Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Start Menu Corrupted


  • Please log in to reply

#16
Megan81991

Megan81991

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts

Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
Ran by Megan (2016-03-12 15:38:17)
Running from C:\Users\Megan\Desktop
Boot Mode: Normal

================== Search Registry: "Pokki" ===========

[HKEY_LOCAL_MACHINE\SOFTWARE\CIS_Backup_{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\Configs\2\Firewall\Policy\7]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\CIS_Backup_{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\Configs\2\Firewall\Policy\7]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\CIS_Backup_{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\Configs\2\HIPS\Policy\19]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\CIS_Backup_{25B9C8A9-7B0C-4f9c-AF29-59A5608704F9}\Configs\2\HIPS\Policy\19]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\CisConfigs\2\Firewall\Policy\100]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\CisConfigs\2\Firewall\Policy\100]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\CisConfigs\2\Firewall\Policy\107]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\CisConfigs\2\Firewall\Policy\107]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\CisConfigs\2\Firewall\Policy\4]
"Filename"="F:\Installed Software\Start Menu\PokkiInstaller.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\CisConfigs\2\Firewall\Policy\4]
"DeviceName"="F:\Installed Software\Start Menu\PokkiInstaller.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\CisConfigs\2\Firewall\Policy\5]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Download Helper\PokkiDownloadHelper.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\CisConfigs\2\Firewall\Policy\5]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Download Helper\PokkiDownloadHelper.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\CisConfigs\2\Firewall\Policy\63]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\CisConfigs\2\Firewall\Policy\63]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\CisConfigs\2\Firewall\Policy\64]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostApp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\CisConfigs\2\Firewall\Policy\64]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostApp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\100]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\100]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\107]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\107]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\4]
"Filename"="F:\Installed Software\Start Menu\PokkiInstaller.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\4]
"DeviceName"="F:\Installed Software\Start Menu\PokkiInstaller.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\5]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Download Helper\PokkiDownloadHelper.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\5]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Download Helper\PokkiDownloadHelper.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\63]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\63]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\64]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostApp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\64]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostApp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\100]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\100]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\107]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\107]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\4]
"Filename"="F:\Installed Software\Start Menu\PokkiInstaller.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\4]
"DeviceName"="F:\Installed Software\Start Menu\PokkiInstaller.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\5]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Download Helper\PokkiDownloadHelper.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\5]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Download Helper\PokkiDownloadHelper.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\63]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\63]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\64]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostApp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro\Configurations\2\Firewall\Policy\64]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostApp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\CisConfigs\2\Firewall\Policy\100]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\CisConfigs\2\Firewall\Policy\100]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\CisConfigs\2\Firewall\Policy\107]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\CisConfigs\2\Firewall\Policy\107]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\CisConfigs\2\Firewall\Policy\4]
"Filename"="F:\Installed Software\Start Menu\PokkiInstaller.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\CisConfigs\2\Firewall\Policy\4]
