1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

New Baboom Search Constantly Popping Up, Hidden

Discussion in 'Virus & Other Malware Removal' started by LogiRogi, Jul 27, 2016.

Thread Status:
Not open for further replies.
Advertisement
  1. LogiRogi

    LogiRogi Thread Starter

    Joined:
    Feb 18, 2015
    Messages:
    43
    Hi. I don't remember failing to untick a selection, but somehow this crummy Baboom Search element has come onto my computer. I have an Asus desktop computer and have Windows 8.1. and use Google Chrome and Mozilla Firefox. Every time I restart my computer Baboom's invisible extension activates setting Baboom Search to default alongside my Google default search and at this point I cannot remove it as a default program.

    There is an option to disable the Baboom Search extension and doing so will make it disappear, but it does not give me the option to find and remove the extension that continually controls my search when I restart.

    I have used Windows Defender, Anvi Smart Defender and an Anvi software trial that supposedly allowed one to use a Slim Toolbar option that could find an alter extensions and add-ons but it none of them found Baboom Search.

    I cannot find the extension in any extension list, in the uninstall list in the Control Panel, nor can I find the name Baboom anywhere on my computer now that I have deleted a few small files with its name. Since I have been unable to see the extension I have been unable to get its App ID in order to find out what ID I could try deleting in the Roaming App Data on my computer but it feels like I have tried everything else to find and delete it. I even tried to find it in the Registry Editor in the apps section, but it did not appear.

    Please, if you can offer me any assistance in taking down this nasty virus that doesn't seem detectable on my computer, it would help me greatly. Right now it's more of a nuisance since all it seems to do is make itself the default search engine, but I want it gone. Please reply if you have any advice.
     
  2. wannabeageek

    wannabeageek Malware Specialist

    Joined:
    Nov 11, 2009
    Messages:
    581
    Hi LogiRogi,

    Please run the following in order to better understand your computer and software issues.
    That way we can better identify and clear up any potential problems.

    Step 1.
    TSG - SysInfo utility
    • Right mouse click on this link:SysInfo utility
    • Select from the pop up box:
      "Save link as..."
    • From the left panel of the pop up box, scroll up and select desktop.
    • Click the "Save" button.
    From your desktop:
    • Right Mouse click SysInfo.exe, select "Run As Administrator" to run it... if UAC prompts, please allow it.
    • Right click, select copy and then paste in your next post.



    Step 2.
    Create a batch file

    1. Open Notepad.
    2. Copy/paste the following text into the empty Notepad window.
    3. Save the file as look.bat on your desktop. Save it with the file type... all types *.*.
    4. Right click on the file look.bat select "Run As Administrator" to run it. If prompted by UAC, please allow it.
      NOTE: Two files will be put on your desktop - report.txt and repfiles.cab
    5. Open the 'report.txt' file in Notepad, and copy/paste the results to your response - you can ignore the repfiles.cab file for the moment, as it's only backup data.
     
  3. LogiRogi

    LogiRogi Thread Starter

    Joined:
    Feb 18, 2015
    Messages:
    43
    Tech Support Guy System Info Utility version 1.0.0.2
    OS Version: Microsoft Windows 8.1, 64 bit
    Processor: AMD A6-6400K APU with Radeon(tm) HD Graphics, AMD64 Family 21 Model 19 Stepping 1
    Processor Count: 2
    RAM: 3268 Mb
    Graphics Card: AMD Radeon HD 8470D, 768 Mb
    Hard Drives: C: Total - 153599 MB, Free - 47227 MB; D: Total - 1735153 MB, Free - 1116973 MB;
    Motherboard: ASUSTeK COMPUTER INC., K30BF_M32BF
    Antivirus: Windows Defender, Disabled

