Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Chrome opening new tabs on its own to milkilove.com


  • Please log in to reply
6 replies to this topic

#1 mantis.toboggan

mantis.toboggan

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Iowa
  • Local time:05:53 AM

Posted 29 January 2018 - 02:54 AM

Hello, 

 

A few weeks ago I was trying to run a program from a textbook publisher that said it required Adobe Shockwave. I was looking around for it and having a difficult time finding it for some reason. I wasn't paying close enough attention to what I was clicking on from the Google page and ended up at some site called www.milkilove.com (I swear it's not pornographic in nature despite the possibly fetish-sounding name). I don't recall downloading anything, but ever since then Chrome will open up tabs to milkilove.com/adobe-shockwave-player/ on its own. Like I said, I don't recall DLing from that site, but I have since uninstalled any Adobe products I have (reinstalled Reader today), I've run Malwarebytes and adwcleaner, and run Avast as well. Nothing is picking up on malware. The only possibly odd thing is Avast has indicated I have a few hundred broken registry items, but perhaps that's normal.

 

It seems to open up the tab approximately once per hour. If I leave my computer running and walk away for awhile, it can numerous tabs opened up when I come back. This is more of an annoyance than anything, I'm just worried there's a more sinister program that may be running in the background or something. Any help is appreciated.



BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,196 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:53 AM

Posted 29 January 2018 - 05:53 AM

Use CCleaner to remove Temporary files, program caches, cookies, logs, etc. Use the Default settings. No need to use the

Registry Cleaning Tool...risky. Pay close attention while installing and UNcheck offers of Google Chrome and Avast.

After install, open CCleaner and run by clicking on the Run Cleaner button in the bottom right corner.

CCleaner - PC Optimization and Cleaning - Free Download

 

Post the three lists mentioned below using CCleaner.

Open CCleaner and click on Tools. Choose Startups. On that page you will see a list of Windows Startups and at the top tabs for each browser and Scheduled Tasks.

At the bottom right of that page you will see a button when clicked will allow you to Copy and Paste the list of Windows Startups and Scheduled Tasks into your next

post. Please do that.

 

Open CCleaner and click on Tools. Choose Uninstall. On that page you will see a list of programs installed on your computer and at the bottom right of that page you

will see a button when clicked will allow you to Copy and Paste that list in your next post. Please do that.

 

Reset Chrome settings to default

You can restore your browser settings in Chrome at any time. You might need to do this if apps or extensions you installed changed your settings without your knowledge. Your saved bookmarks and passwords won't be cleared or changed.

  1. On your computer, open Chrome.
  2. At the top right, click More Settings.
  3. At the bottom, click Advanced.
  4. Under the section "Reset," click Reset.
  5. Confirm by clicking Reset. ​

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 mantis.toboggan

mantis.toboggan
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Iowa
  • Local time:05:53 AM

Posted 30 January 2018 - 02:31 AM

Thanks for picking this up. I appreciate it. First off, we're off to a good start. Normally when opening up Chrome, I'd get a new tab open to that website...after running CCleaner, that didn't happen. Below are the requested lists.

 

Windows Startups:

 

Yes HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Yes HKCU:Run com.squirrel.slack.slack Slack Technologies, Inc. "C:\Users\AppData\Local\slack\Update.exe" --processStart "slack.exe" --process-start-args "--startup"
Yes HKCU:Run RoboForm Siber Systems "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
Yes HKLM:Run BarcoSmartCursor Barco C:\Program Files\Barco\ProductivityTools\SmartCursor.exe
Yes HKLM:Run BarcoView Barco, Inc. C:\Program Files\Barco\ProductivityTools\BarcoView.exe
Yes HKLM:Run CanonQuickMenu CANON INC. C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
Yes HKLM:Run DellPoaEvents Dell Inc. C:\Program Files\Dell\PPO\DellPoaEvents.exe
Yes HKLM:Run EvtMgr6 Logitech, Inc. C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
Yes HKLM:Run IAStorIcon Intel Corporation C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology enterprise\IAStorIcon.exe
Yes HKLM:Run IJNetworkScannerSelectorEX CANON INC. C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
Yes HKLM:Run IMSS Intel Corporation "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe" 60
Yes HKLM:Run Launch LCore Logitech Inc. C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
Yes HKLM:Run Logitech Download Assistant Microsoft Corporation C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
Yes HKLM:Run nwiz NVIDIA Corporation "C:\Program Files\NVIDIA Corporation\nview\nwiz.exe" /installquiet
Yes HKLM:Run qaweb-systray Barco Inc. "C:\Program Files\Barco\QAWebAgent\bin\qaweb-systray.exe" -delay=10
Yes HKLM:Run RtHDVBg Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX4 /WAVES_SUBTYPE_FOR_LYNC
Yes HKLM:Run RtHDVCpl Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" /s
Yes HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Yes HKLM:Run USB3MON Intel Corporation "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
Yes Startup Common Barco Splash Screen.lnk Barco, Inc. C:\Program Files\Barco\ProductivityTools\BarcoSplashScreen.exe
Yes Startup Common Barco System Settings.lnk Barco C:\Program Files\Barco\ProductivityTools\barco_system_settings.exe
 
 
Scheduled Tasks startups:
 
Yes Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes Task G2MUpdateTask-S-1-5-21-3500195697-3505881985-2964374071-1000 LogMeIn, Inc. C:\Users\AppData\Local\GoToMeeting\8199\g2mupdate.exe
Yes Task G2MUploadTask-S-1-5-21-3500195697-3505881985-2964374071-1000 LogMeIn, Inc. C:\Users\AppData\Local\GoToMeeting\8199\g2mupload.exe
Yes Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes Task OneDrive Standalone Update Task-S-1-5-21-3500195697-3505881985-2964374071-1000 Microsoft Corporation %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Yes Task PCDDataUploadTask "uaclauncher.exe" -lloc dataupload --ignoresecondarysplash --runsilently --skipidlewait
Yes Task PCDoctorBackgroundMonitorTask PC-Doctor, Inc. "C:\Program Files\Dell\SupportAssist\uaclauncher.exe" -backgroundmon scripts\backgroundmon.xml -st PCDoctorBackgroundMonitorTask --ignoresecondarysplash --runsilently
Yes Task Run RoboForm TaskBar Icon Siber Systems C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
Yes Task SystemToolsDailyTest "uaclauncher.exe" -silentenumeration -st SystemToolsDailyTest --ignoresecondarysplash --runsilently
 
Program list:
 
