<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
{font-family:"Helvetica Neue";
panose-1:0 0 0 0 0 0 0 0 0 0;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
p.yiv1740004043msonormal, li.yiv1740004043msonormal, div.yiv1740004043msonormal
{mso-style-name:yiv1740004043msonormal;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
p.yiv1740004043msonormal1, li.yiv1740004043msonormal1, div.yiv1740004043msonormal1
{mso-style-name:yiv1740004043msonormal1;
margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
span.yiv1740004043apple-converted-space
{mso-style-name:yiv1740004043apple-converted-space;}
span.EmailStyle29
{mso-style-type:personal-reply;
font-family:"Arial",sans-serif;
font-variant:normal !important;
color:windowtext;
text-transform:none;
text-decoration:none none;
vertical-align:baseline;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;
mso-ligatures:none;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link=blue vlink=purple style='word-wrap:break-word'><div class=WordSection1><p class=MsoNormal><span style='font-size:12.0pt;font-family:"Arial",sans-serif'>Geek Squad suggested 5<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:12.0pt;font-family:"Arial",sans-serif'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> Robert Primak <bobprimak@yahoo.com> <br><b>Sent:</b> Tuesday, November 14, 2023 3:17 PM<br><b>To:</b> 'Drew King' <dking65@kingconsulting.us>; 'Robert Primak via LCTG' <lctg@lists.toku.us>; 'Smita Desai' <smitausa@gmail.com>; 'Adam Broun' <abroun@gmail.com>; jjrudy1@comcast.net<br><b>Subject:</b> Re: [Lex Computer & Tech Group/LCTG] an issue<o:p></o:p></p></div></div><p class=MsoNormal><o:p> </o:p></p><div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'>I like to have as many Restore Points as I can put into Windows. The reason is, I might have to restore to a point up to a month ago, which was my last Macrium Reflect System Full Backup time. Between full image snapshots <br>I do not trust anything in Windows to remain stable and "unimproved". <o:p></o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'><o:p> </o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'>Given the amount of software my system typical carries, and the fact that some data also live onboard for everyday use, I allow several gigabytes on my system drive for Restore Points in Windows 11. This is probably vast overkill, but it's only a few percent of a 1TB SSD, and it doesn't slow the system or hamper the speed of making a full system backup (5 to 10 mins typically in my system, and about as much time for the Verify step). You should probably also have at least one extra copy of your system backups, on a separate external drive. <o:p></o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'><o:p> </o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'>I definitely back up my system before the Patch Tuesday monthly Windows Updates. This is not just a Restore Point.<o:p></o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'><o:p> </o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'>A backup without Verification may surprise you in a very bad way. Always verify system backups. And back up data separately and more frequently than the system. <o:p></o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'><o:p> </o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'>But circling back to Restore points, do you really want only between one and three? Are you THAT confident in Windows and software updates? <o:p></o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'><o:p> </o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'>More than three Restore Points might be overkill. And the default value once System Restore is turned on may exceed that capacity. So feel free to reset the maximum amount of disk space allowed for Restore Points with the slider. You'll know if you undershoot. Better yet, have a system drive on an SSD with plenty of capacity. "Overprovisioning" in this way can improve the longevity of an SSD. <o:p></o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'><o:p> </o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif'><o:p> </o:p></span></p></div></div><div id="yahoo_quoted_0926231555"><div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'>On Tuesday, November 14, 2023 at 02:45:03 PM EST, <<a href="mailto:jjrudy1@comcast.net">jjrudy1@comcast.net</a>> wrote: <o:p></o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p> </o:p></span></p></div><div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p> </o:p></span></p></div><div><div id=yiv1740004043><div><div><p class=yiv1740004043msonormal><span style='font-size:12.0pt;font-family:"Arial",sans-serif;color:#26282A'>I have 11 and the restore points are set, but a huge amount of space is devoted to it so when I went to the Geek Squad to solve my malware issue they reduced the space.</span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p><p class=yiv1740004043msonormal><span style='font-size:12.0pt;font-family:"Arial",sans-serif;color:#26282A'>John</span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p><p class=yiv1740004043msonormal><span style='font-size:12.0pt;font-family:"Arial",sans-serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p><div id=yiv1740004043yqt82417><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=yiv1740004043msonormal><b><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'>From:</span></b><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'> Drew King (<a href="mailto:dking65@kingconsulting.us">dking65@kingconsulting.us</a>) <<a href="mailto:dking65@kingconsulting.us">dking65@kingconsulting.us</a>> <br><b>Sent:</b> Saturday, November 11, 2023 1:47 AM<br><b>To:</b> Robert Primak <<a href="mailto:bobprimak@yahoo.com">bobprimak@yahoo.com</a>>; Robert Primak via LCTG <<a href="mailto:lctg@lists.toku.us">lctg@lists.toku.us</a>>; 'Smita Desai' <<a href="mailto:smitausa@gmail.com">smitausa@gmail.com</a>>; 'Adam Broun' <<a href="mailto:abroun@gmail.com">abroun@gmail.com</a>>; <a href="mailto:jjrudy1@comcast.net">jjrudy1@comcast.net</a><br><b>Cc:</b> 'Lex Computer Group' <<a href="mailto:lctg@lists.toku.us">lctg@lists.toku.us</a>><br><b>Subject:</b> Re: [Lex Computer & Tech Group/LCTG] an issue<o:p></o:p></span></p></div></div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'> <o:p></o:p></span></p><div><p class=yiv1740004043msonormal style='margin-bottom:12.0pt'><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'>This reminds me about System restore points.<br><br>Your computer should if it is enabled periodically create restore points that will allow you to revert your computer back to that state pre-virus or malware or adware or whatever it is.<br><br>It's worth checking your system restore settings and look for a recent system restore point that you can go back to. That will clear up the problem absolutely.<br><br>I haven't checked for myself but somebody told me that Windows 11 has system restore disabled by default if that is the case then you would want it enabled and make sure you make a periodic restore point.<br><br>I make one before installing anything on my computer and it has gotten me out of a jam more than once by allowing me to revert my system Back to Before the time when the software was installed. <br><br><o:p></o:p></span></p></div><div><div><p class=yiv1740004043msonormal style='margin-bottom:12.0pt'><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'>-- <br>Drew King<o:p></o:p></span></p></div></div><p class=yiv1740004043msonormal style='margin-bottom:12.0pt'><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'> <o:p></o:p></span></p><div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'>On November 11, 2023 12:34:48 AM EST, Robert Primak via LCTG <<a href="mailto:lctg@lists.toku.us" target="_blank">lctg@lists.toku.us</a>> wrote:<o:p></o:p></span></p></div><blockquote style='border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-top:5.0pt;margin-right:0in;margin-bottom:5.0pt'><div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>I think this is adware, not a true virus infection. Which makes it easier to remove and keep it from coming back. But you will need to run anything you choose to try in Windows Safe Mode. This is necessary to stop any services which prevent the entire unwanted package from being totally removed. Registry cleanup is a must as well, because it's through Registry corruption that adware often reinstalls itself.</span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>If yo</span><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:black'>u can handle a little Command-Line action, restoring any corrupted system files would be a good idea after the adware is actually gone and does not come back. </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:black'>The Command Line tools would be sfc/scannow and dism/restorehealth. </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:black'>But let's try to remove the adware first. </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>Two options:</span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>ADWCleaner from Malwarebytes: You can run this one from Windows Safe Mode, and that would be better than running it in Windows Normal Mode. This program specifically targets adware and browser corruptions.</span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>If anyone knows of a portable antivirus app, which can run independently of a booted Windows OS, this would be the next step.</span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>Windows Defender lets you run Windows Defender offline (WDO). It's an advanced option under the Defender Scan Options. It should be the bottom option. But this scan won't work on every computer, and I never see it make a proper log which Defender can display. </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>Portable antivirus scanners can be put onto a USB flash drive, if you have a way to make the flash drive bootable. RUFUS is one way, and I think they allow you to create a boot drive with an AV scanner and other tools included. </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>It's a little tricky getting into USB Boot under Windows 11 due to new security keys required for USB boot devices. I have used Ventoy to create flash drives with multiple CDs (ISOs) which will boot and run their programs from USB. If one of these disk images contains a good antivirus scanner, you can do the tool's database update, ID the adware, remove it and clean up from outside of Windows. Make any USB flash drive on a different computer from the infected one. </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>If this does not clean up the infection, it's time to bite the bullet and reinstall Windows. That may not work in extreme cases, but a clean erase of the drive followed by reinstalling Windows will in most cases produce a virus-free result. If you download Windows 11 from Microsoft for a reinstall, be aware that you are upgrading to the newest Fall Feature Update (23H2). RUFUS may allow you to stick with 22H2 or whichever version you are on now. Windows 10 does not have this issue. </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>I think ADWCleaner will root out this infection. It looks like adware, and the browser is the most likely source of the trouble. That makes this more of an adware infection than a true virus situation. But you should try to get into Windows Safe Mode and then run one of the group's recommendations, or some other portable adware-targeting anti-malware tool. </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>-- Bob Primak </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div></div><div id="yiv1740004043yahoo_quoted_9993802423"><div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>On Friday, November 10, 2023 at 05:03:43 PM EST, John Rudy via LCTG <<a href="mailto:lctg@lists.toku.us" target="_blank">lctg@lists.toku.us</a>> wrote: </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div><div><div id=yiv1740004043><div><div><p class=yiv1740004043msonormal1><span style='font-size:12.0pt;font-family:"Arial",sans-serif;color:#26282A'>I have rebooted twice</span><span style='color:#26282A'><o:p></o:p></span></p><p class=yiv1740004043msonormal1><span style='font-size:12.0pt;font-family:"Arial",sans-serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><div id=yiv1740004043yqtfd86479><p class=yiv1740004043msonormal1><b><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>From:</span></b><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> LCTG <<a href="mailto:lctg-bounces+jjrudy1=comcast.net@lists.toku.us" target="_blank">lctg-bounces+jjrudy1=comcast.net@lists.toku.us</a>> <b>On Behalf Of </b>Smita Desai via LCTG<br><b>Sent:</b> Friday, November 10, 2023 4:58 PM<br><b>To:</b> Adam Broun <<a href="mailto:abroun@gmail.com" target="_blank">abroun@gmail.com</a>><br><b>Cc:</b> Lex Computer Group <<a href="mailto:lctg@lists.toku.us" target="_blank">lctg@lists.toku.us</a>><br><b>Subject:</b> Re: [Lex Computer & Tech Group/LCTG] an issue</span><span style='color:#26282A'><o:p></o:p></span></p></div></div></div><div id=yiv1740004043yqtfd70288><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>I would also reboot and keep disconnected from the internet. </span><span style='color:#26282A'><o:p></o:p></span></p><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>Smita Desai </span><span style='color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>Sent from my iPhone</span><span style='color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal1 style='margin-bottom:12.0pt'><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p><blockquote style='margin-top:5.0pt;margin-bottom:5.0pt'><p class=yiv1740004043msonormal1 style='margin-bottom:12.0pt'><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>On Nov 10, 2023, at 4:08 PM, Adam Broun via LCTG <<a href="mailto:lctg@lists.toku.us" target="_blank">lctg@lists.toku.us</a>> wrote:</span><span style='color:#26282A'><o:p></o:p></span></p></blockquote></div><blockquote style='margin-top:5.0pt;margin-bottom:5.0pt'><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Tahoma",sans-serif;color:#26282A'></span><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>When do these messages appear? Upon boot up? After opening a browser window? Other? That might narrow down where to look (e.g in startup folder or registry, browser settings, etc.</span><span style='color:#26282A'><o:p></o:p></span></p><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div><div><div><p class=yiv1740004043msonormal1 style='margin-bottom:12.0pt'><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p><blockquote style='margin-top:5.0pt;margin-bottom:5.0pt'><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>On Nov 10, 2023, at 15:59, <a href="mailto:palbin24@yahoo.com" target="_blank">palbin24@yahoo.com</a> wrote:</span><span style='color:#26282A'><o:p></o:p></span></p></div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p><div><p class=yiv1740004043msonormal1><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'>I’m reluctant to suggest major surgery and I hope someone has a good idea </span><span style='color:#26282A'><o:p></o:p></span></p><div><p class=yiv1740004043msonormal1><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal1><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'>A middle ground might be reinstalling the OS. There are tools from Microsoft and perhaps your computer vendor to help. Wait to see if there are any other options before going down this road.</span><span style='color:#26282A'><o:p></o:p></span></p><div><p class=yiv1740004043msonormal1><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p><div><p class=yiv1740004043msonormal1><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'>Peter</span><span style='color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal1 style='margin-bottom:12.0pt'><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p><blockquote style='margin-top:5.0pt;margin-bottom:5.0pt'><p class=yiv1740004043msonormal1 style='margin-bottom:12.0pt'><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'>On Nov 10, 2023, at 3:47 PM, John Rudy via LCTG <<a href="mailto:lctg@lists.toku.us" target="_blank">lctg@lists.toku.us</a>> wrote:</span><span style='color:#26282A'><o:p></o:p></span></p></blockquote></div><blockquote style='margin-top:5.0pt;margin-bottom:5.0pt'><div><p class=yiv1740004043msonormal1><span style='font-size:9.0pt;font-family:"Tahoma",sans-serif;color:#26282A'></span><span style='color:#26282A'><o:p></o:p></span></p><div><p class=yiv1740004043msonormal1><span style='font-size:12.0pt;font-family:"Arial",sans-serif;color:#26282A'>They are back, so Malware Bytes didn’t do it.</span><span style='color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal1><span style='font-size:12.0pt;font-family:"Arial",sans-serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div><div><div style='border:none;border-top:solid windowtext 1.0pt;padding:3.0pt 0in 0in 0in;border-color:currentcolor currentcolor'><div><p class=yiv1740004043msonormal1><b><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>From:</span></b><span class=yiv1740004043apple-converted-space><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span></span><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>Adam Broun <<a href="mailto:abroun@gmail.com" target="_blank">abroun@gmail.com</a>><span class=yiv1740004043apple-converted-space> </span><br><b>Sent:</b><span class=yiv1740004043apple-converted-space> </span>Friday, November 10, 2023 3:39 PM<br><b>To:</b><span class=yiv1740004043apple-converted-space> </span><a href="mailto:jjrudy1@comcast.net" target="_blank">jjrudy1@comcast.net</a><br><b>Cc:</b><span class=yiv1740004043apple-converted-space> </span>Lex Computer Group <<a href="mailto:lctg@lists.toku.us" target="_blank">lctg@lists.toku.us</a>><br><b>Subject:</b><span class=yiv1740004043apple-converted-space> </span>Re: [Lex Computer & Tech Group/LCTG] an issue</span><span style='color:#26282A'><o:p></o:p></span></p></div></div></div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>Check the home page settings in your browser. My guess is a script got triggered that put something funky in there. And try running the inbuilt Windows virus scan.</span><span style='color:#26282A'><o:p></o:p></span></p></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div><div><div><p class=yiv1740004043msonormal1 style='margin-bottom:12.0pt'><span style='color:#26282A'><o:p> </o:p></span></p></div><blockquote style='margin-top:5.0pt;margin-bottom:5.0pt'><div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>On Nov 10, 2023, at 15:27, John Rudy via LCTG <<a href="mailto:lctg@lists.toku.us" target="_blank">lctg@lists.toku.us</a>> wrote:</span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div><div><div><div><p class=yiv1740004043msonormal1><span style='font-size:12.0pt;font-family:"Arial",sans-serif;color:#26282A'>Starting this morning I began to receive these messages. I assumed that they were a scam and I do not believe I have McAfee on my system. I have not clicked on either t</span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:12.0pt;font-family:"Arial",sans-serif;color:#26282A'>the Yes or No Thanks. But they are covering things up and I seem unable to get rid of them.</span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:12.0pt;font-family:"Arial",sans-serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:12.0pt;font-family:"Arial",sans-serif;color:#26282A'>I did close down mail and rebooted, but they are back. Any thoughts?</span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:12.0pt;font-family:"Arial",sans-serif;color:#26282A'><image002.png></span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Arial",sans-serif;color:#26282A'>John Rudy</span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Arial",sans-serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Arial",sans-serif;color:#26282A'>781-861-0402</span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Arial",sans-serif;color:#26282A'>781-718-8334 cell</span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Arial",sans-serif;color:#26282A'>13 Hawthorne Lane</span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Arial",sans-serif;color:#26282A'>Bedford MA</span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Arial",sans-serif;color:#26282A'><a href="mailto:jjrudy1@comcast.net" target="_blank">jjrudy1@comcast.net</a></span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'><image001.png></span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div></div><div><p class=yiv1740004043msonormal1><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'>===============================================<br>::The Lexington Computer and Technology Group Mailing List::<br>Reply goes to sender only; Reply All to send to list.<br>Send to the list:<span class=yiv1740004043apple-converted-space> </span></span><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'><a href="mailto:LCTG@lists.toku.us" target="_blank"><span style='font-size:9.0pt;font-family:"Arial",sans-serif'>LCTG@lists.toku.us</span></a></span><span class=yiv1740004043apple-converted-space><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'> </span></span><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'> Message archives:<span class=yiv1740004043apple-converted-space> </span></span><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'><a href="http://lists.toku.us/pipermail/lctg-toku.us/" target="_blank"><span style='font-size:9.0pt;font-family:"Arial",sans-serif'>http://lists.toku.us/pipermail/lctg-toku.us/</span></a></span><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'><br>To subscribe: email<span class=yiv1740004043apple-converted-space> </span></span><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'><a href="mailto:lctg-subscribe@toku.us" target="_blank"><span style='font-size:9.0pt;font-family:"Arial",sans-serif'>lctg-subscribe@toku.us</span></a></span><span class=yiv1740004043apple-converted-space><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'> </span></span><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'> To unsubscribe: email<span class=yiv1740004043apple-converted-space> </span></span><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'><a href="mailto:lctg-unsubscribe@toku.us" target="_blank"><span style='font-size:9.0pt;font-family:"Arial",sans-serif'>lctg-unsubscribe@toku.us</span></a></span><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'><br>Future and Past meeting information:<span class=yiv1740004043apple-converted-space> </span></span><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'><a href="http://lctg.toku.us/" target="_blank"><span style='font-size:9.0pt;font-family:"Arial",sans-serif'>http://LCTG.toku.us</span></a></span><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'><br>List information:<span class=yiv1740004043apple-converted-space> </span></span><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'><a href="http://lists.toku.us/listinfo.cgi/lctg-toku.us" target="_blank"><span style='font-size:9.0pt;font-family:"Arial",sans-serif'>http://lists.toku.us/listinfo.cgi/lctg-toku.us</span></a></span><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'><br>This message was sent to<span class=yiv1740004043apple-converted-space> </span></span><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'><a href="mailto:abroun@gmail.com" target="_blank"><span style='font-size:9.0pt;font-family:"Arial",sans-serif'>abroun@gmail.com</span></a></span><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'>.<br>Set your list options:<span class=yiv1740004043apple-converted-space> </span></span><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'><a href="http://lists.toku.us/options.cgi/lctg-toku.us/abroun@gmail.com" target="_blank"><span style='font-size:9.0pt;font-family:"Arial",sans-serif'>http://lists.toku.us/options.cgi/lctg-toku.us/abroun@gmail.com</span></a></span><span style='color:#26282A'><o:p></o:p></span></p></div></div></blockquote></div><div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div></div><p class=yiv1740004043msonormal1><span style='font-size:9.0pt;font-family:"Arial",sans-serif;color:#26282A'>===============================================<br>::The Lexington Computer and Technology Group Mailing List::<br>Reply goes to sender only; Reply All to send to list.<br>Send to the list:<span class=yiv1740004043apple-converted-space> </span><a href="mailto:LCTG@lists.toku.us" target="_blank">LCTG@lists.toku.us</a><span class=yiv1740004043apple-converted-space> </span> Message archives:<span class=yiv1740004043apple-converted-space> </span><a href="http://lists.toku.us/pipermail/lctg-toku.us/" target="_blank">http://lists.toku.us/pipermail/lctg-toku.us/</a><br>To subscribe: email<span class=yiv1740004043apple-converted-space> </span><a href="mailto:lctg-subscribe@toku.us" target="_blank">lctg-subscribe@toku.us</a><span class=yiv1740004043apple-converted-space> </span> To unsubscribe: email<span class=yiv1740004043apple-converted-space> </span><a href="mailto:lctg-unsubscribe@toku.us" target="_blank">lctg-unsubscribe@toku.us</a><br>Future and Past meeting information:<span class=yiv1740004043apple-converted-space> </span><a href="http://lctg.toku.us/" target="_blank">http://LCTG.toku.us</a><br>List information:<span class=yiv1740004043apple-converted-space> </span><a href="http://lists.toku.us/listinfo.cgi/lctg-toku.us" target="_blank">http://lists.toku.us/listinfo.cgi/lctg-toku.us</a><br>This message was sent to<span class=yiv1740004043apple-converted-space> </span><a href="mailto:palbin24@yahoo.com" target="_blank">palbin24@yahoo.com</a>.<br>Set your list options:<span class=yiv1740004043apple-converted-space> </span><a href="http://lists.toku.us/options.cgi/lctg-toku.us/palbin24@yahoo.com" target="_blank">http://lists.toku.us/options.cgi/lctg-toku.us/palbin24@yahoo.com</a></span><span style='color:#26282A'><o:p></o:p></span></p></div></blockquote></div></div></div></blockquote></div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'> </span><span style='color:#26282A'><o:p></o:p></span></p></div><p class=yiv1740004043msonormal1><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>===============================================<br>::The Lexington Computer and Technology Group Mailing List::<br>Reply goes to sender only; Reply All to send to list.<br>Send to the list: <a href="mailto:LCTG@lists.toku.us" target="_blank">LCTG@lists.toku.us</a> Message archives: <a href="http://lists.toku.us/pipermail/lctg-toku.us/" target="_blank">http://lists.toku.us/pipermail/lctg-toku.us/</a><br>To subscribe: email <a href="mailto:lctg-subscribe@toku.us" target="_blank">lctg-subscribe@toku.us</a> To unsubscribe: email <a href="mailto:lctg-unsubscribe@toku.us" target="_blank">lctg-unsubscribe@toku.us</a><br>Future and Past meeting information: <a href="http://LCTG.toku.us" target="_blank">http://LCTG.toku.us</a><br>List information: <a href="http://lists.toku.us/listinfo.cgi/lctg-toku.us" target="_blank">http://lists.toku.us/listinfo.cgi/lctg-toku.us</a><br>This message was sent to <a href="mailto:smitausa@gmail.com" target="_blank">smitausa@gmail.com</a>.<br>Set your list options: <a href="http://lists.toku.us/options.cgi/lctg-toku.us/smitausa@gmail.com" target="_blank">http://lists.toku.us/options.cgi/lctg-toku.us/smitausa@gmail.com</a></span><span style='color:#26282A'><o:p></o:p></span></p></div></blockquote></div></div></div></div></div><div id=yiv1740004043yqtfd02961><p class=yiv1740004043msonormal><span style='font-size:10.0pt;font-family:"Times New Roman",serif;color:#26282A'>===============================================<br>::The Lexington Computer and Technology Group Mailing List::<br>Reply goes to sender only; Reply All to send to list.<br>Send to the list: <a href="mailto:LCTG@lists.toku.us" target="_blank">LCTG@lists.toku.us</a> Message archives: <a href="http://lists.toku.us/pipermail/lctg-toku.us/" target="_blank">http://lists.toku.us/pipermail/lctg-toku.us/</a><br>To subscribe: email <a href="mailto:lctg-subscribe@toku.us" target="_blank">lctg-subscribe@toku.us</a> To unsubscribe: email <a href="mailto:lctg-unsubscribe@toku.us" target="_blank">lctg-unsubscribe@toku.us</a><br>Future and Past meeting information: <a href="http://LCTG.toku.us" target="_blank">http://LCTG.toku.us</a><br>List information: <a href="http://lists.toku.us/listinfo.cgi/lctg-toku.us" target="_blank">http://lists.toku.us/listinfo.cgi/lctg-toku.us</a><br>This message was sent to <a href="mailto:bobprimak@yahoo.com." target="_blank">bobprimak@yahoo.com.</a><br>Set your list options: <a href="http://lists.toku.us/options.cgi/lctg-toku.us/bobprimak@yahoo.com" target="_blank">http://lists.toku.us/options.cgi/lctg-toku.us/bobprimak@yahoo.com</a></span><span style='font-size:10.0pt;font-family:"Helvetica Neue",serif;color:#26282A'><o:p></o:p></span></p></div></div></div></div></blockquote></div></div></div></div></div></div></div></div></div></body></html>