    <DiagReport>
    <LicensingData>
    <ToolVersion>6.3.9600.16384</ToolVersion>
    <LicensingStatus>SL_LICENSING_STATUS_LICENSED</LicensingStatus>
    <LicensingStatusReason>0x00000000</LicensingStatusReason>
    <LocalGenuineState>SL_GEN_STATE_IS_GENUINE</LocalGenuineState>
    <LocalGenuineResultP>1</LocalGenuineResultP>
    <LastOnlineGenuineResult>0x00000000</LastOnlineGenuineResult>
    <GraceTimeMinutes>0</GraceTimeMinutes>
    <TotalGraceDays>0</TotalGraceDays>
    <ValidityExpiration></ValidityExpiration>
    <ActivePartialProductKey>QJY8Q</ActivePartialProductKey>
    <ActiveProductKeyPid2>00258-61531-60707-AAOEM</ActiveProductKeyPid2>
    <OSVersion>6.3.9600.2.00010300.0.0.101</OSVersion>
    <ProductName>Windows 8.1</ProductName>
    <ProcessorArchitecture>x64</ProcessorArchitecture>
    <EditionId>Core</EditionId>
    <BuildLab>9600.winblue_ltsb.150928-1002</BuildLab>
    <TimeZone>Pacific Standard Time(GMT-07:00)</TimeZone>
    <ActiveSkuId>c7c00280-b24d-4e82-89ca-4f1288eb1d9e</ActiveSkuId>
    <ActiveSkuDescription>Windows(R) Operating System, OEM_DM channel</ActiveSkuDescription>
    <ProductUniquenessGroups>55c92734-d682-4d71-983e-d6ec3f16059f</ProductUniquenessGroups>
    <ActiveProductKeyPKeyId>33d9319d-78a0-c76b-06ba-7332439bd08a</ActiveProductKeyPKeyId>
    <ActiveProductKeyPidEx>06401-02586-153-160707-02-1033-9600.0000-2112016</ActiveProductKeyPidEx>
    <ActiveProductKeyChannel>OEM:DM</ActiveProductKeyChannel>
    <ActiveVolumeCustomerPid></ActiveVolumeCustomerPid>
    <OfflineInstallationId>760329347077459108136141459663618651315880636643516680821477204</OfflineInstallationId>
    <DomainJoined>false</DomainJoined>
    <ComputerSid>S-1-5-21-71018918-1819627667-3017581567</ComputerSid>
    <ProductLCID>1033</ProductLCID>
    <UserLCID>1033</UserLCID>
    <SystemLCID>1033</SystemLCID>
    <CodeSigning>SIGNED_INFO_PRS_SIGNED</CodeSigning>
    <ServiceAvailable>true</ServiceAvailable>
    <OemMarkerVersion></OemMarkerVersion>
    <OemId></OemId>
    <OemTableId></OemTableId>
    <Manufacturer>ASUSTeK COMPUTER INC.</Manufacturer>
    <Model>K30BF_M32BF</Model>
    <InstallDate>20150822155242.000000-420</InstallDate>
    </LicensingData>
    <HealthCheck>
    <Result>PASS</Result>
    <TamperedItems></TamperedItems>
    </HealthCheck>
    <GenuineAuthz>
    <ServerProps>GenuineId=55c92734-d682-4d71-983e-d6ec3f16059f;OemId=A264;OptionalInfoId=t6Dix3g1HAS3JTxwHB3K8s7KGmw18LP1enE7nRvv3i+uJL2zt5joWtL/eWpe/fB0;Pid=J4TOl+8JJBtYG7gn9WcNYTfgFtNt7jvbq7qx5KtESDk=;SkuId=c7c00280-b24d-4e82-89ca-4f1288eb1d9e;TimeStampServer=2015-08-18T23:25:04Z;</ServerProps>
    </GenuineAuthz>
     
  4. wannabeageek

    wannabeageek Malware Specialist

    Joined:
    Nov 11, 2009
    Messages:
    581
    Hi LogiRogi,

    FRST - Farbar Recovery Scanner Tool [​IMG]
    Please download FRST64.exe ... by Farbar. Save or move it to your desktop.
    1. Right click on FRST64.exe select "Run As Administrator" to run it. If prompted by UAC, please allow it. When the tool opens click Yes to disclaimer.
    2. Press Scan button. ... A log will be created FRST.txt in the same directory the tool is run.
    3. Please copy/paste FRST.txt it to your reply.
      The first time the tool is run, it makes also another log... Addition.txt.
    4. Please copy/paste Addition.txt in your reply.
     
  5. wannabeageek

    wannabeageek Malware Specialist

    Joined:
    Nov 11, 2009
    Messages:
    581
    Hi LogiRogi.

    It has been three days since my last post.

    • Do you still need help?
    • Do you need more time?
    • Are you having problems following my instructions?
    • These topics will self- close after 45 days without a response.
    • If you do not reply within the next 48 hours, I will remove this topic from my notification list.
    • If you post back after 5 days but before 45 days, PM me and wait for a response.
    • If you still need help after 45 days post a new log on a new thread.
     
  6. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1175289

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice