.0.2811 All users


#4 buddy215

buddy215

  • Moderator
  • 13,103 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:09:42 AM

Posted 24 October 2017 - 11:18 AM

Would of been better for you to of posted the scan logs.

 

Suggest Disabling these Startups: Use CCleaner by clicking on each item and choosing Disable on the right.

Yes HKCU:Run Amazon Cloud Player Amazon Services LLC Georgie "C:\Users\Georgie\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe"
Yes HKCU:Run CCleaner Monitoring Piriform Ltd Georgie "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

Yes HKLM:Run APSDaemon Apple Inc. All users "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

Yes HKLM:Run CanonMyPrinter CANON INC. All users C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
Yes HKLM:Run CanonSolutionMenu CANON INC. All users C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon
Yes HKLM:Run HP Software Update Hewlett-Packard All users c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
Yes HKLM:Run IJNetworkScanUtility CANON INC. All users C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
Yes HKLM:Run iTunesHelper Apple Inc. All users "C:\Program Files\iTunes\iTunesHelper.exe"
Yes Startup Common McAfee Security Scan Plus.lnk McAfee, Inc. All users C:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe
Yes Startup Common Snapfish PictureMover.lnk Hewlett-Packard Company All users C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe
 
Disable these Tasks: Use CCleaner by clicking on each item and choosing Disable on the right.
Yes Task GoogleUpdateTaskMachineUA Google Inc. All users C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes Task HPCeeScheduleForGeorgie Hewlett-Packard Georgie C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForGeorgie (null)
Yes Task ServicePlan Hewlett-Packard Company Georgie "C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe" ServicePlan ShowMessageTask15D
Yes Task {1CF42FA1-DE24-4B99-8103-0C4E1C7A301E} Microsoft Corporation Georgie C:\Windows\system32\pcalua.exe -a "C:\Users\Georgie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M2QV55FW\AdobeAIRInstaller.exe" -d C:\Users\Georgie\Desktop
Yes Task {55B4ACF4-707B-42B3-A151-68D6634BD7ED} Microsoft Corporation Georgie C:\Windows\system32\pcalua.exe -a C:\Users\Georgie\AppData\Local\Temp\jre-8u91-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1
Yes Task {6DD80810-7665-4FE9-A973-B70097FD4EEC} Microsoft Corporation Georgie C:\Windows\system32\pcalua.exe -a C:\Users\Georgie\AppData\Local\HuluDesktop\Uninstall.exe
 
Uninstall these programs:
Bing Bar Microsoft Corporation 4/26/2014 724 KB 7.3.132.0 All users
Google Toolbar for Internet Explorer Google Inc. 11/28/2016 7.5.8231.2252 All users
HP Games WildTangent 11/2/2010 1.0.1.3 All users
McAfee Security Scan Plus McAfee, Inc. 12/6/2015 10.2 MB 3.11.266.3 All users
McAfee WebAdvisor McAfee, Inc. 10/19/2017 4.0.139 All users
Mozilla Firefox 43.0.1 (x86 en-US) Mozilla 6/5/2017 90.1 MB 43.0.1 All users (OR UPDATE)
Mozilla Maintenance Service Mozilla 6/5/2017 341 KB 43.0.1.5828 All users
QuickTime 7 Apple Inc. 1/10/2016 69.1 MB 7.79.80.95 All users
Search App by Ask 10/16/2014 All users
Windows Live Essentials Microsoft Corporation 12/18/2010 15.4.3502.0922 All users
Windows Live Mesh ActiveX Control for Remote Connections Microsoft Corporation 12/18/2010 5.57 MB 15.4.5722.2 All users
Windows Live Sync Microsoft Corporation 11/28/2010 2.78 MB 14.0.8089.726 All users
Yahoo Search Set Yahoo Inc. 7/21/2015 All users
Yahoo Toolbar Yahoo Inc. 9/3/2014 All users
 
  • Please download Security Check by glax24 and save the file to the Desktop
  • Run the tool by accepting all the Security prompts
  • when complete the tool will produce a log file C:\SecurityCheck\SecurityCheck.txt and also copy the contents to the Clipboard
  • Simply Paste the log to your reply
 

Edited by buddy215, 24 October 2017 - 11:19 AM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#5 LuvHorses

LuvHorses
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:09:42 AM

Posted 25 October 2017 - 12:15 AM

SecurityCheck by glax24 & Severnyj v.1.4.0.52 [25.07.17]
WebSite: www.safezone.cc
DateLog: 25.10.2017 00:11:46
Path starting: C:\Windows\Temp\SecurityCheck\SecurityCheck.exe
Log directory: C:\SecurityCheck\
IsAdmin: True
User: Georgie
VersionXML: 4.71is-20.10.2017
___________________________________________________________________________
 
Windows 7(6.1.7601) Service Pack 1 (x64) HomePremium Lang: English(0409)
Installation date OS: 29.11.2010 01:49:43
LicenseStatus: Windows® 7, HomePremium edition The machine is permanently activated.
Boot Mode: Normal
Default Browser: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
SystemDrive: C: FS: [NTFS] Capacity: [919.3 Gb] Used: [295.9 Gb] Free: [623.4 Gb]
------------------------------- [ Windows ] -------------------------------
Internet Explorer 11.0.9600.18816
User Account Control enabled
Automatically download and schedule installation
Date install updates: 2017-10-11 08:27:00
Windows Update (wuauserv) - The service is running
Security Center (wscsvc) - The service is running
Remote Registry (RemoteRegistry) - The service has stopped
SSDP Discovery (SSDPSRV) - The service is running
Remote Desktop Services (TermService) - The service has stopped
Windows Remote Management (WS-Management) (WinRM) - The service has stopped
------------------------------ [ MS Office ] ------------------------------
Microsoft Office 2010 x86 v.14.0.7015.1000
---------------------------- [ Antivirus_WMI ] ----------------------------
Malwarebytes (disabled and up to date)
McAfee VirusScan (enabled)
---------------------------- [ Firewall_WMI ] -----------------------------
McAfee Firewall
--------------------------- [ AntiSpyware_WMI ] ---------------------------
Malwarebytes (disabled and up to date)
Windows Defender (enabled and up to date)
McAfee VirusScan (enabled)
---------------------- [ AntiVirusFirewallInstall ] -----------------------
Norton Online Backup v.2.1.17869
-------------------------- [ SecurityUtilities ] --------------------------
Malwarebytes version 3.2.2.2029 v.3.2.2.2029
--------------------------- [ OtherUtilities ] ----------------------------
Microsoft Silverlight v.5.1.50907.0
-------------------------------- [ Java ] ---------------------------------
Java 8 Update 144 v.8.0.1440.1 Warning! Download Update
Uninstall old version and install new one (jre-8u152-windows-i586.exe).
--------------------------- [ AppleProduction ] ---------------------------
Bonjour v.3.1.0.1
iTunes v.12.7.0.166
Bonjour Service (Bonjour Service) - The service is running
--------------------------- [ AdobeProduction ] ---------------------------
Adobe AIR v.27.0.0.124
Adobe Flash Player 27 ActiveX v.27.0.0.170
Adobe Flash Player 27 NPAPI v.27.0.0.170
Adobe Acrobat Reader DC v.17.012.20098
------------------------------- [ Browser ] -------------------------------
Google Chrome v.62.0.3202.62
Mozilla Firefox 47.0.2 (x86 en-US) v.47.0.2 Warning! Download Update
--------------------------- [ RunningProcess ] ----------------------------
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe v.62.0.3202.62
------------------ [ AntivirusFirewallProcessServices ] -------------------
Malwarebytes Service (MBAMService) - The service has stopped
C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe v.15.7.0.521
McAfee Validation Trust Protection Service (mfevtp) - The service is running
C:\Windows\System32\mfevtps.exe
McAfee Firewall Core Service (mfefire) - The service is running
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe v.15.7.0.521
McAfee AP Service (McAPExe) - The service is running
C:\Program Files\Common Files\McAfee\VSCore_15_7\mcapexe.exe v.7.3.167.0
McAfee Personal Firewall Service (McMPFSvc) - The service is running
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe v.6.4.4016.0
C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe v.9.1.151.0
McAfee CSP Service (mccspsvc) - The service is running
C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\McCSPServiceHost.exe v.2.5.312.0
McAfee Service Controller (mfemms) - The service is running
C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe v.15.7.0.521
McAfee Module Core Service (ModuleCoreService) - The service is running
C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe v.2.0.104.0
McAfee Home Network (HomeNetSvc) - The service is running
McAfee Platform Services (mcpltsvc) - The service is running
McAfee Proxy Service (McProxy) - The service is running
McAfee Boot Delay Start Service (McBootDelayStartSvc) - The service is running
McAfee Platform Services (mcpltsvc) - The service is running
Windows Defender (WinDefend) - The service is running
----------------------------- [ End of Log ] ------------------------------


#6 buddy215

buddy215

  • Moderator
  • 13,103 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:09:42 AM

Posted 25 October 2017 - 07:12 AM

You should update Firefox to version 56. CCleaner said you had version 43 and this scan said you have Version 47...hmmmm

 

 

Either update Java or uninstall it. Most users don't need Java installed.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#7 LuvHorses

LuvHorses
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:09:42 AM

Posted 25 October 2017 - 08:08 AM

Deleted Firefox 47 and installed version 56.  Odd that Firefox only updated to 47.

 

Deleted Java since it has conflicts with Google and will install it if needed in the future.

 

Thanks for all you help.



#8 buddy215

buddy215

  • Moderator
  • 13,103 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:09:42 AM

Posted 25 October 2017 - 08:34 AM

You're welcome...happy surfin'


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users