Jump to content

Build Theme!
  •  
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 91862 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

computer crash [Solved]


  • This topic is locked This topic is locked
120 replies to this topic

#46 Tomk

Tomk

    Beguilement Monitor

  • Classroom Admin
  • 20,150 posts

Posted 10 June 2014 - 09:38 AM

please post the Mbam log.

 

Then please make me a set of DDS logs and post them.


Tomk
------------------------------------------------------------

mvplogo1_zpsea7gtc7e.gif


WTT-Grad1.jpg

Topics are closed after 5 days without response
unite_blue_zpsbfd3cd98.png

    Advertisements

Register to Remove


#47 wilma1313

wilma1313

    Silver Member

  • Authentic Member
  • PipPipPip
  • 386 posts

Posted 10 June 2014 - 12:37 PM

I can't run DDS, it pops up a message "this tool does not your support your operating system" and that IS an exact quote with the two yours.

The only way I can get on this forum now is to go into my history and click it. If I try to hit the forums link on the whatthetech page I get redirected to a page that tells me I can't go to that page.

Here is the mbam log.

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.06.09.04

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16899
l :: PURPLE [administrator]

6/10/2014 8:55:12 AM
MBAM-log-2014-06-10 (09-01-19).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 253423
Time elapsed: 1 minute(s), 56 second(s)

Memory Processes Detected: 1
C:\Program Files (x86)\Greener Web\updateGreenerWeb.exe (PUP.Optional.GreenerWeb.A) -> 12092 -> No action taken.

Memory Modules Detected: 1
C:\Program Files (x86)\Greener Web\13FA679A-E581-40FB-9B6A-ED83707BD11E.dll (PUP.Optional.GreenerWeb.A) -> No action taken.

Registry Keys Detected: 17
HKCR\CLSID\{1973d53b-7311-45d7-8270-f44571c041a0} (PUP.Optional.GreenerWeb.A) -> No action taken.
HKCR\TypeLib\{3a1beabe-0dc5-4615-8099-83973b843c06} (PUP.Optional.GreenerWeb.A) -> No action taken.
HKCR\Interface\{D95E57C2-53B3-4C38-BA1E-7980CB5E1803} (PUP.Optional.GreenerWeb.A) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1973D53B-7311-45D7-8270-F44571C041A0} (PUP.Optional.GreenerWeb.A) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{1973D53B-7311-45D7-8270-F44571C041A0} (PUP.Optional.GreenerWeb.A) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1973D53B-7311-45D7-8270-F44571C041A0} (PUP.Optional.GreenerWeb.A) -> No action taken.
HKCR\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} (PUP.Optional.BrowseFox.A) -> No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\Update Greener Web (PUP.Optional.GreenerWeb.A) -> No action taken.
HKCU\SOFTWARE\InstallCore\Speedial (PUP.Optional.Speedial.A) -> No action taken.
HKCU\Software\Greener Web (PUP.Optional.GreenerWeb.A) -> No action taken.
HKCU\Software\speedial (PUP.Optional.Speedial.A) -> No action taken.
HKCU\Software\InstallCore\1I1T1Q1S (PUP.Optional.InstallCore.A) -> No action taken.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> No action taken.
HKLM\SOFTWARE\InstallCore\Speedial (PUP.Optional.Speedial.A) -> No action taken.
HKLM\Software\Greener Web (PUP.Optional.GreenerWeb.A) -> No action taken.
HKLM\Software\Wow6432Node\Greener Web (PUP.Optional.GreenerWeb.A) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Speedial (PUP.Optional.Speedial.A) -> No action taken.

Registry Values Detected: 1
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0M2P0U0F0B1O1O1G -> No action taken.

Registry Data Items Detected: 1
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.Speedial.A) -> Bad: (http://speedial.com/...=2026722248&ir=) Good: (www.google.com) -> No action taken.