"DeviceName"="F:\Installed Software\Start Menu\PokkiInstaller.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\CisConfigs\2\Firewall\Policy\5]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Download Helper\PokkiDownloadHelper.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\CisConfigs\2\Firewall\Policy\5]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Download Helper\PokkiDownloadHelper.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\CisConfigs\2\Firewall\Policy\63]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\CisConfigs\2\Firewall\Policy\63]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\CisConfigs\2\Firewall\Policy\64]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostApp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\CisConfigs\2\Firewall\Policy\64]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostApp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\100]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\100]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\107]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\107]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\4]
"Filename"="F:\Installed Software\Start Menu\PokkiInstaller.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\4]
"DeviceName"="F:\Installed Software\Start Menu\PokkiInstaller.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\5]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Download Helper\PokkiDownloadHelper.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\5]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Download Helper\PokkiDownloadHelper.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\63]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\63]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\64]
"Filename"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostApp.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CmdAgent\Mode\Configurations\2\Firewall\Policy\64]
"DeviceName"="C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostApp.exe"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\ae4cce99_0]
""="{2}.\\?\hdaudio#func_01&ven_10ec&dev_0290&subsys_103c2291&rev_1000#{6994ad04-93ef-11d0-a3cc-00a0c9223196}\singlelineouttopo/00010001|\Device\HarddiskVolume4\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostApp.exe%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]
"Pokki"="0x020000000000000000000000"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP]
"Publisher"="Pokki"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows\Windows Error Reporting\Debug]
"StoreLocation"="C:\Users\Megan\AppData\Local\Microsoft\Windows\WER\ReportArchive\AppCrash_PokkiDownloadHel_ca441ae2d640bb87bab5cfbc74b2b772a48347_cca2f5a1_1499aa62"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"C:\Users\Megan\AppData\Local\Pokki\Engine\StartMenuIndexer.exe"="0x534143500100000000000000070000002800000048532F005531300001000000000000000000030673220000B395E7CF049FCE01000000000000000002000000280000000000000000000000000000000000000000000000000000004DD9E200000000000400000004000000"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"C:\Users\Megan\AppData\Local\Pokki\Setup\WinServicesUpdater.exe"="0x5341435001000000000000000700000028000000F06801006462020001000000000000000000010600010000975FD891C99ECE0100000080000000000200000028000000000000000000004000000000000000000000000000000000D9E50400000000000100000001000000"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"C:\Users\Megan\AppData\Local\Pokki\Engine\HostAppService.exe"="0x5341435001000000000000000700000028000000000E780007DF780001000000000000000000030600210000975FD891C99ECE01000000000000000002000000280000000000000000000000000000000000000000000000000000009F0A0000000000002600000026000000"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"C:\Users\Megan\AppData\Local\Pokki\Engine\ServiceHostApp.exe"="0x534143500100000000000000070000002800000000207800FDAC780001000000000000000000030600210000975FD891C99ECE010000000000000000020000002800000000000000000000000000000000000000000000000000000066090000000000003500000035000000"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"F:\Installed Software\Start Menu\Pokki_Start_MenuSetup.exe"="0x534143500100000000000000070000002800000068980C008E5E0D0001000000000000000000030600210000975FD891C99ECE0100000000000000000200000050000000000000000000004000000000000000000000000000000000A68B00000000000001000000010000000000000000000000000000000000000000000000000000003DFC0100000000000100000000000000"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"F:\Installed Software\Start Menu\PokkiInstaller.exe"="0x534143500100000000000000070000002800000000624100F80A420001000000000000000000030600210000975FD891C99ECE010000000000000000050000001000000000000000000000000000000000000000020000002800000000000000000000400000000000000000000000000000000028230000000000000100000001000000"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"C:\Users\Megan\AppData\Local\Pokki\Download Helper\PokkiDownloadHelper.exe"="0x5341435001000000000000000700000028000000C8E70D005DE70E0003000000000000000000030600210000975FD891C99ECE010000000000000000050000001000000000000000000000000000000000000000020000002800000000000000000000000000000000000000000000000000000069060000000000000100000001000000"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Pokki]
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Pokki\Pokki Download Helper]
