Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Redirect - IVP4 with CAPTCHA


  • Please log in to reply
12 replies to this topic

#1 Dawgmom

Dawgmom

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 02 January 2016 - 10:22 PM

Ugh. I got something - keep getting redirected to a captcha every time I try and search with Google.

 

"Repeated Google captcha due to "unusual traffic" from my computer"

 

I have Windows 8.1 and use Chrome and occasionally FireFox (was using Chrome when this happened). I don't use IE. I use Zone Alarm and AVG Free, also.

 

Any help will be appreciated. 


Edited by Dawgmom, 02 January 2016 - 11:35 PM.


BC AdBot (Login to Remove)

 


#2 Dawgmom

Dawgmom
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 02 January 2016 - 10:30 PM

I just found this using Yahoo! search: https://support.google.com/websearch/answer/86640?hl=en - it seems to address this issue?
 

"Unusual traffic from your computer network"

 

You might see "Our systems have detected unusual traffic from your computer network" if it seems like a computer or phone on your network is sending automated traffic to Google.

 

What Google considers automated traffic

  • Sending searches from a robot, computer program, automated service, or search scraper
  • Using software that sends searches to Google to see how a website or webpage ranks on Google

What to do when you see this message

 

The error page most likely shows a CAPTCHA (a squiggly word with a box below it). To continue using Google, type the squiggly word into the box. It's how we know you're a human, not a robot. After you type the CAPTCHA correctly, the message will go away and you can use Google again."

 

So, I tried another search and this time didn't get the captcha.

 

Any comments on this?

 

Thanks.

 

 


Edited by Dawgmom, 02 January 2016 - 10:32 PM.


#3 buddy215

buddy215

  • Moderator
  • 13,411 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:08:26 AM

Posted 03 January 2016 - 08:07 AM

Both Zone Alarm free firewall and AVG free antivirus are well known for installing adware and spying. I would suggest you

use the Windows Firewall by uninstalling ZA. I suggest uninstalling AVG and either use Windows antivirus or another free

antivirus such as Avast.

 

Scan for and remove existing adware and malware using the programs below.

 

Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the

Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of toolbars....especially Google.

After install, open CCleaner and run by clicking on the Run Cleaner button in the bottom right corner.

CCleaner - PC Optimization and Cleaning - Free Download

 

Download Malwarebytes' Anti-Malware from Here

Double-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).

  • Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.
  • Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.
  • Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.
  • Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.
  • If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).
  • When MBAM is finished scanning it will display a screen that displays any malware that it has detected.
  • Click the Remove Selected button.
  • MBAM will now delete all of the files and registry keys and add them to the programs quarantine. When removing the files, MBAM may require a reboot in order to remove some of them. If it displays a message stating that it needs to reboot, please allow it to do so.
  • While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.
  • The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Logs.

POST THE LOG FOR  REVIEW.

 

Download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
  • download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#4 Dawgmom

Dawgmom
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 03 January 2016 - 01:17 PM

Hello and thank you for your help. I appreciate it! 

 

Here are the log files (below). i ran CCleaner - it cleaned up some stuff - but otherwise, with the other scans, I did not see any issues (but that's why I'm here - heck if I know). However, I did run ESET last night. I usually run it weekly, just as a backup to AV, etc. and it did clean some browser (and other) stuff. So, I have the installer already BUT will delete it and download from your link as soon as I've posted the logs and return shortly - when the scan is completed.

 

Thanks again.

 

MALWARE BYTES:

 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 1/3/2016
Scan Time: 12:33 PM
Logfile: mbam.txt
Administrator: Yes
 
Version: 2.2.0.1024
Malware Database: v2016.01.03.05
Rootkit Database: v2015.12.26.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 8.1
CPU: x64
File System: NTFS
User: DawgMom
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 341430
Time Elapsed: 12 min, 1 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
---
 
ADWCLEANER:
 
# AdwCleaner v5.027 - Logfile created 03/01/2016 at 12:48:20
# Updated 30/12/2015 by Xplode
# Database : 2015-12-30.1 [Server]
# Operating system : Windows 8.1  (x64)
# Username : DawgMom - HP-OFFICE
# Running from : C:\Users\DawgMom\Desktop\AdwCleaner.exe
# Option : Cleaning
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
 
***** [ Files ] *****
 
 
***** [ DLLs ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Web browsers ] *****
 
[-] [C:\Users\DawgMom\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : aol.com
[-] [C:\Users\DawgMom\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com
 
*************************
 
:: "Tracing" keys removed
:: Winsock settings cleared
 
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [884 bytes] ##########
 
---
 
JUNKWARE REMOVAL TOOL:
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 8.1 x64 
Ran by DawgMom (Administrator) on Sun 01/03/2016 at 12:53:48.83
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 0 
 
 
 
 
Registry: 0 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 01/03/2016 at 12:55:58.31
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Edited by Dawgmom, 03 January 2016 - 01:17 PM.


#5 buddy215

buddy215

  • Moderator
  • 13,411 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:08:26 AM

Posted 03 January 2016 - 01:34 PM

It would of been interesting to know what Eset removed. There is no need to uninstall Eset Online scanner. Just open and update before scanning.

If possible, if the file hasn't been deleted, do this for finding last night's scan results:

 

The ESET Online Scanner saves a log file after running, which can be examined or sent in to ESET for further analysis. The path to the log file is "C:\Program Files\ESET\EsetOnlineScanner\log.txt" (on 64-bit systems this directory will be "C:\Program Files (x86)\ESET\Esetonlinescanner\log.txt"). You can view this file by navigating to the directory and double-clicking it in Windows Explorer, or by copying and pasting the path specification above (including the quotation marks) into the Start > Run dialog box from the Start Menu on the desktop.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#6 mainer21

mainer21

  • Members
  • 122 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Oregon
  • Local time:06:26 AM

Posted 03 January 2016 - 02:12 PM

AVG putting millions of Chrome users at risk.

 

Security company AVG, well known for its free and commercial security products that offer a wide range of security related safeguards and services, has put millions of Chrome users at risk recently by breaking Chrome security in a fundamental way in one of its extensions for the web browser.

http://www.ghacks.net/2016/01/01/avg-putting-millions-of-chrome-users-at-risk/



#7 Dawgmom

Dawgmom
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 03 January 2016 - 02:45 PM

@mainer21, Thanks but... I have no idea how to respond to your reply. I mean, it seems you assumed I have "Web TuneUp" from AVG installed? Because I don't. As a rule, I don't knowingly install ad-ins, plugins, etc.. I run regular ESET scans and MBAM and if they find them, they get deleted / uninstalled. If I still have an issue - or suspect I do - I come here for help.

 

And, the advisers are always great in assisting me. 



#8 Dawgmom

Dawgmom
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 03 January 2016 - 02:52 PM

It would of been interesting to know what Eset removed. There is no need to uninstall Eset Online scanner. Just open and update before scanning.

If possible, if the file hasn't been deleted, do this for finding last night's scan results:

 

The ESET Online Scanner saves a log file after running, which can be examined or sent in to ESET for further analysis. The path to the log file is "C:\Program Files\ESET\EsetOnlineScanner\log.txt" (on 64-bit systems this directory will be "C:\Program Files (x86)\ESET\Esetonlinescanner\log.txt"). You can view this file by navigating to the directory and double-clicking it in Windows Explorer, or by copying and pasting the path specification above (including the quotation marks) into the Start > Run dialog box from the Start Menu on the desktop.

 

Okay. Thank you so much for your help! The latest scan indicated nothing was found. As for the log from last night, I'm not sure. Maybe ESET logs every time I scan and if so, maybe there are things here for you. I apologize if this isn't it but it's all I could find:

 

ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# end=init
# utc_time=2015-11-24 05:15:50
# local_time=2015-11-24 12:15:50 (-0500, Eastern Standard Time)
# country="United States"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 26866
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# end=updated
# utc_time=2015-11-24 05:22:04
# local_time=2015-11-24 12:22:04 (-0500, Eastern Standard Time)
# country="United States"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# engine=26866
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-11-24 06:36:30
# local_time=2015-11-24 01:36:30 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode_1='AVG AntiVirus Free Edition'
# compatibility_mode=1057 16777213 100 100 0 5348484 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 66 85 7733655 11214960 0 0
# scanned=356205
# found=2
# cleaned=2
# scan_time=4465
sh=B147F7D44153FA8034DF292A673965438F5E2C9F ft=1 fh=2fc806f6b217b8c9 vn="a variant of Win32/InstallCore.ACL potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\DawgMom\AppData\Local\Temp\in33D452AE\0EF12DDF_stp\icmac.dll"
sh=4101270357B096EF454463D13581E3D123C60560 ft=1 fh=2a17fddd6cb742ea vn="a variant of Win32/InstallCore.ACL potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\DawgMom\AppData\Local\Temp\in33D452AE\5CC1FF05_stp\RAM.dll"
ESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internet# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# end=init
# utc_time=2015-12-07 06:25:39
# local_time=2015-12-07 01:25:39 (-0500, Eastern Standard Time)
# country="United States"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 27074
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# end=updated
# utc_time=2015-12-07 06:31:39
# local_time=2015-12-07 01:31:39 (-0500, Eastern Standard Time)
# country="United States"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# engine=27074
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-12-07 07:24:59
# local_time=2015-12-07 02:24:59 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode_1='AVG AntiVirus Free Edition'
# compatibility_mode=1057 16777213 100 100 0 2334965 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 66 85 8859764 12341069 0 0
# scanned=363144
# found=0
# cleaned=0
# scan_time=3200
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# end=init
# utc_time=2015-12-28 04:47:35
# local_time=2015-12-27 11:47:35 (-0500, Eastern Standard Time)
# country="United States"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 27381
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# end=updated
# utc_time=2015-12-28 04:56:00
# local_time=2015-12-27 11:56:00 (-0500, Eastern Standard Time)
# country="United States"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# engine=27381
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-12-28 05:42:12
# local_time=2015-12-28 12:42:12 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode_1='AVG AntiVirus Free Edition'
# compatibility_mode=1057 16777213 100 100 0 1690380 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 66 85 10667997 14149302 0 0
# scanned=368927
# found=0
# cleaned=0
# scan_time=2771
ESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internet# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# end=init
# utc_time=2015-12-30 03:47:05
# local_time=2015-12-29 10:47:05 (-0500, Eastern Standard Time)
# country="United States"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 27414
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# end=updated
# utc_time=2015-12-30 04:36:20
# local_time=2015-12-29 11:36:20 (-0500, Eastern Standard Time)
# country="United States"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# engine=27414
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-12-30 05:32:06
# local_time=2015-12-30 12:32:06 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode_1='AVG AntiVirus Free Edition'
# compatibility_mode=1057 16777213 100 100 0 1862574 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 66 85 10840191 14321496 0 0
# scanned=377258
# found=0
# cleaned=0
# scan_time=3346
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# end=init
# utc_time=2016-01-03 05:37:55
# local_time=2016-01-03 12:37:55 (-0500, Eastern Standard Time)
# country="United States"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 27465
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# end=updated
# utc_time=2016-01-03 05:38:34
# local_time=2016-01-03 12:38:34 (-0500, Eastern Standard Time)
# country="United States"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# engine=27465
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-01-03 06:30:10
# local_time=2016-01-03 01:30:10 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode_1='AVG AntiVirus Free Edition'
# compatibility_mode=1057 16777213 100 100 0 2211658 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 66 85 11189275 14670580 0 0
# scanned=376581
# found=0
# cleaned=0
# scan_time=3095
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# end=init
# utc_time=2016-01-03 06:19:15
# local_time=2016-01-03 01:19:15 (-0500, Eastern Standard Time)
# country="United States"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 27471
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# end=updated
# utc_time=2016-01-03 06:19:56
# local_time=2016-01-03 01:19:56 (-0500, Eastern Standard Time)
# country="United States"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=eaf92f6b5086654a974b3840b8a14c77
# engine=27471
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-01-03 07:36:34
# local_time=2016-01-03 02:36:34 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode_1='AVG AntiVirus Free Edition'
# compatibility_mode=1057 16777213 100 100 0 2258842 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 66 85 11236459 14717764 0 0
# scanned=361463
# found=0
# cleaned=0
# scan_time=4597


#9 Dawgmom

Dawgmom
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 03 January 2016 - 02:59 PM

Also, Mr. Buddy:

 

I understand about AVG and Zone Alarm. Please let me comment on why I use them.

 

I've used AVG for some time without issues. When I tried AVAST, it seemed to noticeably slow down my computer. If you have other suggestions, I am willing to explore. 

 

As for Zone Alarm, again, longtime user. The thing I like most about it is that I can set it to alert me to all activity - programs that write to the registry, connect to the Internet, and so on, and I can allow or deny. Now, I'm not sure, but I don't think I can do that with WF, can I? I did try and figure out how at one time, but it seems it has a mind of it's own?

 

Thank you. 


Edited by Dawgmom, 03 January 2016 - 03:00 PM.


#10 buddy215

buddy215

  • Moderator
  • 13,411 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:08:26 AM

Posted 03 January 2016 - 04:30 PM

I understand what you are saying. I have ZA installed on my Windows 7 computer. I like the same features that you do. I just don't use

Windows....keep it around as a 'spare tire' for my Linux OS.

AVG Free will install its adware in each browser. You can get rid of it but as I understand it will be installed again during upgrades and possible

updates. But you seem to be up on all that so keep it. AVG even pays adware distributors to install their adware on computers that don't use

AVG antivirus. I see that a lot in scan results.

 

This is the results from Eset that show that there was something that may of caused the Google search alert.

sh=B147F7D44153FA8034DF292A673965438F5E2C9F ft=1 fh=2fc806f6b217b8c9 vn="a variant of Win32/InstallCore.ACL potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\DawgMom\AppData\Local\Temp\in33D452AE\0EF12DDF_stp\icmac.dll"
sh=4101270357B096EF454463D13581E3D123C60560 ft=1 fh=2a17fddd6cb742ea vn="a variant of Win32/InstallCore.ACL potentially unwanted application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\DawgMom\AppData\Local\Temp\in33D452AE\5CC1FF05_stp\RAM.dll"
 
 
If you get that Google search alert again it would be a good idea to take a deeper look by posting in the Malware Removal Forum.
Here's the directions for doing that.
 

Please follow the instructions in the Malware Removal and Log Section Preparation Guide starting at Step 6.

  • If you cannot complete a step, then skip it and continue with the next.
  • In Step 6 there are instructions for downloading and running FRST which will create two logs.

When you have done that, post your logs in the Virus, Trojan, Spyware, and Malware Removal Logs forum, NOT here, for assistance by the Malware Response Team.

Start a new topic, give it a relevant title and post your log(s) along with a brief description of your problem, a summary of any anti-malware tools you have used and a summary of any steps that you have performed on your own. If you cannot produce any of the required logs...start the new topic anyway. Explain that you followed the Prep. Guide, were unable to create the logs, and describe what happened when you tried to create them. A member of the Malware Removal Team will walk you through, step by step, on how to clean your computer.

After doing this, please reply back in this thread with a link to the new topic so we can close this one.

 

DO NOT bump your new topic. Wait for a response from one of the Team Members.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#11 Dawgmom

Dawgmom
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 03 January 2016 - 08:25 PM

 

If you get that Google search alert again it would be a good idea to take a deeper look by posting in the Malware Removal Forum.

 

Hi, Mr. Buddy.

 

I really do appreciate your help and understanding. As for the results and next step, I wonder if you think it would hurt to run the FRST scan just to be sure? This issue has spooked me a little as it's the first issue I've had on my new PC (well, I've had it for a year now). It seemed like my old XP was always sick so, it's been a nice 13 months without having to diagnose anything. I can run the scan tomorrow if you think I need to?

 

Thanks again for everything. 



#12 buddy215

buddy215

  • Moderator
  • 13,411 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:08:26 AM

Posted 04 January 2016 - 04:48 AM

I understand....sure..start a new topic mentioning your concerns in the Malware Removal Forum along with the FRST logs.


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#13 Dawgmom

Dawgmom
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:09:26 AM

Posted 04 January 2016 - 01:25 PM

The new topic is here: http://www.bleepingcomputer.com/forums/t/601269/google-search-captcha-redirect-unusual-traffic-from-my-computer/






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users