Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Problems Galore


  • Please log in to reply
7 replies to this topic

#1 Rinzler64

Rinzler64

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:02:23 PM

Posted 11 May 2014 - 01:06 PM

So, all was well. But, suddenly, Steam stopped working. Then Chrome started going to "about:blank" whenever i tried to get onto a game site, as well as randomly when I was in my e-mail. I think it's malware, but I honestly have no idea. I'm super desperate...and i've already spent most of my day messing with it...
 
I've also tried re-installing Steam, but that hasn't worked yet. It still does nothing when I try to open it.
 
OS: Windows 7
Computer: Dell Laptop

Edit: Moved topic from Windows 7 to the more appropriate forum.~ Animal

BC AdBot (Login to Remove)

 


#2 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,595 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:11:23 AM

Posted 11 May 2014 - 01:22 PM

Please run the ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.

  • Click the esetonlinebtn.png button.

  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.

    • Double click on the esetsmartinstaller_enu.png icon on your desktop.


  • Check "YES, I accept the Terms of Use."

  • Click the Start button.

  • Accept any security warnings from your browser.

  • Under scan settings, check "Scan Archives" and "Remove found threats"

  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications

    • Scan for potentially unsafe applications

    • Enable Anti-Stealth technology


  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.

  • When the scan completes, click List Threats

  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.

  • Click the Back button.

  • Click the Finish button.

 

 
 
Please download Malwarebytes Anti-Malware.
 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  If this is the first time you have run this version of Malwarbytes you will see an image like the one below.
 
mbam1_zps95cc812c.png
 
Click on Update Now, after Malwarebytes is updated click on Scan.
 
If this isn't the first time you have run this version, then you will see an image like the one below.  Click on Scan
 
mbam1_zps98e7fba9.png
 
You will be prompted to update Malwarebytes, to do so click on Update Now.
 
 mbam2_zps85f38f0c.png
 
3)  The scan will automatically run now.
 
mbamreplace_zps3ead4824.png
 
 
4)  When the scan is complete the results will be displayed.  Click on Quarantine All, then click on Apply Actions
 
mbam4_zps23e52ad4.png
 
 
5)  To complete any actions taken you will be asked if you want to restart your computer, click on Yes
 
 mbam4_zps490948cc.png
 
6)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  When the log opens, scroll down toward the bottom of the log to Quarantined Items.  Copy and paste this in your next post.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#3 Rinzler64

Rinzler64
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:02:23 PM

Posted 11 May 2014 - 08:17 PM

First, the quarantine list:

 

Quarantined Items:
===================
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\defaults.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.css
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\menu-rollover.png
Vendor: PUP.Optional.Conduit.A, Date: 2014/05/11 23:41:41, Type: Registry Value, Location: HKU\S-1-5-21-1807866789-4269808606-3109275868-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\style.css
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.html
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.css
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\menu-selected.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Users\Administrator\AppData\Local\Temp\nsf3089.exe
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnSilver.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Users\Administrator\AppData\Local\Temp\nsv863B.exe
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\defaults.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\SearchProtect\bin
Vendor: PUP.Optional.PassShow.A, Date: 2014/05/11 23:41:41, Type: Registry Key, Location: HKLM\SOFTWARE\CLASSES\TYPELIB\{ade2113b-9952-46c8-85b0-b115be39a9fa}
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall
Vendor: PUP.Optional.Conduit.A, Date: 2014/05/11 23:19:19, Type: File, Location: C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox_def.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.html
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\settings.html
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\close-win-def.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\main.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.css
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\defaults.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\x.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg-with-logo.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\UI\bin
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\UI\rep
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\EULA.txt
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnBlue.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\SearchProtect
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\json2.min.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\SPDialogAPI.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\protection
Vendor: PUP.Optional.Conduit.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\Main\rep\SystemRepository.dat
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\button-bg.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\settings
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgUninstall.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\jquery.1.7.1.min.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Users\Administrator\AppData\Local\Temp\nsq2532.exe
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Users\Administrator\AppData\Local\Temp\nsa2A03.exe
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\dialogUtils.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.css
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgSettings.png
Vendor: PUP.Optional.PassShow.A, Date: 2014/05/11 23:41:41, Type: Registry Key, Location: HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{4e1dfdc4-5474-47fc-bcaa-6f1f0c49bae2}
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Users\Administrator\AppData\Local\Temp\nsq9386.exe
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Users\Administrator\AppData\Local\Temp\nsq8B4B.exe
Vendor: PUP.Optional.Conduit.A, Date: 2014/05/11 23:41:41, Type: Registry Key, Location: HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\CltMngSvc
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox_checked.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Registry Key, Location: HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SearchProtect
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.css
Vendor: PUP.Optional.PassShow.A, Date: 2014/05/11 23:41:41, Type: Registry Key, Location: HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{77bf05d1-5f5f-40d2-8feb-7e326c73a257}
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnClose.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\UI
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\libs
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.html
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez-def.png
Vendor: PUP.Optional.Conduit.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez-selected.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button-selected.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.js
Vendor: PUP.Optional.PassShow.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\PassShow-soft\157.dll
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\SearchProtect\rep
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg-uninstall.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\defaults.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgSettingsDS.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.html
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button2.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\defaults.js
Vendor: PUP.Optional.Conduit.A, Date: 2014/05/11 23:41:41, Type: Registry Value, Location: HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\Main\rep
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\v.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-Rollover.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\defaults.js
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\Main\bin
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg-uninstall.jpg
Vendor: PUP.Optional.Conduit.A, Date: 2014/05/11 23:23:17, Type: File, Location: C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll
Vendor: PUP.Optional.PassShow.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Windows\Tasks\PassShow Update.job
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button-def.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\Main
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Settings-icon.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgNotif.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-default.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\close-win-over-click.png
Vendor: PUP.Optional.PassShow.A, Date: 2014/05/11 23:41:41, Type: Registry Key, Location: HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4E1DFDC4-5474-47FC-BCAA-6F1F0C49BAE2}
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\info-icon.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\text-field.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\gray-bg.png
Vendor: PUP.Optional.PassShow.A, Date: 2014/05/11 23:41:41, Type: Registry Key, Location: HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{ade2113b-9952-46c8-85b0-b115be39a9fa}
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\icon-win.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: Folder, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-onclick.png
Vendor: PUP.Optional.SearchProtect.A, Date: 2014/05/11 23:41:41, Type: File, Location: C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.html
===============================================================
END OF FILE
 
And now, the ESET Scan log (Sorry i couldnt attach it to the reply....couldnt figure out how; Im new at this)
 
