Free Malware Removal Forum

[pgmigg]

Hello mkdsk101,

If I do the last few the last few setp with doing them CLEAR ALL my RESTORE POINTS? I am not sure if I want all my restore points cleared or do I have to?

Exactly before CLEAR ALL RESTORE POINTS there is command CREATE RESTORE POINT. The questionable command deleted all restore points excluding most recent one - the last was created. So you will have one clean restore point after all!

All previous restore points were compromised by the fact that your computer was infected. It means that trying to restore by any older in time restore point is a good chance to restore some infections also...

Please don't afraid and run that step too.

Stay Safe!
pgmigg

[mkdsk101]

Another question. On my windows task manager I have a bunch of things running like Csrss.exe and dwm.exe, explorer.exe, toaster.exe etc, etc, etc, taking up a lot of memory. I tried to end the processing of Csrss.exe but it won't let me and I have tried to do anything to the other ones. Do I need any of them running and if I don't how do I stop them and any other ones that I don't need as these may be making my videos choopy? Thanks for your help.

[mkdsk101]

Also how do I uninstall Explorer? I don't see it in the uninstall folder?

[mkdsk101]

Also my shock-wave keeps crashing? Why would that be?

[pgmigg]

Hello mkdsdk101,

On my windows task manager I have a bunch of things running like Csrss.exe and dwm.exe, explorer.exe, toaster.exe etc, etc, etc, taking up a lot of memory. I tried to end the processing of Csrss.exe but it won't let me and I have tried to do anything to the other ones. Do I need any of them running and if I don't how do I stop them and any other ones that I don't need as these may be making my videos choopy?

In the task manager you can see a lot of processes. They may be divided to two different groups:

• System processes such as csrss.exe or svchost.exe and many-many more.
• All other are related to programs you installed and run

I strongly suggest you don't touch (kill, delete, remove, uninstall) anything unless you know exactly what you are doing! You can easily crash or even destroy you computer.

Many programs prefer to run automatically immediately after start of the operating system. Then when you would like to use them, they are ready to work. The problem is - most of the time you don't use many of them or even all, but they used a lot of system resources such as memory, CPU time, hard drive space, etc. Theoretically every user should analyze his system and manage such processes.

I can try to help you a little. Please run the following steps:

Step 1.
CCleaner
Please download CCleaner ... © Piriform Ltd. and save it to your desktop.
CCleaner documentation can be found here ...if needed.

To Install CCleaner:
Caution: Make sure to UNCHECK any other software install offers, before installing CCleaner.

1. Right-click on ccsetup505.exe icon on your desktop and select "Run As Administrator..." to run it. If prompted by UAC, please allow it.
2. Press the "Next" button on Welcome to the CCleaner v5.05 Setup screen after selecting a language.
3. Click "I Agree"...(License Agreement) if prompted.
4. Click "Next" for default install location if prompted.
   The default is set to C:\Program Files\CCleaner. Unless you want it installed elsewhere, just leave it.
5. Check the "Install Options" you want or leave existed marks.
6. Click "Install".
7. Uncheck View Release notes and click "Finish" when prompted.

Step 2.
To Run CCleaner:

1. Right-click on CCleaner desktop icon and select "Run As Administrator..." to run it. If prompted by UAC, please allow it..
2. Select and click Tools on the left Pane.
3. Select and click Startup. You will see the first tab Windows with all related startups.
4. Select and click Save to text file... button on the right bottom corner, add the name of opened tab to the name of suggested file startup.txt , and safe Windows-startup.txt on your Desktop.
5. Then repeat previous paragraph 4 for all other tabs after Windows one by one and change saved names accordingly.
6. Close CCleaner when finished.
7. Locate every saved file on the Desktop, open one by one by Notepad, copy the contents of every file, and post all of them in your next reply

Then I will analyze all Startup lists and give you recommendations which of them can be disabled altogether with instruction how to do it.

Also how do I uninstall Explorer? I don't see it in the uninstall folder?

If we are talking about browser Internet explorer, then I should note you that IE is a part of Windows as operating system and it is not listed on the common Uninstall place. I also don't recommend you to uninstall it even it is possible by different system tool. The existence of IE is important at least for proper work of Windows Updates. Of cause, nobody push you to use it!

Also my shock-wave keeps crashing? Why would that be?

This problem don't appear to be malware related, and that is what this forum specializes in. Probably the best idea for this type of problem - reinstall conflicted program.

Please post each log separately to prevent it being cut off by the forum post size limiter.
Check each after you've posted it to make sure it's all present, if any log is cut off you'll have to post it in sections....

Please include in your next reply:

1. Do you have any problems executing the instructions?
2. Contents of all NNNN-startup.txt reports, saved after run of CCleaner.
3. Do you see any changes in computer behavior?

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed

[mkdsk101]

Yes HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
No HKCU:Run GarminExpressTrayApp "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
No HKCU:Run Google Update "C:\Users\MARK\AppData\Local\Google\Update\GoogleUpdate.exe" /c
No HKCU:Run Spybot-S&D Cleaning Safer-Networking Ltd. "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
No HKLM:Run AccuWeatherWidget Unlimited Realities "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup
No HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
No HKLM:Run Adobe Reader Speed Launcher "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
No HKLM:Run AdobeAAMUpdater-1.0 "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
No HKLM:Run AdobeCS6ServiceManager "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
No HKLM:Run Aimersoft Helper Compact.exe AimerSoft C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
No HKLM:Run Dell DataSafe Online Dell, Inc. C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
No HKLM:Run DellStage Unlimited Realities "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup
No HKLM:Run Desktop Disc Tool "C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"
No HKLM:Run dlbamon.exe Dell Inc. "C:\Program Files (x86)\Dell AIO Printer A940\dlbamon.exe"
Yes HKLM:Run HostManager AOL Inc. C:\Program Files (x86)\Common Files\AOL\1429832463\ee\AOLSoftware.exe
No HKLM:Run IAStorIcon Intel Corporation C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
No HKLM:Run ISUSPM Flexera Software, Inc. C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe -scheduler
No HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
Yes HKLM:Run mcpltui_exe McAfee, Inc. "C:\Program Files\Common~1\McAfee\Platform\mcuicnt.exe" /platui /runkey
No HKLM:Run mcui_exe McAfee, Inc. "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
No HKLM:Run Monitor LeapFrog Enterprises, Inc. "C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe"
No HKLM:Run NeroLauncher Nero AG C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe 900
No HKLM:Run PMBVolumeWatcher Sony Corporation C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
Yes HKLM:Run QuickFinder Scheduler Corel Corporation "c:\Program Files (x86)\Corel\WordPerfect Office X7\Programs\QFSCHD170.EXE"
Yes HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
No HKLM:Run RoxWatchTray Corel Corporation "C:\Program Files (x86)\Roxio Creator NXT\Common\RoxWatchTray14.exe"
No HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
No HKLM:Run RunDLLEntry_EptMon Microsoft Corporation C:\Windows\system32\RunDLL32.exe C:\Windows\system32\EptMon64.dll,RunDLLEntry EptMon64
No HKLM:Run RunDLLEntry_THXCfg Microsoft Corporation C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
No HKLM:Run SDTray Safer-Networking Ltd. "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
No HKLM:Run ShwiconXP9106 Alcor Micro Corp. C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe
No HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
No HKLM:Run THX Audio Control Panel Creative Technology Ltd "C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" /r
Yes HKLM:Run TkBellExe RealNetworks, Inc. "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
No HKLM:Run UpdReg Creative Technology Ltd. C:\Windows\UpdReg.EXE
Yes HKLM:Run Wondershare Helper Compact.exe Wondershare C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
No Startup Common McAfee Security Scan Plus.lnk C:\PROGRA~1\MCAFEE~1\38A880~1.141\SSSCHE~1.EXE
Yes Startup Common Transfer Utility Camera Monitor.lnk PIXELA CORPORATION C:\Program Files (x86)\PIXELA\Transfer Utility\CameraMonitor.exe
No Startup User Microsoft Find Fast.lnk C:\PROGRA~2\MICROS~1\Office\FINDFAST.EXE
No Startup User Office Startup.lnk C:\PROGRA~2\MICROS~1\Office\OSA.EXE -b

[mkdsk101]

No Extension Blog This Microsoft Corporation C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
No Helper Java(tm) Plug-In 2 SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
No Helper Java(tm) Plug-In SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
No Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
No Helper Windows Live ID Sign-in Helper Microsoft Corp. C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
No Helper Windows Live ID Sign-in Helper Microsoft Corp. C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

[mkdsk101]

No Extension RealDownloader 1.3.4 Real Networks, Inc. default-1430269792725 Firefox 37.0.2 C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
Yes Plugin Adobe Acrobat 11.0.10.32 Adobe Systems Inc. default-1430269792725 Firefox 37.0.2 C:\Program Files (x86)\Adobe\Reader 11.0\Reader\browser\nppdf32.dll
Yes Plugin Garmin Communicator Plug-In 4.2.0.0 GARMIN Corp. default-1430269792725 Firefox 37.0.2 C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
Yes Plugin Google Update 1.3.26.9 Google Inc. default-1430269792725 Firefox 37.0.2 C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
Yes Plugin iTunes Application Detector 1.0.1.1 Apple Inc. default-1430269792725 Firefox 37.0.2 C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
Yes Plugin Java Deployment Toolkit 8.0.450.14 11.45.2.14 Oracle Corporation default-1430269792725 Firefox 37.0.2 C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npdeployJava1.dll
Yes Plugin Java(TM) Platform SE 8 U45 11.45.2.14 Oracle Corporation default-1430269792725 Firefox 37.0.2 C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll
Yes Plugin McAfee SecurityCenter 14.0.339.0 McAfee, Inc. default-1430269792725 Firefox 37.0.2 c:\PROGRA~2\mcafee\msc\npMcSnFFPl.dll
Yes Plugin McAfee Virtual Technician 6.5.0.2101 McAfee, Inc. default-1430269792725 Firefox 37.0.2 C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll
Yes Plugin Photo Gallery 16.4.3505.912 Microsoft Corporation default-1430269792725 Firefox 37.0.2 C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
Yes Plugin QuickTime Plug-in 7.7.6 7.7.6.0 Apple Inc. default-1430269792725 Firefox 37.0.2 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll
Yes Plugin RealDownloader Plugin 1.3.4.3 RealDownloader default-1430269792725 Firefox 37.0.2 C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll
Yes Plugin RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) 15.0.6.14 RealNetworks, Inc. default-1430269792725 Firefox 37.0.2 C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
Yes Plugin RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) 1.3.4.3 RealNetworks, Inc. default-1430269792725 Firefox 37.0.2 C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
Yes Plugin RealPlayer Download Plugin 16.0.4.19 RealPlayer default-1430269792725 Firefox 37.0.2 c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
Yes Plugin RealPlayer Version Plugin 15.0.1.13 RealNetworks, Inc. default-1430269792725 Firefox 37.0.2 c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll
Yes Plugin RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) 16.0.4.19 RealNetworks, Inc. default-1430269792725 Firefox 37.0.2 c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll
Yes Plugin RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) 15.0.6.14 RealNetworks, Inc. default-1430269792725 Firefox 37.0.2 C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
Yes Plugin Shockwave Flash 17.0.0.169 Adobe Systems Incorporated default-1430269792725 Firefox 37.0.2 C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll
Yes Plugin Silverlight Plug-In 5.1.30514.0 Microsoft Corporation default-1430269792725 Firefox 37.0.2 c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[mkdsk101]