Folders Detected: 45
C:\Program Files (x86)\Greener Web (PUP.Optional.GreenerWeb.A) -> No action taken.
C:\Program Files (x86)\Speedial (PUP.Optional.Speedial.A) -> No action taken.
C:\Program Files (x86)\Speedial\1.8.29.15 (PUP.Optional.Speedial.A) -> No action taken.
C:\Program Files (x86)\Speedial\1.8.29.15\bh (PUP.Optional.Speedial.A) -> No action taken.
C:\Users\l\AppData\Roaming\Speedial (PUP.Optional.Speedial.A) -> No action taken.
C:\Users\l\AppData\Roaming\Speedial\UpdateProc (PUP.Optional.Speedial.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0 (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\browser (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\browser\misc (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\data (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\external (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\newtab (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\external (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\gallery (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\icons (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\resources (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\chrome (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\favorites (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\info (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\review (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\ar (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\de (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\en (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\es (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\fr (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\he (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\it (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\ja (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\nl (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\pl (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\pt_BR (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\ru (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\tr (PUP.Optional.NewTab.A) -> No action taken.

Files Detected: 176
C:\Program Files (x86)\Greener Web\13FA679A-E581-40FB-9B6A-ED83707BD11E.dll (PUP.Optional.GreenerWeb.A) -> No action taken.
C:\Program Files (x86)\Greener Web\GreenerWeb.ico (PUP.Optional.GreenerWeb.A) -> No action taken.
C:\Program Files (x86)\Greener Web\0 (PUP.Optional.GreenerWeb.A) -> No action taken.
C:\Program Files (x86)\Greener Web\7za.exe (PUP.Optional.GreenerWeb.A) -> No action taken.
C:\Program Files (x86)\Greener Web\GreenerWeb.FirstRun.exe (PUP.Optional.GreenerWeb.A) -> No action taken.
C:\Program Files (x86)\Greener Web\GreenerWebUninstall.exe (PUP.Optional.GreenerWeb.A) -> No action taken.
C:\Program Files (x86)\Greener Web\updateGreenerWeb.exe (PUP.Optional.GreenerWeb.A) -> No action taken.
C:\Program Files (x86)\Greener Web\updateGreenerWeb.InstallState (PUP.Optional.GreenerWeb.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bakijjialdiiboeaknfpmflphhmljfkd_0.localstorage (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bakijjialdiiboeaknfpmflphhmljfkd_0.localstorage-journal (PUP.Optional.NewTab.A) -> No action taken.
C:\Program Files (x86)\Speedial\1.8.29.15\FavIcon.ico (PUP.Optional.Speedial.A) -> No action taken.
C:\Program Files (x86)\Speedial\1.8.29.15\Sqlite3.dll (PUP.Optional.Speedial.A) -> No action taken.
C:\Program Files (x86)\Speedial\1.8.29.15\uninst.dat (PUP.Optional.Speedial.A) -> No action taken.
C:\Program Files (x86)\Speedial\1.8.29.15\uninstall.exe (PUP.Optional.Speedial.A) -> No action taken.
C:\Users\l\AppData\Roaming\Speedial\UpdateProc\config.dat (PUP.Optional.Speedial.A) -> No action taken.
C:\Users\l\AppData\Roaming\Speedial\UpdateProc\info.dat (PUP.Optional.Speedial.A) -> No action taken.
C:\Users\l\AppData\Roaming\Speedial\UpdateProc\UpdateTask.exe (PUP.Optional.Speedial.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\manifest.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\browser\background.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\browser\background.min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\browser\misc\screenshot.inject.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\data\favorites_de.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\data\favorites_en_gb.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\data\favorites_en_us.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\data\favorites_fr.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\data\favorites_he.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\data\favorites_it.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\data\favorites_pt_br.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\data\favorites_ru.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\data\favorites_tr.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\external\angular.min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\external\crypto-js.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\external\jquery-2.1.0.min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\external\jquery.autocomplete.min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\external\jquery.balloon.min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\external\jquery.fittext.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\external\jquery.Jcrop.min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\external\jquery.simplecolorpicker.min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\external\mustache.min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\external\string.min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\external\underscore-min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\newtab\gallery.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\newtab\gallery.min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\newtab\newtab.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\newtab\newtab.min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\newtab\review.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\content\newtab\review.min.js (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\external\foundation.min.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\external\indicator.gif (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\external\Jcrop.gif (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\external\jquery.autocomplete.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\external\jquery.Jcrop.min.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\external\jquery.simplecolorpicker.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\external\normalize.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\gallery\arrow-gallery-cat-selected.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\gallery\arrow.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\gallery\emptyArea.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\gallery\gallery.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\gallery\gallery_templates.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\gallery\icon-gallery-search.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\gallery\not_available_32.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\gallery\plus.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\gallery\X.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\icons\128.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\icons\16.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\icons\48.