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\IconCache\persistent\PC App Store.ico|1"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\IconCache\persistent\PC App Store.ico|2"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\IconCache\persistent\PC App Store.ico|3"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\IconCache\persistent\PC App Store.ico|4"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\Engine\HostAppService.exe,6|1"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\Engine\HostAppService.exe,6|2"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\Engine\HostAppService.exe,6|3"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\Engine\HostAppService.exe,6|4"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\IconCache\persistent\Solitaire.ico|1"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\IconCache\persistent\Solitaire.ico|2"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\IconCache\persistent\Solitaire.ico|3"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\IconCache\persistent\Solitaire.ico|4"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\IconCache\persistent\Sudoku Smiles.ico|1"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\IconCache\persistent\Sudoku Smiles.ico|2"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\IconCache\persistent\Sudoku Smiles.ico|3"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IconCache]
"%LOCALAPPDATA%\Pokki\IconCache\persistent\Sudoku Smiles.ico|4"="<none>"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IndexCache\FileItems\c:|programdata|microsoft|windows|start menu|programs\0c344c27-e650-11e5-8428-8cdcd4703bcb]
"iconPath"="%LOCALAPPDATA%\Pokki\IconCache\persistent\PC App Store.ico"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IndexCache\FileItems\c:|programdata|microsoft|windows|start menu|programs\0c344c27-e650-11e5-8428-8cdcd4703bcb]
"appUserModelId"="SweetLabs.Pokki.f22abfeae27a67446927d078890381efc546d3e1"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IndexCache\FileItems\c:|programdata|microsoft|windows|start menu|programs\0c344c27-e650-11e5-8428-8cdcd4703bcb]
"linkTarget"="%LOCALAPPDATA%\Pokki\Engine\HostAppService.exe"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IndexCache\FileItems\c:|programdata|microsoft|windows|start menu|programs\0c344c28-e650-11e5-8428-8cdcd4703bcb]
"iconPath"="%LOCALAPPDATA%\Pokki\Engine\HostAppService.exe,6"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IndexCache\FileItems\c:|programdata|microsoft|windows|start menu|programs\0c344c28-e650-11e5-8428-8cdcd4703bcb]
"appUserModelId"="SweetLabs.Pokki.notifications"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IndexCache\FileItems\c:|programdata|microsoft|windows|start menu|programs\0c344c28-e650-11e5-8428-8cdcd4703bcb]
"linkTarget"="%LOCALAPPDATA%\Pokki\Engine\HostAppService.exe"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IndexCache\FileItems\c:|users|megan|appdata|roaming|microsoft|windows|start menu|programs\0c344c05-e650-11e5-8428-8cdcd4703bcb]
"appUserModelId"="SweetLabs.Pokki.f22abfeae27a67446927d078890381efc546d3e1"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IndexCache\FileItems\c:|users|megan|appdata|roaming|microsoft|windows|start menu|programs\0c344c07-e650-11e5-8428-8cdcd4703bcb]
"iconPath"="%LOCALAPPDATA%\Pokki\IconCache\persistent\Solitaire.ico"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IndexCache\FileItems\c:|users|megan|appdata|roaming|microsoft|windows|start menu|programs\0c344c07-e650-11e5-8428-8cdcd4703bcb]
"appUserModelId"="SweetLabs.Pokki.2b66b623f5a42458674544b4dc338a2420c548d1"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IndexCache\FileItems\c:|users|megan|appdata|roaming|microsoft|windows|start menu|programs\0c344c08-e650-11e5-8428-8cdcd4703bcb]
"iconPath"="%LOCALAPPDATA%\Pokki\IconCache\persistent\Sudoku Smiles.ico"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform\IndexCache\FileItems\c:|users|megan|appdata|roaming|microsoft|windows|start menu|programs\0c344c08-e650-11e5-8428-8cdcd4703bcb]
"appUserModelId"="SweetLabs.Pokki.a8a104e3c52413a90b17bc1de0627f77b9baf9a8"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\AllFileSystemObjects\shell\pokki]
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\Directory\shell\pokki]
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\Drive\shell\pokki]
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\lnkfile\shell\pokki]
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\pokki]
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\pokki]
""="URL:Pokki Protocol"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\pokki\shell\open\command]
""=""%LOCALAPPDATA%\Pokki\Engine\HostAppService.exe" %1"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\AllFileSystemObjects\shell\pokki]
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\Directory\shell\pokki]
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\Drive\shell\pokki]
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\lnkfile\shell\pokki]
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\pokki]
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\pokki]
""="URL:Pokki Protocol"
[HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\pokki\shell\open\command]
""=""%LOCALAPPDATA%\Pokki\Engine\HostAppService.exe" %1"

====== End of Search ======


  • 0

Advertisements


#17
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,028 posts
  • MVP
This should remove most traces of it. 
Download the attached fixlist.txt to the same location as FRST
 
Attached File  fixlist.txt   2.86KB   74 downloads
 
Run FRST and press Fix
A fix log will be generated please post that 
 
Perhaps you can download a new copy and reinstall it now.

  • 0

#18
Megan81991

Megan81991

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts

Fix result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
Ran by Megan (2016-03-12 16:33:06) Run:2
Running from C:\Users\Megan\Desktop
Loaded Profiles: Megan (Available Profiles: Megan)
Boot Mode: Normal
==============================================

fixlist content:
*****************
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Pokki"
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform"
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\AllFileSystemObjects\shell\pokki"
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\Directory\shell\pokki"
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\Drive\shell\pokki"
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\lnkfile\shell\pokki"
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\pokki"
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\Directory\shell\pokki"
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\AllFileSystemObjects\shell\pokki"
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\Drive\shell\pokki"
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\lnkfile\shell\pokki"
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\pokki"
REG: reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP"
C:\Users\Megan\AppData\Local\Pokki



*****************


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Pokki" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Pokki (Yes/No)? The operation completed successfully.



========= End of Reg: =========


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\SweetLabs App Platform (Yes/No)? The operation completed successfully.



========= End of Reg: =========


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\AllFileSystemObjects\shell\pokki" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\AllFileSystemObjects\shell\pokki (Yes/No)? The operation completed successfully.



========= End of Reg: =========


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\Directory\shell\pokki" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\Directory\shell\pokki (Yes/No)? The operation completed successfully.



========= End of Reg: =========


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\Drive\shell\pokki" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\Drive\shell\pokki (Yes/No)? The operation completed successfully.



========= End of Reg: =========


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\lnkfile\shell\pokki" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\lnkfile\shell\pokki (Yes/No)? The operation completed successfully.



========= End of Reg: =========


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\pokki" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Classes\pokki (Yes/No)? The operation completed successfully.



========= End of Reg: =========


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\Directory\shell\pokki" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\Directory\shell\pokki (Yes/No)? ERROR: The system was unable to find the specified registry key or value.


========= End of Reg: =========


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\AllFileSystemObjects\shell\pokki" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\AllFileSystemObjects\shell\pokki (Yes/No)? ERROR: The system was unable to find the specified registry key or value.


========= End of Reg: =========


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\Drive\shell\pokki" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\Drive\shell\pokki (Yes/No)? ERROR: The system was unable to find the specified registry key or value.


========= End of Reg: =========


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\lnkfile\shell\pokki" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\lnkfile\shell\pokki (Yes/No)? ERROR: The system was unable to find the specified registry key or value.


========= End of Reg: =========


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\pokki" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001_Classes\pokki (Yes/No)? ERROR: The system was unable to find the specified registry key or value.


========= End of Reg: =========


========= reg delete "HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP" =========

Permanently delete the registry key HKEY_USERS\S-1-5-21-1022377986-404654602-2291752943-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP (Yes/No)? The operation completed successfully.



========= End of Reg: =========

"C:\Users\Megan\AppData\Local\Pokki" => not found.

==== End of Fixlog 16:33:23 ====


  • 0

#19
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,028 posts
  • MVP

Looks like that worked anyway.


  • 0

#20
Megan81991

Megan81991

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts

Attempting to install the start menu still doesn't work. Just keeps saying it was unable to install.


  • 0

#21
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,028 posts
  • MVP

Did you right click on the installer and Run As Admin?  Can you perhaps install it in a different location?  Can you create a new login with admin power and login as the new login and try it there?  

 

Do the registry search again for pokki and let's see if there is more to remove.  I didn't mess with the firewall stuff because it didn't seem important but maybe it needs to go too.

 

You might want to try one of the alternatives:

 

http://alternativeto...are/pokki-menu/


  • 0

#22
Megan81991

Megan81991

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts

I have been running the install as an administrator, that doesn't help.

 

The downloader runs the install until it gets to the very end of it before it says it fails, but when I attempt to run just the installer it fails instantly. Comodo is asking me if I want to let it access the internet, which I allow, so the firewall isn't stopping it from connecting.

 

I may just have to accept that I've lost the battle and will have to go with an alternative as you suggested.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP