What is this?

[Rheostat.]

"Information" just randomly show up in the Start menu. So is it safe and what is it?

[Nettly_]

That is a virus. Made by a group called Microsoft. Microsoft is also known for selling a much more infectious virus on most computers by default.

All sarcasm and Linux love aside, no this is just Windows bloat just I think yours is glitched

[kirashi]

48 minutes ago, Rheostat. said:

"Information" just randomly show up in the Start menu. So is it safe and what is it?

Ummm wanna click HELP > About (or just show us a screenshot of whatever comes up) cause I don't believe that's an official Microsoft app.

[Rheostat.]

1 hour ago, kirashi said:

Ummm wanna click HELP > About (or just show us a screenshot of whatever comes up) cause I don't believe that's an official Microsoft app.

 

[kirashi]

1 minute ago, Rheostat. said:

 

Hmmm OK that is less helpful than I thought it would be. Maybe instead, right click on the Start Menu shortcut, and choose Open File Location from the More menu. If it just takes you to a Start Menu folder (C:\ProgramData\Microsoft\Windows\Start Menu\Programs) then right click on the icon one more time and choose Open File Location again. That should open the directory containing the executable itself. Feel free to screenshot this, along with a screenshot of the Details tab in the Properties window that you can open by right clicking on the exe file.

[Rheostat.]

1 minute ago, kirashi said:

Hmmm OK that is less helpful than I thought it would be. Maybe instead, right click on the Start Menu shortcut, and choose Open File Location from the More menu. If it just takes you to a Start Menu folder (C:\ProgramData\Microsoft\Windows\Start Menu\Programs) then right click on the icon one more time and choose Open File Location again. That should open the directory containing the executable itself. Feel free to screenshot this, along with a screenshot of the Details tab in the Properties window that you can open by right clicking on the exe file.

Location:  C:\Windows\System32 

 

 

[kirashi]

7 minutes ago, Rheostat. said:

Location:  C:\Windows\System32 

That helps a lot! I'm curious now as to where you got this PC, or at least if there have been other software changes (updates or installations) in recent weeks, as doing a quick search for "TriLock designerware llc" yields some... weird and interesting results. DesignerWare LLC appears to have been making or aiding in creating some kind of PC Tracking software for rental agencies to recover rental PC's from... I guess those who couldn't pay the rental fee anymore? IDK, seems sketchy.

 

https://arstechnica.com/information-technology/2012/12/how-spyware-on-rental-pcs-captured-users-most-intimate-moments/

https://www.ftc.gov/news-events/press-releases/2012/09/ftc-halts-computer-spying

https://www.popsci.com/technology/article/2013-04/federal-settlement-bars-rent-own-computers-spying-customers/

https://www.eightforums.com/threads/victim-of-an-illegal-activity-warning-message-on-startup.49733/

http://datagovus.com/nevada-corporation.php?id=E0491832011-9

[Rheostat.]

2 minutes ago, kirashi said:

That helps a lot! I'm curious now as to where you got this PC, or at least if there have been other software changes (updates or installations) in recent weeks, as doing a quick search for "TriLock designerware llc" yields some... weird and interesting results. DesignerWare LLC appears to have been making or aiding in creating some kind of PC Tracking software for rental agencies to recover rental PC's from... I guess those who couldn't pay the rental fee anymore? IDK, seems sketchy.

 

https://www.ftc.gov/news-events/press-releases/2012/09/ftc-halts-computer-spying

https://www.eightforums.com/threads/victim-of-an-illegal-activity-warning-message-on-startup.49733/

http://datagovus.com/nevada-corporation.php?id=E0491832011-9

So how would I uninstall it?

[kirashi]

No idea, there might be an entry in Add Remove programs, or you might be able to just delete the program's folder. However, the only way to be certain a computer doesn't have unauthorized software on it is to pave n nuke the OS drive with a known good & verified copy of Windows, or whatever OS you prefer to run. You could also try contacting Designerware LLC, but I imagine they no longer exist due to... legal reasons.

[Rheostat.]

1 minute ago, kirashi said:

No idea, there might be an entry in Add Remove programs, or you might be able to just delete the program's folder. However, the only way to be certain a computer doesn't have unauthorized software on it is to pave n nuke the OS drive with a known good & verified copy of Windows, or whatever OS you prefer to run. You could also try contacting Designerware LLC, but I imagine they no longer exist due to... legal reasons.

Would ccleaner would be able to remove it 

[kirashi]

Just now, Rheostat. said:

Would ccleaner would be able to remove it 

As I've never seen their software, I would have no way of knowing this. You might be able to contact Ashton Kelly (who I assume is Tim Kelly's son, unless Tim changed his name) who is listed as the resident of 108 Hutchinson DrNorth East PA 16428 where Designerware LLC is listed at, or reach out to them via LinkedIn.

 

To be clear, this information is publicly listed and thus accessible to anyone willing to look. HOWEVER, whatever is done with the information needs to remain civil & polite - going on a witch hunt or otherwise causing harassment would cross over the line into questionably legal territory, so please don't do that. Also, I am not a lawyer, this is not legal advice.

 

https://www.whitepages.com/address/108-Hutchinson-Dr/North-East-PA/46tj6TfZYwQt8DC3SMGhLW

https://www.linkedin.com/in/ashton-kelly-9720a0184/

 

Looks like Tim Kelly has at one point attempted to setup (or move) the Designerware LLC business to an address of a Veterinary Clinic in Las Vegas through a holding / business incorporation company by the name of "The Corporate Place" located at 601 E CHARLESTON BLVD STE 100, LAS VEGAS, NV 89104... 

 

https://publicrecords.directory/profiles/timoth-kelly.9347125.html

 

 

 

[Rheostat.]

4 minutes ago, kirashi said:

As I've never seen their software, I would have no way of knowing this. You might be able to contact Ashton Kelly (who I assume is Tim Kelly's son, unless Tim changed his name) who is listed as the resident of 108 Hutchinson DrNorth East PA 16428 where Designerware LLC is listed at, or reach out to them via LinkedIn.

 

To be clear, this information is publicly listed and thus accessible to anyone willing to look. HOWEVER, whatever is done with the information needs to remain civil & polite - going on a witch hunt or otherwise causing harassment would cross over the line into questionably legal territory, so please don't do that. Also, I am not a lawyer, this is not legal advice.

 

https://www.whitepages.com/address/108-Hutchinson-Dr/North-East-PA/46tj6TfZYwQt8DC3SMGhLW

https://www.linkedin.com/in/ashton-kelly-9720a0184/

 

Looks like Tim Kelly has at one point attempted to setup (or move) the Designerware LLC business to an address of a Veterinary Clinic in Las Vegas through a holding / business incorporation company by the name of "The Corporate Place" located at 601 E CHARLESTON BLVD STE 100, LAS VEGAS, NV 89104... 

 

https://publicrecords.directory/profiles/timoth-kelly.9347125.html

 

 

 

Thank you, I've just deleted the exe from C:\Windows\System32