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\css\buttons.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\css\footer.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\css\header.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\css\list.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\css\newtab.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\css\search.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\css\themes.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\ajax-loader-2.gif (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\ajax-loader-bar.gif (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\ajax-loader-medium.gif (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\ajax-loader-small.gif (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\ajax-loader.gif (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\arrow-footer.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\arrow-header.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\attachment.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\close-bar2.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\close.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\edit-button.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-apps-dark.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-apps.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-chrome.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-close.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-contents-light.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-contents.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-edit.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-layout.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-plus-dark.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-plus.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-right.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-search.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-settings.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\icon-theme.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\menu_v.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\menu_v_white.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\x-button.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\arab_tile.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\batthern_@2X.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\bo_play_pattern_@2X.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\dark_wood_@2X.jpg (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\diagonal_striped_brick.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\escheresque_ste_@2X.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\gold_scale.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\purty_wood_@2X.jpg (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\readme.txt (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\starring_@2X.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\tileable_wood_texture_@2X.jpg (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\weave_@2X.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\wild_oliva_@2X.jpg (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\images\patterns\woven.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\resources\groups.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\resources\list.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\newtab\resources\menu.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\css\activetabs.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\css\favorites.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\css\layout.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\css\modal-fav-add.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\css\modal-fav-edit.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\css\modal-fav-group.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\css\readitlater.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\css\recentlyclosed.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\css\theme.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\css\webapps.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\chrome\bookmarks.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\chrome\download.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\chrome\downloads.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\chrome\downloas.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\chrome\extensions.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\chrome\history.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\chrome\settings.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\chrome\trash.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\favorites\empty.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\favorites\error.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\favorites\shadow.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\info\contactus.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\info\facebook.ico (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\info\rateus.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\images\info\twitter.ico (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\activetabs.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\favorites.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\layout.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\modal-fav-add.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\modal-fav-edit.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\modal-fav-group.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\readitlater.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\readitlater_content.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\readitlater_menu.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\recentlyclosed.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\theme.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\webapps.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\plugins\resources\webapps_contextmenu.html (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\review\cat_1.gif (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\review\cat_2.gif (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\review\cat_3.gif (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\review\cat_4.gif (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\review\cat_5.gif (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\review\rating-star.png (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\skin\review\review.css (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\ar\messages.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\de\messages.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\en\messages.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\es\messages.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\fr\messages.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\he\messages.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\it\messages.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\ja\messages.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\nl\messages.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\pl\messages.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\pt_BR\messages.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\ru\messages.json (PUP.Optional.NewTab.A) -> No action taken.
C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd\9.4.25_0\_locales\tr\messages.json (PUP.Optional.NewTab.A) -> No action taken.

(end)

#48 Tomk

Tomk

    Beguilement Monitor

  • Classroom Admin
  • 20,150 posts

Posted 10 June 2014 - 12:55 PM

It appears that you no longer have Windows 8 - but you have updated your system and now are running Windows 8.1.  DDS will not run on 8.1.

 

I don't think that is a problem to us as, basically, you've (or your husband) have accidentally clicked on ads (possibly three different ones) that have installed three different unwanted programs - Greenweb, NewTab, and SpeedDial.  These are not really nasty things... but they will use rescources which will slow down your system, and cause more ads to pop up.  The list is so long because they try to embed themselves into your system as deeply as possible.

 

Go ahead and delete everything with Mbam.

 

Then - lets make sure we got their remnants:

 

Step 1

Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

Step 2

Please download AdwCleaner by Xplode onto your desktop.


  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Scan button. Wait until is finished.
  • Click on Clean.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner\AdwCleaner[S0].txt as well.

Step 3

 

 

Then lets run a ridiculously long online scan - just to be safe.

 

ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Vista users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.
 

  • Please go here then click on: EOLS1.gif

    Note: If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
    All of the below instructions are compatible with either Internet Explorer or Mozilla FireFox.

  • Select the option   YES, I accept the Terms of Use then click on: EOLS2.gif
  • When prompted allow the Add-On/Active X to install.
  • Make sure that the option Remove found threats is NOT checked, and the option Scan archives is  checked.
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Now click on: EOLS3.gif
  • The virus signature database... will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
  • Now click on: EOLS4.gif
  • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.

Note: Do not forget to re-enable your Anti-Virus application after running the above scan!

 


In your next reply, post the following log files:


  • Junkware Removal Tool log
  • AdwCleaner log
  • ESET log

 


Tomk
------------------------------------------------------------

mvplogo1_zpsea7gtc7e.gif


WTT-Grad1.jpg

Topics are closed after 5 days without response
unite_blue_zpsbfd3cd98.png


#49 wilma1313

wilma1313

    Silver Member

  • Authentic Member
  • PipPipPip
  • 386 posts

Posted 11 June 2014 - 12:14 PM

Hi.  Adware scanner hangs on the scan step.  It has said it is pending for over an hour.  It doesn't seem to be doing anything.   Here is the JRT worked great.  Holding off on thethird scan til I hear from you.  Also I haven't upgraded to 8.1.  It actually asked me again today if I wanted to and I again did not do it. 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8 x64
Ran by l on Wed 06/11/2014 at 10:51:46.47
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

Successfully stopped: [Service] 70e6ca8c
Successfully deleted: [Service] 70e6ca8c
Successfully stopped: [Service] backupstack
Successfully deleted: [Service] backupstack

 

~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\optimizer pro
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\optimizer pro
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\installcore
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\optimizer pro_is1

 

~~~ Files

 

~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\mypc backup"
Successfully deleted: [Folder] "C:\Program Files (x86)\optimizer pro"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\optimizer pro v3.2"
Successfully deleted: [Folder] "C:\Users\l\AppData\Roaming\microsoft\windows\start menu\programs\mypc backup"

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 06/11/2014 at 10:57:05.77
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#50 Tomk

Tomk

    Beguilement Monitor

  • Classroom Admin
  • 20,150 posts

Posted 12 June 2014 - 08:28 AM

I'm actually not familiar with "mypc backup" (which is one of the programs JRT removed) but optimizer pro is a nasty piece of garbage that can really mess up a system.

 

Perhaps now that JRT has "done it's thing" you can try running AdwCleaner again.  If it still won't run - no big deal - go ahead and run the online scanner.


Tomk
------------------------------------------------------------

mvplogo1_zpsea7gtc7e.gif


WTT-Grad1.jpg

Topics are closed after 5 days without response
unite_blue_zpsbfd3cd98.png


#51 wilma1313

wilma1313

    Silver Member

  • Authentic Member
  • PipPipPip
  • 386 posts

Posted 13 June 2014 - 07:45 AM

I was able to do the scan this AM and then did ESET. I see I again have a Norton icon on my desktop. We removed all Norton as an early step in this process. I really hate them.

Here are the logs. ESET did not make any log file in the folder as indicated. I did export the scan results. Hopefully that works, if not can always run it again.

# AdwCleaner v3.212 - Report created 13/06/2014 at 06:38:57
# Updated 05/06/2014 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : l - PURPLE
# Running from : C:\Users\l\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\l\AppData\Roaming\UpdaterEX
File Deleted : C:\Users\Public\Desktop\eBay.lnk
File Deleted : C:\Users\l\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
File Deleted : C:\Users\l\Desktop\MyPC Backup.lnk
File Deleted : C:\Users\l\Desktop\Optimizer Pro.lnk
File Deleted : C:\Users\l\Desktop\Sync Folder.lnk
File Deleted : C:\windows\Tasks\Speedial.job
File Deleted : C:\windows\System32\Tasks\Speedial
File Deleted : C:\windows\Tasks\UpdaterEX.job
File Deleted : C:\windows\System32\Tasks\UpdaterEX

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKCU\Software\UpdaterEX
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\UpdaterEX
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537

Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v35.0.1916.114

[ File : C:\Users\l\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Startup_urls] : hxxp://speedial.com/?f=1&a=spd_dnldstr_14_24_ie&cd=2XzuyEtN2Y1L1QzuyBzz0EtA0ByD0CyDyBzyyE0E0AyBtDyCtN0D0Tzu0SzzzytBtN1L2XzutBtFtBtDtFtCzytFtDtN1L1CzutCyEtBzytDyD1V1OtN1L1G1B1V1N2Y1L1Qzu2SyByByB0F0Dzz0A0CtG0EyDyEzztG0AyBzy0DtGyB0CzzzytGyEyE0Czz0AtA0EtBtD0FtCtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StBtA0FzyyE0FtA0AtGtC0DtCzytGyD0F0AyEtG0Dzy0AtDtGyC0AtAtB0AtBtC0FzzyBtAtA2Q&cr=2026722248&ir=
Deleted [Homepage] : hxxp://speedial.com/?f=1&a=spd_dnldstr_14_24_ie&cd=2XzuyEtN2Y1L1QzuyBzz0EtA0ByD0CyDyBzyyE0E0AyBtDyCtN0D0Tzu0SzzzytBtN1L2XzutBtFtBtDtFtCzytFtDtN1L1CzutCyEtBzytDyD1V1OtN1L1G1B1V1N2Y1L1Qzu2SyByByB0F0Dzz0A0CtG0EyDyEzztG0AyBzy0DtGyB0CzzzytGyEyE0Czz0AtA0EtBtD0FtCtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StBtA0FzyyE0FtA0AtGtC0DtCzytGyD0F0AyEtG0Dzy0AtDtGyC0AtAtB0AtBtC0FzzyBtAtA2Q&cr=2026722248&ir=

*************************

AdwCleaner[R0].txt - [3263 octets] - [11/06/2014 11:00:35]
AdwCleaner[R1].txt - [3403 octets] - [11/06/2014 11:36:06]
AdwCleaner[R2].txt - [3463 octets] - [11/06/2014 11:38:23]
AdwCleaner[R3].txt - [3523 octets] - [13/06/2014 06:38:30]
AdwCleaner[S0].txt - [3052 octets] - [13/06/2014 06:38:57]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3112 octets] ##########

C:\AdwCleaner\Quarantine\C\Users\l\AppData\Roaming\UpdaterEX\UpdateProc\UpdateTask.exe.vir a variant of Win32/DealPly.O potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.Bromon.dll a variant of MSIL/BrowseFox.G potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.BroStats.dll a variant of MSIL/BrowseFox.G potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.BrowserAdapterS.dll probably a variant of MSIL/BrowseFox.G potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.CompatibilityChecker.dll a variant of MSIL/BrowseFox.G potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.FFUpdate.dll a variant of MSIL/BrowseFox.E potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.IEUpdate.dll a variant of MSIL/BrowseFox.G potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.PurBrowseG.dll a variant of MSIL/BrowseFox.G potentially unwanted application
C:\Users\l\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R02MKPNS\26[1].htm HTML/Iframe.B.Gen virus
C:\Windows\Installer\4f81ebc.msi a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application

#52 wilma1313

wilma1313

    Silver Member

  • Authentic Member
  • PipPipPip
  • 386 posts

Posted 17 June 2014 - 09:54 AM

?

#53 Tomk

Tomk

    Beguilement Monitor

  • Classroom Admin
  • 20,150 posts

Posted 17 June 2014 - 10:50 AM

Sorry about that.  I could have sworn already responded.... but apparently I didn't post it.  Sorry about leaving you hanging.

 

Please go here: https://support.nort...erProfile_en_us

and download and run the Norton removal tool.  Hopefully that will get rid of the Norton remnants.

 

Did ESET find anything?  If it did not... that would be why you didn't get a log.  If it did find something I'd like to know what it was.  You say you exported the scan results... can you post them?

 

How do things seem to be running now?


Tomk
------------------------------------------------------------

mvplogo1_zpsea7gtc7e.gif


WTT-Grad1.jpg

Topics are closed after 5 days without response
unite_blue_zpsbfd3cd98.png


#54 wilma1313

wilma1313

    Silver Member

  • Authentic Member
  • PipPipPip
  • 386 posts

Posted 17 June 2014 - 01:43 PM

HI,

Here is what ESET found - one virus and a bunch of potentially unwanted or unsafe items
. Computer is running better but sometimes when on the internet it flickers and freezes up and I'm still getting more pop up type stuff than normal, and it is stuff my popup blocker does not catch.

C:\AdwCleaner\Quarantine\C\Users\l\AppData\Roaming\UpdaterEX\UpdateProc\UpdateTask.exe.vir a variant of Win32/DealPly.O potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.Bromon.dll a variant of MSIL/BrowseFox.G potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.BroStats.dll a variant of MSIL/BrowseFox.G potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.BrowserAdapterS.dll probably a variant of MSIL/BrowseFox.G potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.CompatibilityChecker.dll a variant of MSIL/BrowseFox.G potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.FFUpdate.dll a variant of MSIL/BrowseFox.E potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.IEUpdate.dll a variant of MSIL/BrowseFox.G potentially unwanted application
C:\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.PurBrowseG.dll a variant of MSIL/BrowseFox.G potentially unwanted application
C:\Users\l\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R02MKPNS\26[1].htm HTML/Iframe.B.Gen virus
C:\Windows\Installer\4f81ebc.msi a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application

#55 Tomk

Tomk

    Beguilement Monitor

  • Classroom Admin
  • 20,150 posts

Posted 17 June 2014 - 04:05 PM

Sorry again.  You already did post that and I didn't understand what I was seeing.

 

This is the easiest way to get rid of the Greener Web program:

 

(I believe this still works in windows 8)

Hold the windows key on your keyboard and press the R key to bring up the run box.  Then type in (or copy/paste) -

rmdir /s /q "C:\Program Files (x86)\Greener Web"

 

Then click OK.

 

After you are done... please run Malwarebytes' again and see what it finds.


Tomk
------------------------------------------------------------

mvplogo1_zpsea7gtc7e.gif


WTT-Grad1.jpg

Topics are closed after 5 days without response
unite_blue_zpsbfd3cd98.png

    Advertisements

Register to Remove


#56 wilma1313

wilma1313

    Silver Member

  • Authentic Member
  • PipPipPip
  • 386 posts

Posted 20 June 2014 - 09:08 AM

IT say windows can't find rmdir. I'm having a heck of a time getting to this page. I keep getting blocked. Also Norton is still on my desktop and I'm getting Norton notifications even though we did the uninstall again and I no longer am able to run Malwarebytes, it has been disabled again.

Edited by wilma1313, 20 June 2014 - 10:21 AM.


#57 Tomk

Tomk

    Beguilement Monitor

  • Classroom Admin
  • 20,150 posts

Posted 21 June 2014 - 09:19 AM

Please try to run malwarebytes.  It should remove that folder.


Tomk
------------------------------------------------------------

mvplogo1_zpsea7gtc7e.gif


WTT-Grad1.jpg

Topics are closed after 5 days without response
unite_blue_zpsbfd3cd98.png


#58 wilma1313

wilma1313

    Silver Member

  • Authentic Member
  • PipPipPip
  • 386 posts

Posted 23 June 2014 - 08:16 AM

As stated in my previous post malwarebytes has been disabled on my computer again as happened earlier in this infection.

#59 wilma1313

wilma1313

    Silver Member

  • Authentic Member
  • PipPipPip
  • 386 posts

Posted 24 June 2014 - 06:57 AM

It is now taking me ten minutes to even get on the internet as well. I leave town this afternoon and come back Friday night so will be unable to work on the computer for the next couple days. Thanks for all your help so far.

#60 wilma1313

wilma1313

    Silver Member

  • Authentic Member
  • PipPipPip
  • 386 posts

Posted 28 June 2014 - 12:17 PM

???

Related Topics



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users