Noticed Win32/bundledGoogle.D variant

Hi folks, hope everyone had an enjoyable Holiday and Christmas, i noticed the above in a scan i ran with Eset online scanner and upon running Roguekiller i noticed results that i rarely ever see.

98% of the time when Rogue killer is run i get a total of two HJ DESK results which is nothing to be worried about however, this last one has numerous HJ POL entries and when viewing the text i see a few (node ) entries (whatever that is) so i just want someone to take a look to see if anythings suspicious.

Can you tell me what HJ POL means, i know what PUM means.

I have noticed Kaspersky freezes when trying to update as well but not always.

Thank you


I always have issues with posting mbam and tdss logs but i can tell you they both found nothing.

 

I can never find the logs is the problem, i follow where to put them but i always seem to have major issues finding them. I do know however that they are new and updated versions.

Here is the screenshot of what Eset finds, but Eset fails to be able to get rid of them , even in safe mode.

 

Thanks Chaslang, I got rid of Google and decided to see if I still have issues when using another browser and surprisingly with IE 11 they are gone .
Now when I use IE 11 and click on the Google favorites search bar all the problems re appear . This site called Faraway magic UK pops up and nearly all search results reference it, my Kaspersky URL advisor has them all blacked out as no good.

Something very strange going on, one thing I did notice with IE 11 is that when you attempt to download anti malware of any kind it says dangerous and this program is not downloaded and should be avoided .

It actually only shows a (delete) or (do not run ) option and really tries to get you to not run it , didn't realize IE was like that . Chrome never does that

 

I installed CCleaner and saw the option to install Chrome since i like it better than IE but only when it's not messing up my search results .

I unchecked the install google toolbar for IE option and just went with plain old Chrome, after updating i did a search and the same results are coming up as you can see in the screenshot.

Maybe i need to go into the software forum as this may not be malware but i have never seen so many bad links .

Anyway's i appreciate your help very much as i always do and i hope your doing well.

Chris

 

My apologies, i uninstalled the Chrome i originally had thinking maybe i had a bad link and reinstalled it with the CCleaner. Unfortunately the same issues.

I did the OTL

Thanks for your help


Side note: I noticed when OTL started scanning the netsvs and active x text disappeared but the drives text remained for the entire scan.

 

The issues of redirects which I never had before with Chrome. I do not have the same issues with other browsers so it's Chrome only.

Did my OTL look OK ?


I want to ask you another question, off topic.


When I run a sfc/scannow I always get a message saying there is a system repair pending but I have no idea what it is.

This has been going on forever and I have to always run chkdsk/r to fix . Is there something that could get the system repair pending message deleted permanently like a code I could use in Command prompt?

The last thing is when I run Secunia PSI it will say your 29 programs are up to date , i'll run it again and it will say your 33 programs are up to date then it will say your 29 programs are up to date again.

I ran all three under user account but need to type in admin password each time.

Here is a screenshot ( that thing circled concerns me because I don't play games and it's not showing in programs ).