C:\Windows\SysWOW64\caifdx\ccp_rljwc.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\chromeplg.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\Director_meazf.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\dprx_sldnm.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mcapp_nfwvd.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mca_hwfmo.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mcff_dkqki.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mcfile_ljxyw.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mcgc_baygc.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mcie_ghmok.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mck_ddqhp.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mclmd_ixcru.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mcmsg_mktan.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mcoexp_wjbxb.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mco_aeepx.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mcsc_irfej.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mcsky_cbuae.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\mcy_epvdr.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\nbm_fgmlv.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\npFirefoxPlg.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\proxy.dll probably a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\shim_claua.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\caifdx\svcboot_wwefa.dll a variant of Win32/WebWatcher.A potentially unsafe application
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AskToolbarInstaller-CLM-V7[1].7z a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AskToolbarInstaller-CLM-V7[2].7z a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application
C:\$Recycle.Bin\S-1-5-21-1807866789-4269808606-3109275868-1001\$RHEBESR.zip a variant of Win32/Kryptik.APLD trojan deleted - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A potentially unsafe application deleted - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A potentially unsafe application deleted - quarantined
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdbgegbfffppllpjimgdlpbngkjngcph\1_0\1756466.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Users\Administrator\AppData\Local\Temp\nsfACE6\SpSetup.exe a variant of Win32/Conduit.SearchProtect.H potentially unwanted application deleted - quarantined
C:\Users\Administrator\Downloads\cbsidlm-cbsi188-Doom-SEO-10000739.exe a variant of Win32/CNETInstaller.B potentially unwanted application deleted - quarantined
C:\Users\Evan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdbgegbfffppllpjimgdlpbngkjngcph\1_0\1756466.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Users\Evan\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\gdbgegbfffppllpjimgdlpbngkjngcph\1_0\1756466.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Users\Evan\Documents\APNSetup.exe Win32/Bundled.Toolbar.Ask.E potentially unsafe application deleted - quarantined
C:\Users\Evan\Downloads\MediaPlayerClassic.exe a variant of Win32/Verti.B potentially unwanted application deleted - quarantined
C:\Users\Evan\Downloads\ophcrack-win32-installer-3.6.0.exe probably a variant of Win32/PSWTool.ophCrack.A potentially unsafe application deleted - quarantined
C:\Users\Evan\Downloads\WebcamMax-7.7.9.8.MultiLanguage.Setup.exe a variant of Win32/Bundled.Toolbar.Ask.D potentially unsafe application deleted - quarantined
C:\Users\Kim\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdbgegbfffppllpjimgdlpbngkjngcph\1_0\1756466.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Users\Kim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gdbgegbfffppllpjimgdlpbngkjngcph\1_0\1756466.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Users\Kim\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gdbgegbfffppllpjimgdlpbngkjngcph\1_0\1756466.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Users\Kim\AppData\Local\Temp\APNStub.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application deleted - quarantined
C:\Users\Kim\AppData\Local\Temp\svcboot.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Users\Kim\AppData\Local\Temp\{4C5CE5DE-DA68-40AE-ABA0-4D7D466CC953}.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Users\Kim\AppData\Local\Temp\{4D1876E4-5743-4D87-80F6-F12E0FC297CC}.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Users\Kim\AppData\Local\Temp\{C93A7052-4C76-4967-BC40-5F0C08203564}.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Users\Kim\AppData\Local\Temp\{E9F8A851-2FB9-4E6D-B202-1D697C737A51}.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Users\Kim\AppData\Local\Temp\{F7D06F42-F2F1-47D9-BB3B-FED3DFC4FF17}.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Users\Kim\AppData\Local\Temp\{FE2AA4D1-BB02-439C-B457-D5199C48EDBB}.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Windows\Installer\MSI40FB.tmp a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted - quarantined
C:\Windows\Installer\MSI4D10.tmp a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted - quarantined
C:\Windows\Installer\MSI6AB6.tmp a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted - quarantined
C:\Windows\Installer\MSIEFBE.tmp a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted - quarantined
C:\Windows\System32\caifdx\ccp_rljwc.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\chromeplg.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Windows\System32\caifdx\Director_meazf.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\dprx_sldnm.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mcapp_nfwvd.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mca_hwfmo.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mcff_dkqki.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mcfile_ljxyw.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Windows\System32\caifdx\mcgc_baygc.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mcie_ghmok.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mck_ddqhp.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mclmd_ixcru.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mcmsg_mktan.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mcoexp_wjbxb.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mco_aeepx.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mcsc_irfej.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mcsky_cbuae.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\mcy_epvdr.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\nbm_fgmlv.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Windows\System32\caifdx\npFirefoxPlg.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted - quarantined
C:\Windows\System32\caifdx\proxy.dll probably a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\shim_claua.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\caifdx\svcboot_wwefa.dll a variant of Win32/WebWatcher.A potentially unsafe application deleted (after the next restart) - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AskToolbarInstaller-CLM-V7[1].7z a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AskToolbarInstaller-CLM-V7[2].7z a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted - quarantined
Operating memory a variant of Win32/WebWatcher.A potentially unsafe application contained infected files
 


#4 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,595 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:11:23 AM

Posted 12 May 2014 - 09:51 AM

There was only one malicious item found, this is the $RHEBESR.zip a variant of Win32/Kryptik.APLD trojan which was found by the Eset online scanner.  It was Quarantined and deleted.

 

Is there any difference in the performance of this computer?


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#5 Rinzler64

Rinzler64
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:02:23 PM

Posted 12 May 2014 - 05:59 PM

The about:blank problem seems to be fixed, and I'm re-installing Steam now, so I hope that it'll work right. Thanks for the help!



#6 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,595 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:11:23 AM

Posted 12 May 2014 - 06:22 PM

Run the computer and wait and see if there are anymore problems. :thumbup2:


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#7 Rinzler64

Rinzler64
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:02:23 PM

Posted 12 May 2014 - 06:37 PM

Steam's done installing, and all is back to normal! Thanks so much for the quick responses, by the way!



#8 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,595 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:11:23 AM

Posted 13 May 2014 - 08:41 AM

You are very welcome.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users