ActivePerl 5.8.8 Build 817 ActiveState 12/22/2017 45.1 MB 5.8.817
Adobe Acrobat Reader DC Adobe Systems Incorporated 1/29/2018 252 MB 18.009.20050
Barco Med Self Exam Barco, Inc. 10/30/2017 4.68 MB 1.5.2.3
Canon IJ Network Scanner Selector EX Canon Inc. 12/8/2017 1.5.4.4
Canon IJ Network Tool Canon Inc. 12/8/2017 3.7.0
Canon IJ Scan Utility Canon Inc. 12/8/2017 1.1.20.13
Canon MG7700 series MP Drivers Canon Inc. 12/8/2017 1.00
Canon MG7700 series On-screen Manual Canon Inc. 12/8/2017 7.8.0
Canon MG7700 series User Registration ‭Canon Inc. 12/8/2017
Canon My Image Garden Canon Inc. 12/8/2017 3.6.1
Canon My Image Garden Design Files Canon Inc. 12/8/2017 3.6.0
Canon My Printer Canon Inc. 12/8/2017 3.3.0
Canon Quick Menu Canon Inc. 12/8/2017 2.8.0
CCleaner Piriform 1/30/2018 5.39
Client Burn 3.52.2 EVOVIEW 12/22/2017 3.52.2
Dell Command | Update Dell Inc. 9/29/2017 77.1 MB 2.3.1
Dell Data Protection | Client Security Framework Dell, Inc. 11/24/2017 81.2 MB 8.12.0.22
Dell Data Protection | Security Tools Dell, Inc. 11/24/2017 308 KB 1.12.0.21
Dell Data Protection | Security Tools Authentication DigitalPersona, Inc. 11/24/2017 129 MB 2.4.0.952
Dell Digital Delivery Dell Products, LP 9/29/2017 3.3.1001.0
Dell Precision Optimizer Dell Inc. 9/29/2017 4.0.10
Dell SupportAssist Dell 11/27/2017 197 MB 2.0.6875.668
Dell SupportAssistAgent Dell 1/10/2018 40.0 MB 2.1.3.5
Google Chrome Google Inc. 11/24/2017 63.0.3239.132
GoTo Opener LogMeIn, Inc. 12/22/2017 276 KB 1.0.473
GoToAssist Customer 4.3.0.1575 LogMeIn, Inc. 12/22/2017 4.3.0.1575
GoToMeeting 8.20.0.8199 LogMeIn, Inc. 1/25/2018 8.20.0.8199
Hanging Editor 3.52.0 CHILI GmbH 12/22/2017 3.52.0
Intel® Management Engine Components Intel Corporation 1/23/2018 11.7.0.1035
Intel® Network Connections 20.2.3001.0 Intel 9/29/2017 30.2 MB 20.2.3001.0
Intel® Rapid Storage Technology enterprise Intel Corporation 9/29/2017 4.6.0.1048
Intel® USB 3.0 eXtensible Host Controller Driver Intel Corporation 9/29/2017 3.0.0.20
Java 8 Update 161 Oracle Corporation 1/19/2018 100 MB 8.0.1610.12
Logitech Gaming Software 8.96 Logitech Inc. 12/29/2017 304 MB 8.96.88
Logitech SetPoint 6.67 Logitech 12/30/2017 39.0 MB 6.67.83
MediCal QAWeb Agent Barco 1/4/2018 324 MB 1.13.1400
Microsoft .NET Framework 4.7 Microsoft Corporation 11/28/2017 38.8 MB 4.7.02053
Microsoft Office Professional Plus 2016 - en-us Microsoft Corporation 1/20/2018 16.0.8827.2148
Microsoft OneDrive Microsoft Corporation 12/8/2017 100 MB 17.3.7131.1115
Microsoft Silverlight Microsoft Corporation 12/1/2017 50.7 MB 5.1.50907.0
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 12/7/2017 572 KB 8.0.61000
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 Microsoft Corporation 11/24/2017 580 KB 8.0.51011
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 11/24/2017 788 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 12/7/2017 788 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 11/24/2017 596 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 12/7/2017 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 Microsoft Corporation 12/7/2017 1.59 MB 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 Microsoft Corporation 12/7/2017 2.49 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 Microsoft Corporation 11/24/2017 11.0.51106.1
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 11/24/2017 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 Microsoft Corporation 11/24/2017 11.0.51106.1
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 11/24/2017 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 12/29/2017 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 12/29/2017 17.1 MB 12.0.30501.0
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 Microsoft Corporation 11/28/2017 24.4 MB 14.0.23918.0
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 Microsoft Corporation 12/22/2017 20.6 MB 14.0.23026.0
Mozilla Firefox 57.0.4 (x64 en-US) Mozilla 1/10/2018 140 MB 57.0.4
Mozilla Maintenance Service Mozilla 11/24/2017 278 KB 57.0
MXRT Driver and Intuitive Workflow Tools 2017.1 Barco, Inc. 10/30/2017 124 MB 1.0.0
NVIDIA Graphics Driver 372.90 NVIDIA Corporation 11/28/2017 372.90
NVIDIA HD Audio Driver 1.3.34.15 NVIDIA Corporation 11/28/2017 1.3.34.15
NVIDIA nView 148.03 NVIDIA Corporation 11/28/2017 148.03
NVIDIA WMI 2.28.0 NVIDIA Corporation 11/28/2017 2.28.0
Realtek Audio COM Components Realtek Semiconductor Corp. 9/29/2017 599 KB 1.0.2
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 9/29/2017 216 MB 6.0.1.6111
RoboForm 8-4-6-6 (All Users) Siber Systems 1/3/2018 20.0 MB 8-4-6-6
ScreenConnect Client (1dd30797bb6060bd) ScreenConnect Software 1/4/2018 2.04 MB 6.4.15787.6556
Slack Slack Technologies 1/19/2018 72.7 MB 3.0.5
Standalone 4.32.4 EVOVIEW 12/22/2017 4.32.4
TestGen 1/13/2018
Vulkan Run Time Libraries 1.0.26.0 LunarG, Inc. 11/28/2017 1.66 MB 1.0.26.0
Windows Driver Package - X-Rite (Chroma) XRiteDevices  (08/21/2006 2.0.0.0) X-Rite 1/4/2018 08/21/2006 2.0.0.0

Edited by mantis.toboggan, 30 January 2018 - 11:17 AM.


#4 mantis.toboggan

mantis.toboggan
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Iowa
  • Local time:05:53 AM

Posted 30 January 2018 - 03:30 AM

Restarted the computer and have been running it for an hour...seems to be working well thus far. 



#5 buddy215

buddy215

  • Moderator
  • 13,196 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:53 AM

Posted 30 January 2018 - 06:06 AM

Suggest Disabling these Startups: Use CCleaner by clicking on each item and choosing Disable on the right.

Yes HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Yes HKCU:Run com.squirrel.slack.slack Slack Technologies, Inc. "C:\Users\Brett Pearson\AppData\Local\slack\Update.exe" --processStart "slack.exe" --process-start-args "--startup"
Yes HKCU:Run RoboForm Siber Systems "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
Yes HKLM:Run CanonQuickMenu CANON INC. C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
Yes HKLM:Run IJNetworkScannerSelectorEX CANON INC. C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE

Yes HKLM:Run Logitech Download Assistant Microsoft Corporation C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch

Yes HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

 

Disable these Tasks: Use CCleaner by clicking on each item and choosing Disable on the right.

Yes Task G2MUpdateTask-S-1-5-21-3500195697-3505881985-2964374071-1000 LogMeIn, Inc. C:\Users\Brett Pearson\AppData\Local\GoToMeeting\8199\g2mupdate.exe
Yes Task G2MUploadTask-S-1-5-21-3500195697-3505881985-2964374071-1000 LogMeIn, Inc. C:\Users\Brett Pearson\AppData\Local\GoToMeeting\8199\g2mupload.exe
Yes Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes Task OneDrive Standalone Update Task-S-1-5-21-3500195697-3505881985-2964374071-1000 Microsoft Corporation %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Yes Task PCDDataUploadTask "uaclauncher.exe" -lloc dataupload --ignoresecondarysplash --runsilently --skipidlewait
Yes Task PCDoctorBackgroundMonitorTask PC-Doctor, Inc. "C:\Program Files\Dell\SupportAssist\uaclauncher.exe" -backgroundmon scripts\backgroundmon.xml -st PCDoctorBackgroundMonitorTask --ignoresecondarysplash --runsilently
Yes Task Run RoboForm TaskBar Icon Siber Systems C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
Yes Task SystemToolsDailyTest "uaclauncher.exe" -silentenumeration -st SystemToolsDailyTest --ignoresecondarysplash --runsilently
CCleaner cleaned the Chrome cached files. Firefox has a setting that allows its cached files to be dumped when closing Firefox.
I don't think Chrome has that option. So, it would be a good idea to use CCleaner daily to clean up Chrome and other items on the computer.
 
You can Reenable any item if you find one or more is too much of a hassle to not have in startup or tasks.
 
If you don't have an ad blocker installed in your browsers I suggest you install Adblock Plus.
 
Block Third Party cookies from installing. Those are the ad and tracking cookies. Once blocked...run CCleaner to remove the existing ones.
 
Let me know if problem reoccurs...otherwise...I think you are good to go.
 
 
 

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#6 mantis.toboggan

mantis.toboggan
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Iowa
  • Local time:05:53 AM

Posted 30 January 2018 - 06:09 AM

Thank you so much for your help. Much obliged. 



#7 buddy215

buddy215

  • Moderator
  • 13,196 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:06:53 AM

Posted 30 January 2018 - 06:21 AM

You're welcome...


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users