Yes Extension TLRemove 1.5.4 First user C:\Users\MARK\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hneieddeibpcngeljjkdpcajfcgelalk\1.5.4_0
Yes Plugin Chrome PDF Viewer First user chrome-extension://mhjfbmdgcfjbbpaeojofohoefgiehjai/
Yes Plugin Chrome Remote Desktop Viewer First user internal-remoting-viewer
Yes Plugin Native Client First user C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\internal-nacl-plugin
Yes Plugin Shockwave Flash 17.0.0.169 First user C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\PepperFlash\pepflashplayer.dll
Yes Plugin Widevine Content Decryption Module 1.4.7.796 First user C:\Users\MARK\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.7.796\_platform_specific\win_x86\widevinecdmadapter.dll

[mkdsk101]

Yes Task Adobe Acrobat Update Task Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Yes Task Adobe Flash Player Updater Adobe Systems Incorporated C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes Task GarminUpdaterTask C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe
Yes Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes Task PCDEventLauncher PC-Doctor, Inc. "C:\Program Files\Dell Support Center\sessionchecker.exe"
Yes Task RealDownloaderDownloaderScheduledTaskS-1-5-21-2130412082-872510349-2259372935-1000 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe /bgrecordaliveevent
Yes Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-2130412082-872510349-2259372935-1000 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe /logoncheck
Yes Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2130412082-872510349-2259372935-1000 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe /scheduledcheck
Yes Task RealPlayerRealUpgradeLogonTaskS-1-5-21-2130412082-872510349-2259372935-1000 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /logoncheck
Yes Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-2130412082-872510349-2259372935-1000 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
Yes Task RealUpgradeLogonTaskS-1-5-21-2130412082-872510349-2259372935-1000 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /logoncheck
Yes Task RealUpgradeScheduledTaskS-1-5-21-2130412082-872510349-2259372935-1000 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
Yes Task SidebarExecute Microsoft Corporation C:\Program Files\Windows Sidebar\sidebar.exe
Yes Task SystemToolsDailyTest "uaclauncher.exe" -silentenumeration -st SystemToolsDailyTest --ignoresecondarysplash --runsilently
Yes Task {0E5FFA70-B7B3-4AD7-AF23-C403A980856A} Dell Inc. C:\Program Files (x86)\Dell AIO Printer A940\DLBAaiox.exe
Yes Task {13F92E3C-232E-4FA8-8FF7-EEAAF6931DD8} C:\Users\MARK\Downloads\musicmatch10.00.4033.exe
Yes Task {15D2093E-FD56-45CB-BB1C-1CDBEBD7356D} AOL Inc. C:\Program Files (x86)\AOL Desktop 9.7\aol.exe
Yes Task {20F50F2F-8C2B-4F7F-9DDA-FC3F2ACAC9BA} C:\Program Files (x86)\MultiViewer\MultiViewer.exe
Yes Task {2D3028CF-CE03-4AE4-B144-B8BEB566D687} C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
Yes Task {45416873-6870-44CC-8E45-58127503EEAF} C:\Users\MARK\AppData\Local\Google\Chrome\Application\chrome.exe
Yes Task {487AB330-EBD7-4A76-B891-A91754FD4314} C:\Users\MARK\AppData\Local\Google\Chrome\Application\chrome.exe
Yes Task {4F83FC33-6FC3-4DBC-85FC-DA4905D386A2} Microsoft Corporation C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\VSO\pcsetup\PcSetup.exe" -d "C:\Program Files (x86)\VSO\pcsetup" -c /remove /removeatip "Uninstalling... Please reboot aftwerwards!"
Yes Task {5B006323-E1AE-4E67-A035-715B6B7DEC4A} C:\Users\MARK\AppData\Local\Google\Chrome\Application\chrome.exe
Yes Task {711738D9-A6C7-442A-B24A-2D60FC80400F} C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
Yes Task {74A7DDF1-BDA7-4B5A-BA82-F6455C234E40} C:\Program Files (x86)\MultiViewer\MultiViewer.exe
Yes Task {760E2A37-21F8-47EA-9D24-D7D4B99FF369} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\Users\MARK\Downloads\GraboidVideoInstaller-4.1.exe -d C:\Users\MARK\Downloads
Yes Task {7849AF3E-8179-490E-B09B-D31FDF213381} AOL Inc. C:\Program Files (x86)\AOL Desktop 9.7\aol.exe
Yes Task {7F471F8C-38C6-4F94-BC8A-0CBAD06FE02A} C:\Users\MARK\Downloads\musicmatch82.exe
Yes Task {7F70CAB2-072C-4D42-AEF6-16B1B69095C7} C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
Yes Task {8CD991B8-C611-457C-9A4B-8E148BBC1495} C:\Users\MARK\AppData\Local\Google\Chrome\Application\chrome.exe
Yes Task {9386CA07-7838-4DD2-938F-C939BD959A61} AOL Inc. C:\Program Files (x86)\AOL Desktop 9.7\aol.exe
Yes Task {9FB150E9-5941-4658-BCD0-641ED11803BF} Dell Inc. C:\Program Files (x86)\Dell AIO Printer A940\DLBAaiox.exe
Yes Task {A856C4BF-2EB7-46E3-9087-76EF407BC8EF} Microsoft Corporation C:\Windows\system32\pcalua.exe -a D:\Setup.EXE -d D:\
Yes Task {C1FE1AD8-7E5A-42FE-BFD1-7BE5D2CF6E2B} C:\Users\MARK\AppData\Local\Google\Chrome\Application\chrome.exe
Yes Task {C463BCFA-7638-46AF-8EB8-408311981CFE} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\Windows\StkUnist.exe
Yes Task {D2541205-BA83-43A0-85F2-5776AAAD7C09} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\Users\MARK\Desktop\switch.exe -d C:\Users\MARK\Desktop
Yes Task {D5E8CB6B-319E-4F0E-917E-CBAC38E34677} AOL Inc. C:\Program Files (x86)\AOL Desktop 9.7\aol.exe

[pgmigg]

Hello mkdsk101,

Could you please check all startup files you posted and reply here with the sequnce of their names accordingly to the sequnce of your posts?

Thanks,
Pgmigg

[mkdsk101]

Not sure what you mean?

[pgmigg]

Hello mkdsk101,

Not sure what you mean?

You posted 5 logs. Unfortunately you did not indicate which file is related to which tab. I need to be sure that log #1, for example, contains information from Windows tab, and so on.

I would like to have a small list indicates which post from which file was taken - now I probably can be sure about first file only - please continue:

1. Post 1 related to Windows-startup.txt
2. Post 2 related to ???-startup.txt
3. Post 3 related to ???-startup.txt
4. Post 4 related to ???-startup.txt
5. Post 5 related to ???-startup.txt

Please change all red question marks to real names!

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed

[mkdsk101]

Post 2 related to Internet Explorer, Post 3 related to firefox, Post 4 related to Goggle Chrome, and Post 5 related to scheduled tasks. I am pretty sure that is how they are posted.

[pgmigg]

Thank you, mkdsk101!

I am pretty sure that is how they are posted.

On the different computers with different set of installed Internet browsers appropriate set of reports may be different too! It was the reason why I asked you to do it...

Good! Lets continue...

To Run CCleaner:

1. Right-click on CCleaner desktop icon and select "Run As Administrator..." to run it. If prompted by UAC, please allow it..
2. Select and click Tools on the left Pane.
3. Select and click Startup. You will see the first tab Windows with all related startups.
4. Then please select entry by entry from tab to tab listed below, make a right-click on it, and then left-click on Disable at the pop-up menu. As the result, the "Yes" at the front of entry should be change to "No":
   
   1. Windows tab:
      
      • Yes HKLM:Run HostManager AOL Inc. C:\Program Files (x86)\Common Files\AOL\1429832463\ee\AOLSoftware.exe
      • Yes HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
      • Yes HKLM:Run Wondershare Helper Compact.exe Wondershare C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
   2. Goggle Chrome:
      
      • Yes Extension TLRemove 1.5.4 First user C:\Users\MARK\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hneieddeibpcngeljjkdpcajfcgelalk\1.5.4_0
      • Yes Plugin Chrome Remote Desktop Viewer First user internal-remoting-viewer
      • Yes Plugin Native Client First user C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\internal-nacl-plugin
      • Yes Plugin Widevine Content Decryption Module 1.4.7.796 First user C:\Users\MARK\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.7.796\_platform_specific\win_x86\widevinecdmadapter.dll
   3. Scheduled tasks
      
      • Yes Task PCDEventLauncher PC-Doctor, Inc. "C:\Program Files\Dell Support Center\sessionchecker.exe"
      • Yes Task SystemToolsDailyTest "uaclauncher.exe" -silentenumeration -st SystemToolsDailyTest --ignoresecondarysplash --runsilently
      • Yes Task {13F92E3C-232E-4FA8-8FF7-EEAAF6931DD8} C:\Users\MARK\Downloads\musicmatch10.00.4033.exe
      • Yes Task {15D2093E-FD56-45CB-BB1C-1CDBEBD7356D} AOL Inc. C:\Program Files (x86)\AOL Desktop 9.7\aol.exe
      • Yes Task {20F50F2F-8C2B-4F7F-9DDA-FC3F2ACAC9BA} C:\Program Files (x86)\MultiViewer\MultiViewer.exe
      • Yes Task {45416873-6870-44CC-8E45-58127503EEAF} C:\Users\MARK\AppData\Local\Google\Chrome\Application\chrome.exe
      • Yes Task {487AB330-EBD7-4A76-B891-A91754FD4314} C:\Users\MARK\AppData\Local\Google\Chrome\Application\chrome.exe
      • Yes Task {5B006323-E1AE-4E67-A035-715B6B7DEC4A} C:\Users\MARK\AppData\Local\Google\Chrome\Application\chrome.exe
      • Yes Task {74A7DDF1-BDA7-4B5A-BA82-F6455C234E40} C:\Program Files (x86)\MultiViewer\MultiViewer.exe
      • Yes Task {7849AF3E-8179-490E-B09B-D31FDF213381} AOL Inc. C:\Program Files (x86)\AOL Desktop 9.7\aol.exe
      • Yes Task {7F471F8C-38C6-4F94-BC8A-0CBAD06FE02A} C:\Users\MARK\Downloads\musicmatch82.exe
      • Yes Task {8CD991B8-C611-457C-9A4B-8E148BBC1495} C:\Users\MARK\AppData\Local\Google\Chrome\Application\chrome.exe
      • Yes Task {9386CA07-7838-4DD2-938F-C939BD959A61} AOL Inc. C:\Program Files (x86)\AOL Desktop 9.7\aol.exe
      • Yes Task {C1FE1AD8-7E5A-42FE-BFD1-7BE5D2CF6E2B} C:\Users\MARK\AppData\Local\Google\Chrome\Application\chrome.exe
      • Yes Task {D5E8CB6B-319E-4F0E-917E-CBAC38E34677} AOL Inc. C:\Program Files (x86)\AOL Desktop 9.7\aol.exe
5. Close CCleaner when finished.
6. Restart your computer.

And one more thing. Somehow one startup tab was missed - I mean Context Menu tab - usually it is the last tab.

To Run CCleaner:

1. Right-click on CCleaner desktop icon and select "Run As Administrator..." to run it. If prompted by UAC, please allow it..
2. Select and click Tools on the left Pane.
3. Select and click Startup. Go to the last tab Context Menu with all related startups.
4. Select and click Save to text file... button on the right bottom corner, add the name of opened tab to the name of suggested file startup.txt , and safe Context-startup.txt on your Desktop.
5. Close CCleaner when finished.
6. Locate saved file on the Desktop, open it by Notepad, copy the contents and post it in your next reply

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed