Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malwarebytes shows Riskware warning on many sites(every?)


  • Please log in to reply
14 replies to this topic

#1 MorDi33

MorDi33

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 29 May 2018 - 06:29 PM

Hey guys.

 

I think I have picked up something while using a Link submitter tool.

While it was in use I got a couple of warnings.

 

Today, my computer became slow, and I visited some random sites and Malwarebytes shared a warning that it blocked a site due to riskware.

 

 c.securing-request.com

 

 

Now I did a search with Malwarebytes and it found nothing.

I also used Superantispyware and found nothing.

 

Can you please advice a way to check for more?

 

Thanks.

 

Best

 

Rune

 

 

 

 



BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,324 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:01 AM

Posted 29 May 2018 - 07:08 PM

I would think the best thing to do is uninstall the link submitter tool.

You can submit urls to VirusTotal that you are suspicious of. If that is the purpose of the link submitter tool.

Give a link for the tool from where you downloaded it.

 

Use the programs below to clean, remove adware and remove malware.

 

Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the

Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of Google Chrome and Avast.

After install, open CCleaner and run by clicking on the Run Cleaner button in the bottom right corner.

CCleaner - PC Optimization and Cleaning - Free Download

 

Download AdwCleaner by Xplode onto your desktop. (compatible with Windows 7, 8 and 10)

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

 

Download and run the FREE online scanner from Free Virus Scan | Online Virus Scan from ESET | ESET

  • Download esetsmartinstaller_enu.exe and save it to your Desktop
  • Double click the icon
  • Check YES, I accept the Terms of Use
  • Click the Start button
  • Accept any security warnings from your browser
  • Click Advanced settings
  • Check the following items

Enable detection of potentially unwanted applications
Remove found threats
Scan archives
Scan for potentially unsafe applications
Enable Anti-Stealth technology

  • Click Start
  • ESET will then download updates and begin scanning your computer
  • If no threats are found simply click Uninstall application on close and hit Finish
  • If threats are found click List of found threats
  • Click Export to text file
  • Save the file on your Desktop as ESET.txt
  • Click Back
  • Review the list of entries and if there are any you want to keep stop and copy/paste the ESET.txt report in your reply for my review
  • If you do not wish to keep any of the entries check Uninstall application on close and Delete quarantined files
  • Click Finish
  • Close the ESET Online Scanner window
  • Copy and paste the contents of ESET.txt in your reply

Edited by buddy215, 29 May 2018 - 07:17 PM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 MorDi33

MorDi33
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 30 May 2018 - 07:35 AM

Hey Thanks for the reply.

 

Here is the ADWCleaner file:

 

# -------------------------------
# Malwarebytes AdwCleaner 7.1.1.0
# -------------------------------
# Build:    04-27-2018
# Database: 2018-05-29.2
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    05-30-2018
# Duration: 00:00:00
# OS:       Windows 7 Ultimate
# Cleaned:  1
# Failed:   0
 
 
***** [ Services ] *****
 
No malicious services cleaned.
 
***** [ Folders ] *****
 
No malicious folders cleaned.
 
***** [ Files ] *****
 
No malicious files cleaned.
 
***** [ DLL ] *****
 
No malicious DLLs cleaned.
 
***** [ WMI ] *****
 
No malicious WMI cleaned.
 
***** [ Shortcuts ] *****
 
No malicious shortcuts cleaned.
 
***** [ Tasks ] *****
 
No malicious tasks cleaned.
 
***** [ Registry ] *****
 
Deleted       HKLM\Software\Wow6432Node\IObit\RealTimeProtector
 
***** [ Chromium (and derivatives) ] *****
 
No malicious Chromium entries cleaned.
 
***** [ Chromium URLs ] *****
 
No malicious Chromium URLs cleaned.
 
***** [ Firefox (and derivatives) ] *****
 
No malicious Firefox entries cleaned.
 
***** [ Firefox URLs ] *****
 
No malicious Firefox URLs cleaned.
 
 
*************************
 
[+] Delete Tracing Keys
[+] Reset Winsock
 
*************************
 
 
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
 
 
I FORGOT to delete Avast at first, so I ran it as well. It did find a few bugs, which I forgot to add here. Something about BrowserAC.exe ( think) and also Googlelogin.exe. Or something of that sort.
 
I just ran ESET. And I got a few files , which was false positives, but I deleted them anyway.
So no content from ESET either.
 
Issue still persists.
 
Thanks


#4 buddy215

buddy215

  • Moderator
  • 13,324 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:01 AM

Posted 30 May 2018 - 08:08 AM

Post the three lists mentioned below using CCleaner.

Open CCleaner and click on Tools. Choose Startups. On that page you will see a list of Windows Startups and at the top tabs for each browser and Scheduled Tasks.

At the bottom right of that page you will see a button when clicked will allow you to Copy and Paste the list of Windows Startups and Scheduled Tasks into your next

post. Please do that.

 

Open CCleaner and click on Tools. Choose Uninstall. On that page you will see a list of programs installed on your computer and at the bottom right of that page you

will see a button when clicked will allow you to Copy and Paste that list in your next post. Please do that.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#5 MorDi33

MorDi33
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 30 May 2018 - 03:53 PM

7-Zip 16.04 (x64 edition) Igor Pavlov 11/11/2016 4.91 MB 16.04.00.0
Adobe Acrobat Reader DC Adobe Systems Incorporated 5/18/2018 335 MB 18.011.20040
Adobe AIR Adobe Systems Incorporated 10/25/2017 27.0.0.124
Adobe Character Animator CC (Beta) Adobe Systems Incorporated 7/10/2017 946 MB 1.0.6
Adobe Creative Cloud Adobe Systems Incorporated 10/28/2017 248 MB 4.3.0.256
Adobe Extension Manager CC Adobe Systems Incorporated 12/14/2016 66.3 MB 7.3.2
Adobe Flash Player 29 NPAPI Adobe Systems Incorporated 5/8/2018 5.80 MB 29.0.0.171
Adobe Photoshop CC 2017 Adobe Systems Incorporated 7/10/2017 1.76 GB 18.1.1
Amazon Kindle Amazon 3/24/2015
Audacity 2.1.0 Audacity Team 8/29/2015 49.8 MB 2.1.0
Backlinks Warrior Backlinks Warrior 8/26/2017 1.0.0.4
Beach Millions Traffic Attractor OTC Publishing 2/13/2014 3.3
BlasterSuite Manager version 1.06 Blaster Suite Soft SRL 3/14/2018 4.40 MB 1.06
Bytecoin Bytecoin Developers 5/3/2018 67.4 MB 18.4.4
Camtasia Studio 6 TechSmith Corporation 4/9/2012 78.3 MB 6.0.2
Canon MG6100 series MP Drivers Canon Inc. 12/20/2017
Canon MP Navigator EX 4.0 12/20/2017
Cashflow Software UNKNOWN 9/7/2017 1.6
CCleaner Piriform 5/30/2018 5.43
Discord Discord Inc. 2/28/2018 54.3 MB 0.0.300
EasySketchPro3 version 3.0.6 My Dot Com Business 5/3/2018 532 MB 3.0.6
Epic Games Launcher Epic Games, Inc. 4/8/2018 78.7 MB 1.1.147.0
ESET Security ESET, spol. s r.o. 5/30/2018 122 MB 11.1.54.0
Evernote v. 6.6.4 Evernote Corp. 8/15/2017 233 MB 6.6.4.5512
Exodus Exodus Movement Inc 10/13/2017 72.2 MB 1.36.1
Expired Tumblr Hunter version 2.0 Coolmarketingsoftware.com 5/29/2018 19.7 MB 2.0
Explaindio version 3.030 Explaindio LLC 11/29/2016 709 MB 3.030
Explaindio version 3.032 Explaindio LLC 2/1/2017 710 MB 3.032
Explaindio version 3.040 Explaindio LLC 6/8/2017 710 MB 3.040
FileZilla Client 3.32.0 Tim Kosse 4/25/2018 27.2 MB 3.32.0
FlipShare Flip Video 10/27/2012 259 MB 5.12.3.0
Free Global Classified Ad Submitter version 1.0 Coolmarketingsoftware.com 8/23/2017 1.40 GB 1.0
FunnelSpy Digital Kickstart LLC 12/11/2017 2.2.4
GIGABYTE Gigabyte Wireless Adapter GIGABYTE 9/10/2015 1.0.0.0.01
Google Chrome Google Inc. 3/9/2014 66.0.3359.181
GoTo Opener LogMeIn, Inc. 11/8/2017 276 KB 1.0.470
GoToMeeting 8.28.0.8847 LogMeIn, Inc. 5/23/2018 8.28.0.8847
HP DeskJet 2600 series Basic Device Software HP Inc. 1/25/2018 299 MB 43.2.2474.17192
HP DeskJet 2600 series Help HP 1/25/2018 12.5 MB 44.0.0
HP Dropbox Plugin HP 1/25/2018 3.44 MB 36.0.100.66344
HP EmailSMTP Plugin HP 1/25/2018 6.08 MB 43.0.0.0
HP FTP Plugin HP 1/25/2018 4.88 MB 43.0.0.0
HP Google Drive Plugin HP 1/25/2018 3.45 MB 36.0.100.66344
HP OneDrive Plugin HP 1/25/2018 3.44 MB 36.0.0.0
HP Photo Creations HP 1/25/2018 14.6 MB 1.0.0.9572
HP SharePoint Plugin HP 1/25/2018 5.19 MB 43.0.0.0
HPDiagnosticCoreDll Hewlett Packard 1/25/2018 9.16 MB 1.0.15.0
Inkscape 0.91 inkscape.org 4/12/2016 290 MB 0.91
Intel® Control Center Intel Corporation 8/20/2016 1.2.1.1007
Intel® Management Engine Components Intel Corporation 8/20/2016 7.0.0.1144
Intel® Network Connections 15.6.25.0 Intel 2/22/2012 13.6 MB 15.6.25.0
Intel® Rapid Storage Technology Intel Corporation 8/20/2016 10.5.0.1026
IPTInstaller HTC 9/10/2015 300 KB 4.0.9
Java 8 Update 171 (64-bit) Oracle Corporation 5/28/2018 115 MB 8.0.1710.11
JMicron JMB36X Driver JMicron Technology Corp. 2/22/2012 1.17.58.2
Logitech Webcam Software Logitech Inc. 9/20/2015 2.51
Malwarebytes version 3.4.5.2467 Malwarebytes 4/18/2018 182 MB 3.4.5.2467
Market Samurai Alliance Software Pty Ltd 4/15/2018 0.94.21
marvell 91xx driver Marvell 2/13/2014 1.0.0.1051
Microsoft .NET Framework 4.7 (dansk) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (Deutsch) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (español) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (Français) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (Italiano) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (Nederlands) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (norsk språkpakke) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (Polski) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (Português) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (suomi) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (svenska) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (Türkçe) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (čeština) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (Ελληνικά) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (Русский) Корпорация Майкрософт 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (עברית) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (日本語) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7 (简体中文) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7(한국어) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft .NET Framework 4.7.1 Microsoft Corporation 5/30/2018 38.8 MB 4.7.02558
Microsoft .NET-keretrendszer 4.7 (magyar) Microsoft Corporation 7/27/2017 2.93 MB 4.7.02053
Microsoft ASP.NET MVC 4 Runtime Microsoft Corporation 8/22/2016 1.59 MB 4.0.40804.0
Microsoft Games for Windows - LIVE Redistributable Microsoft Corporation 1/8/2017 31.3 MB 3.5.92.0
Microsoft Games for Windows Marketplace Microsoft Corporation 1/8/2017 6.03 MB 3.5.67.0
Microsoft Office File Validation Add-In Microsoft Corporation 8/31/2016 10.7 MB 14.0.5130.5003
Microsoft Office Home and Student 2007 Microsoft Corporation 6/2/2015 12.0.6612.1000
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs 8/20/2016
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 3/15/2014 300 KB 8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 9/10/2015 2.99 MB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 9/10/2015 244 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 3/15/2014 234 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 8/18/2013 788 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 3/19/2014 1.41 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2/1/2013 590 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 3/15/2014 226 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 8/18/2013 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 Microsoft Corporation 4/11/2016 13.8 MB 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 Microsoft Corporation 12/14/2016 11.1 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 4/25/2016 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 4/25/2016 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 4/25/2016 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 4/25/2016 17.1 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 Microsoft Corporation 2/12/2018 17.1 MB 12.0.40660.0
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 Microsoft Corporation 10/21/2017 25.4 MB 14.0.24215.1
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 Microsoft Corporation 10/21/2017 21.5 MB 14.0.24215.1
Mozilla Firefox 60.0.1 (x64 en-US) Mozilla 5/21/2018 142 MB 60.0.1
Mozilla Maintenance Service Mozilla 5/21/2018 256 KB 60.0.1.6710
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 5/23/2013 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 5/23/2013 1.33 MB 4.20.9876.0
MSXML 4.0 SP2 Parser and SDK Microsoft Corporation 5/22/2013 1.22 MB 4.20.9818.0
MSXML 4.0 SP3 Parser Microsoft Corporation 9/10/2015 1.47 MB 4.30.2100.0
MSXML 4.0 SP3 Parser (KB2758694) Microsoft Corporation 8/22/2016 1.54 MB 4.30.2117.0
Neon 0.2.3 (only current user) Ethan Fast 4/16/2018 193 MB 0.2.3
Nero BackItUp 4 Essentials Nero AG 6/3/2016
Noun Project version 1.0 Noun Project 7/31/2017 792 KB 1.0
NVIDIA 3D Vision Driver 353.82 NVIDIA Corporation 6/6/2016 353.82
NVIDIA GeForce Experience 2.11.4.0 NVIDIA Corporation 8/19/2016 2.11.4.0
NVIDIA Graphics Driver 353.82 NVIDIA Corporation 6/6/2016 353.82
NVIDIA HD Audio Driver 1.3.34.3 NVIDIA Corporation 8/15/2015 1.3.34.3
NVIDIA PhysX NVIDIA Corporation 12/9/2015 9.38 MB 9.12.1031
OpenAL 11/4/2015
Pamela Pro 4.8 Scendix Software-Vertriebsges. mbH 2/13/2014 4.8
PAYDAY 2 OVERKILL - a Starbreeze Studio. 5/6/2016
PAYDAY: The Heist OVERKILL Software 7/24/2016
PDF Pop Up Magic Ken Sar 10/25/2012 2.92 MB 0
PressBot Incansoft 9/28/2015 24.5 MB 4.0
PrivaZer Goversoft LLC 10/15/2015 13.8 MB 2.39.0.0
Ranking Factory Revolutions iNet Marketeers Ltd 2/12/2018 1.2.3
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2/22/2012 6.0.1.7106
Recuva Piriform 3/21/2017 1.53
Renesas Electronics USB 3.0 Host Controller Driver Renesas Electronics Corporation 9/10/2015 1.13 MB 2.1.28.1
RescueTime 2.12.4.1462 RescueTime.com 5/30/2016 4.47 MB
Revo Uninstaller Pro 3.1.7 VS Revo Group, Ltd. 12/17/2016 39.4 MB 3.1.7
RoboForm 8-4-9-9 (All Users) Siber Systems 5/11/2018 20.0 MB 8-4-9-9
SEO Link Dominator - fast Indexer and Pinger stephenhawkins 6/13/2013 10.8 MB 1.0.5
SEO Link Robot - Fast Indexer 2.0.2.0 http://www.seolinkrobot.com 6/13/2013 46.9 MB 2.0.2.0
Shotcut 4/19/2018
Skype Click to Call Skype Technologies S.A. 7/13/2013 34.3 MB 6.9.12585
Skype™ 7.41 Skype Technologies S.A. 4/8/2018 88.8 MB 7.41.101
Social Ad Classroom Your Marketing Tech Support, LLC 5/6/2016 2.3.8
Social App Creator 3.0 Brocklehurst Publishing Ltd 10/6/2014 3.0
Social Multiplier JonathanLeger.com 8/16/2017 2.169
SocialFormula UNKNOWN 4/13/2016 0.0.0
Sparkol Tawe Sparkol 3/29/2017 52.6 MB 1.1.34
Steam Valve Corporation 3/10/2012 1.59 MB 1.0.0.0
Sublime Text 2.0.2 9/7/2015 19.8 MB
SUPERAntiSpyware SUPERAntiSpyware.com 12/19/2017 77.8 MB 6.0.1250
SWF Components Keyword Rockstar, Inc. 1/16/2013 4.68 MB 1.0.0
System Requirements Lab Husdawg, LLC 6/2/2015 562 KB 6.1.4.0
System Requirements Lab Detection Husdawg, LLC 6/2/2015 619 KB 6.1.4.0
TheBrain TheBrain Technologies LP 3/14/2018 240 MB 9.0.250.0
Userfeel 1.1.15 (only current user) Netstudio 3/26/2017 126 MB 1.1.15
UserTesting UserTesting.com 2/25/2018
Vid Attack Alpha KISS IM Limited 5/19/2018 4.13.18.0
Video Components Keyword Rockstar, Inc. 1/16/2013 740 KB 1.0.0
Video Synd Alpha Kiss Internet Marketing 5/19/2018 3.24.11.0
VidNeos UNKNOWN 2/5/2015 1.1.0
Visual Studio 2012 x64 Redistributables AVG Technologies 2/9/2014 12.9 MB 14.0.0.1
Visual Studio 2012 x86 Redistributables AVG Technologies CZ, s.r.o. 2/9/2014 10.5 MB 14.0.0.1
VLC media player VideoLAN 6/21/2017 2.2.6
Wacom Wacom Technology Corp. 5/25/2016 5.3.5-3
WebTablet FB Plugin 32 bit Wacom Technology Corp. 5/25/2016 2.1.0.7
WebTablet FB Plugin 64 bit Wacom Technology Corp. 5/25/2016 2.1.0.7
Windows Live ID Sign-in Assistant Microsoft Corporation 1/8/2017 10.0 MB 6.500.3165.0
WinHTTrack Website Copier 3.48-19 (x64) HTTrack 8/4/2014 13.6 MB 3.48.19
WP Master Developer v16.0 C Point 5/5/2018 36.0 MB
XAMPP Bitnami 5/5/2018 552 MB 7.2.4-0
XULRunner6 KSS 11/4/2015 29.2 MB 1.0.0
Zoom Zoom Video Communications, Inc. 9/25/2017 9.76 MB 4.0
 
 
 
 
And Startup:
 
 
No HKCU:Run AdobeBridge
Yes HKCU:Run BLSyndicationSystem Social Media Syndication System E:\Programs\Bookmarklovers\SociSynd_Submitter.exe
Yes HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
No HKCU:Run CCleaner Monitoring "E:\Programs\Ccleaner\CCleaner64.exe" /MONITOR
No HKCU:Run GoogleChromeAutoLaunch_8BF823EC5C6703CF374CE6C299E479C4 Google Inc. "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
No HKCU:Run GoToMeeting "C:\Users\Rune\AppData\Local\Citrix\GoToMeeting\4911\g2mstart.exe" "/Trigger RunAtLogon"
Yes HKCU:Run RoboForm Siber Systems "E:\Programs\Roboform\RoboTaskBarIcon.exe"
No HKCU:Run RoboForm Siber Systems "E:\Programs\Roboform\RoboTaskBarIcon.exe"
Yes HKCU:Run Sidebar Microsoft Corporation C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
No HKCU:Run Skype Skype Technologies S.A. "E:\Programs\Skype\Phone\Skype.exe" /minimized /regrun
Yes HKCU:Run SUPERAntiSpyware SUPERAntiSpyware E:\Programs\Superantispyware\SUPERAntiSpyware.exe
Yes HKLM:Run Adobe Creative Cloud Adobe Systems Incorporated "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
No HKLM:Run AdobeAAMUpdater-1.0 Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
Yes HKLM:Run AdobeGCInvoker-1.0 Adobe Systems, Incorporated "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
No HKLM:Run DNS7reminder "E:\Programs\Dragon Nuance Naturally Speaking 12\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking12\Ereg.ini"
Yes HKLM:Run egui ESET "C:\Program Files\ESET\ESET Security\ecmds.exe" /launch /hide
No HKLM:Run HTC Sync Loader "E:\Programs\HTC SYNC\htcUPCTLoader.exe" -startup
Yes HKLM:Run IAStorIcon Intel Corporation C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
Yes HKLM:Run JMB36X IDE Setup JMicron Technology Corp. C:\Windows\RaidTool\xInsIDE.exe
No HKLM:Run LWS Logitech Inc. E:\Programs\Logitech Webcam\LWS\Webcam Software\LWS.exe -hide
No HKLM:Run NBKeyScan "I:\Isabel Filmer\New folder\Nero BackItUp 4\NBKeyScan.exe"
Yes HKLM:Run NUSB3MON Renesas Electronics Corporation "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
Yes HKLM:Run NvBackend NVIDIA Corporation "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
Yes HKLM:Run RtHDVCpl Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
Yes HKLM:Run ShadowPlay Microsoft Corporation "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
Yes HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
No Startup Common RescueTime.lnk RescueTime, Inc. E:\Programs\RESCUE~1\RESCUE~1.EXE
No Startup User EvernoteClipper.lnk E:\Programs\Evernote\EvernoteClipper.exe
 


#6 buddy215

buddy215

  • Moderator
  • 13,324 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:01 AM

Posted 30 May 2018 - 04:27 PM

List of Scheduled Tasks is missing...please post it.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#7 buddy215

buddy215

  • Moderator
  • 13,324 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:01 AM

Posted 30 May 2018 - 05:00 PM

I will have a further comment after seeing the list of Scheduled Tasks.

 

Suggest Disabling these Startups: Use CCleaner by clicking on each item and choosing Disable on the right.

Yes HKCU:Run BLSyndicationSystem Social Media Syndication System E:\Programs\Bookmarklovers\SociSynd_Submitter.exe
Yes HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Yes HKCU:Run SUPERAntiSpyware SUPERAntiSpyware E:\Programs\Superantispyware\SUPERAntiSpyware.exe
Yes HKLM:Run Adobe Creative Cloud Adobe Systems Incorporated "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
Yes HKLM:Run AdobeGCInvoker-1.0 Adobe Systems, Incorporated "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
Yes HKLM:Run egui ESET "C:\Program Files\ESET\ESET Security\ecmds.exe" /launch /hide
Yes HKLM:Run NvBackend NVIDIA Corporation "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
Yes HKLM:Run ShadowPlay Microsoft Corporation "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
Yes HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#8 MorDi33

MorDi33
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 30 May 2018 - 06:06 PM

Sorry, missed it.

Here it is:

 

Yes Task Adobe Flash Player NPAPI Notifier Adobe Systems Incorporated C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_Plugin.exe -check plugin
Yes Task Adobe Flash Player Updater Adobe Systems Incorporated C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes Task AdobeAAMUpdater-1.0-Runestasjon-PC-Rune Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
Yes Task AdobeGCInvoker-1.0-Runestasjon-PC-Rune Adobe Systems, Incorporated C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
Yes Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes Task G2MUpdateTask-S-1-5-21-892377978-1441931877-1165036963-1000 LogMeIn, Inc. C:\Users\Rune\AppData\Local\GoToMeeting\8847\g2mupdate.exe
Yes Task G2MUploadTask-S-1-5-21-892377978-1441931877-1165036963-1000 LogMeIn, Inc. C:\Users\Rune\AppData\Local\GoToMeeting\8847\g2mupload.exe
Yes Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes Task Run RoboForm Process Siber Systems E:\Programs\Roboform\Identities.exe -goodsync
Yes Task Run RoboForm TaskBar Icon Siber Systems E:\Programs\Roboform\RoboTaskBarIcon.exe /autoupdate=8.4.8.8
Yes Task SafeZone scheduled Autoupdate 1498867306 E:\Programs\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
Yes Task {1BE0A308-FB5C-4343-A946-7A6AFDFC04A6} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "E:\Programs\Social Multiplier\SetupSocialMultiplier2.exe" -d "E:\Programs\Social Multiplier"
Yes Task {39549D34-9FB8-44D2-BC8A-6D52C881EC65} Microsoft Corporation C:\Windows\system32\pcalua.exe -a E:\Games\Steam\steamapps\common\killingfloor2\_CommonRedist\DotNet\3.5\dotnetfx35.exe -d E:\Games\Steam\steamapps\common\killingfloor2\_CommonRedist\DotNet\3.5
Yes Task {48A7DAB1-8CEC-489B-B68C-4006B548E074} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\Users\Rune\AppData\Local\Temp\jre-8u161-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau-m FAMILYUPGRADE=1
Yes Task {5308E9E4-D2CE-43E8-9CBB-EE804E9BA568} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "E:\Temp Downloads\jxpiinstall(1).exe" -d "E:\Temp Downloads"
Yes Task {536D4A3D-B30D-405B-955F-5A2EF1313FA4} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "J:\Temp from lap 2\Magic Bullet Suite v2.1 for Adobe After Effects - Premiere [RH]\Magic Bullet Suite v2.1 for Adobe After Effects - Premiere\Magic Bullet Suite 2.1.exe" -d "J:\Temp from lap 2\Magic Bullet Suite v2.1 for Adobe After Effects - Premiere [RH]\Magic Bullet Suite v2.1 for Adobe After Effects - Premiere"
Yes Task {95D9CDC6-217D-4BDC-84A6-F73B6C993A1A} Microsoft Corporation C:\Windows\system32\pcalua.exe -a G:\MobileBroadbandSetup.exe -d G:\ -c AUTORUN=1
Yes Task {96E0D134-2A17-4E7F-BB30-335E5BC035A5} Microsoft Corporation C:\Windows\system32\pcalua.exe -a E:\games\Steam\steam.exe -c steam://uninstall/563
Yes Task {B47B6773-C906-4348-819A-C01BDB193E9B} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "E:\Temp Downloads\vcredist_x64.exe" -d "E:\Temp Downloads"
Yes Task {B81A6C53-041C-4F15-9A5A-3F5609E29BEB} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "E:\Programs\Dragon Nuance Naturally Speaking 12\Dragon_NaturallySpeaking_12_5_Home.exe" -d "E:\Programs\Dragon Nuance Naturally Speaking 12"
Yes Task {C839F115-BADE-45CF-9179-520C772C94C8} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "E:\Programs\Camtasia Final Station\Camtasia Setup\TechSmith Camtasia Studio v7.1.1 + Serials [ChattChitto RG]\TechSmith Camtasia Studio v7.1.1 + Serials [ChattChitto RG].exe" -d "E:\Programs\Camtasia Final Station\Camtasia Setup\TechSmith Camtasia Studio v7.1.1 + Serials [ChattChitto RG]"


#9 buddy215

buddy215

  • Moderator
  • 13,324 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:01 AM

Posted 30 May 2018 - 06:28 PM

Disable these Tasks: Use CCleaner by clicking on each item and choosing Disable on the right.

Yes Task G2MUpdateTask-S-1-5-21-892377978-1441931877-1165036963-1000 LogMeIn, Inc. C:\Users\Rune\AppData\Local\GoToMeeting\8847\g2mupdate.exe
Yes Task G2MUploadTask-S-1-5-21-892377978-1441931877-1165036963-1000 LogMeIn, Inc. C:\Users\Rune\AppData\Local\GoToMeeting\8847\g2mupload.exe
Yes Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes Task {1BE0A308-FB5C-4343-A946-7A6AFDFC04A6} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "E:\Programs\Social Multiplier\SetupSocialMultiplier2.exe" -d "E:\Programs\Social Multiplier"
Yes Task {39549D34-9FB8-44D2-BC8A-6D52C881EC65} Microsoft Corporation C:\Windows\system32\pcalua.exe -a E:\Games\Steam\steamapps\common\killingfloor2\_CommonRedist\DotNet\3.5\dotnetfx35.exe -d E:\Games\Steam\steamapps\common\killingfloor2\_CommonRedist\DotNet\3.5
Yes Task {48A7DAB1-8CEC-489B-B68C-4006B548E074} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\Users\Rune\AppData\Local\Temp\jre-8u161-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau-m FAMILYUPGRADE=1
Yes Task {5308E9E4-D2CE-43E8-9CBB-EE804E9BA568} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "E:\Temp Downloads\jxpiinstall(1).exe" -d "E:\Temp Downloads"
Yes Task {536D4A3D-B30D-405B-955F-5A2EF1313FA4} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "J:\Temp from lap 2\Magic Bullet Suite v2.1 for Adobe After Effects - Premiere [RH]\Magic Bullet Suite v2.1 for Adobe After Effects - Premiere\Magic Bullet Suite 2.1.exe" -d "J:\Temp from lap 2\Magic Bullet Suite v2.1 for Adobe After Effects - Premiere [RH]\Magic Bullet Suite v2.1 for Adobe After Effects - Premiere"
Yes Task {95D9CDC6-217D-4BDC-84A6-F73B6C993A1A} Microsoft Corporation C:\Windows\system32\pcalua.exe -a G:\MobileBroadbandSetup.exe -d G:\ -c AUTORUN=1
Yes Task {96E0D134-2A17-4E7F-BB30-335E5BC035A5} Microsoft Corporation C:\Windows\system32\pcalua.exe -a E:\games\Steam\steam.exe -c steam://uninstall/563
Yes Task {B47B6773-C906-4348-819A-C01BDB193E9B} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "E:\Temp Downloads\vcredist_x64.exe" -d "E:\Temp Downloads"
Yes Task {C839F115-BADE-45CF-9179-520C772C94C8} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "E:\Programs\Camtasia Final Station\Camtasia Setup\TechSmith Camtasia Studio v7.1.1 + Serials [ChattChitto RG]\TechSmith Camtasia Studio v7.1.1 + Serials [ChattChitto RG].exe" -d "E:\Programs\Camtasia Final Station\Camtasia Setup\TechSmith Camtasia Studio v7.1.1 + Serials [ChattChitto RG]"
 
Keep in mind that you can reenable one or more of these by using CCleaner if having them Disable creates a hassle/ problem for you.
 
Delete this Task: Use CCleaner by clicking on it and choosing Delete on the right.
Yes Task SafeZone scheduled Autoupdate 1498867306 E:\Programs\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#10 buddy215

buddy215

  • Moderator
  • 13,324 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:01 AM

Posted 30 May 2018 - 06:55 PM

If you intend to purchase Eset then go back and reenable the Eset Startup. Otherwise, you can uninstall Eset.

 

Check your browser add-ons for anything such as Safe Search, Safe Zone or any other Avast extension or plugin. Disable/ Delete/ Remove...whatever the choice is.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#11 MorDi33

MorDi33
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 30 May 2018 - 07:07 PM

Ok done



#12 buddy215

buddy215

  • Moderator
  • 13,324 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:01 AM

Posted 30 May 2018 - 07:19 PM

Reboot and tell me if any progress has been made.

 

If the main problem occurs while using Google Chrome then a reset should fix it.

 

Reset Chrome back to defaults to completely clear out issues with Chrome.

  • First, go to >> Google Sync << and sign into your account. Make sure you know your password as this will clear it from the browser.
  • Scroll down until you see the  reset_chrome_sync.png.c04f40073c8950690b "reset sync" button to clear your data from the server and remove your passphrase.
  • Now, close all Chrome windows. Chrome cannot be running for the next step. If needed, print this information or use another browser to read the information.
  • Press the Windows key + R at the same time, to bring up the run dialog box.
    • run_command.png.b7de635070cd76eabbc0061d
  • Type in (or copy/paste) the following and press Enter:     %localappdata%\Google\Chrome\User Data\Default\
  1. Press Ctrl + A to select all the files and folders.
  2. Hold down Ctrl + A and click once on the files "Bookmarks" and "Bookmarks.bak". This will unselect them.
  3. With all the files selected (except for your Bookmarks), press the Delete key and click Yes to delete the files and folders.
  4. Example of all files and folders selected, except Bookmarks

chrome_files_folders.png.ca8091b73232581

 

Restart your computer now and make sure there are no longer any redirects or other browser issues or blocks and let me know.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#13 MorDi33

MorDi33
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 30 May 2018 - 07:44 PM

Problem still occurs.

 

I just tried the Windows+R and the line of code. It did not work stating it went to a destination I did not have.

I can access this area via other means than the search field yes?



#14 MorDi33

MorDi33
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 30 May 2018 - 07:49 PM

My bad.

 

It worked.

 

I do not see it anymore.

 

Thanks a bunch again Buddy!

 

#THE Best forum!

 

All the best.

 

R



#15 buddy215

buddy215

  • Moderator
  • 13,324 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:01 AM

Posted 30 May 2018 - 08:10 PM

Enjoyed working with you...you're welcome


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users