DaniWeb IT Discussion Community

DaniWeb IT Discussion Community (http://www.daniweb.com/forums/index.php)
-   Viruses, Spyware and other Nasties (http://www.daniweb.com/forums/forum64.html)
-   -   Pop ups !! Cannot get rid of it (http://www.daniweb.com/forums/thread10814.html)

Ohhhhhhhhhh Sep 14th, 2004 3:38 pm
Pop ups !! Cannot get rid of it
 
Hi, i have a whole lot of pop ups on my computer whenever i surf the web, i've dl'ed Adaware and spybot sd updated the both and it finds a couple of entries which i end up deleting and removing, although the problems comes back every time i reboot. Any suggestions on what i should do ?

mikeandike22 Sep 14th, 2004 4:22 pm
Re: Pop ups !! Cannot get rid of it
 
download hijack this from softpedia.com and scan it and post your log here

Laser Sep 14th, 2004 4:26 pm
Re: Pop ups !! Cannot get rid of it
 
How about using something other than Internet Explorer, such as Firefox or Mozilla? Works for me.

mikeandike22 Sep 14th, 2004 7:52 pm
Re: Pop ups !! Cannot get rid of it
 
Quote:
Originally Posted by Laser
How about using something other than Internet Explorer, such as Firefox or Mozilla? Works for me.
Yeah mostly 99% of problems relating to malware are caused by bad security using internet explorer and in my opinion mozilla firefox is the better web browser but some people would rather use IE. Just set your security level higher get the google toolbar and make sure you have the most up to date IE.

Ohhhhhhhhhh Sep 15th, 2004 4:11 pm
Re: Pop ups !! Cannot get rid of it
 
alright, i just ran hijackthis, what should i remove or do ? Those browsers Firefox or Mozilla .. is it free ? And if it is, where can i dl it ?




Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Free Surfer\fs20.exe
C:\WINDOWS\System32\xbjowv.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\SIMONG~1\LOCALS~1\Temp\Rar$EX00.484\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://websearch.drsnsrch.com/sidesearch.cgi?id=
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://websearch.drsnsrch.com/sidesearch.cgi?id=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.sportsline.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://websearch.drsnsrch.com/sidesearch.cgi?id=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://websearch.drsnsrch.com/sidesearch.cgi?id=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://websearch.drsnsrch.com/sidesearch.cgi?id=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://websearch.drsnsrch.com/sidesearch.cgi?id=
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = websearch.drsnsrch.com/q.cgi?q=
O2 - BHO: MxTargetObj Class - {0000607D-D204-42C7-8E46-216055BF9918} - C:\WINDOWS\mxTarget.dll
O2 - BHO: Band Class - {01F44A8A-8C97-4325-A378-76E68DC4AB2E} - C:\WINDOWS\systb.dll
O2 - BHO: Setup.Setup1 - {2E65A557-173C-4DE9-860B-28FC5CACA542} - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Setup\Setup.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Others\SPYBOT~1\SDHelper.dll
O3 - Toolbar: (no name) - {2CDE1A7D-A478-4291-BF31-E1B4C16F92EB} - (no file)
O4 - HKLM\..\Run: [freesurfer] C:\Program Files\Free Surfer\fs20.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [cabysmo] C:\WINDOWS\System32\xbjowv.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Win Server Updt] C:\WINDOWS\wupdt.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O9 - Extra button: Free Surfer - {AFC3FA82-AD07-45cd-8B57-983435B9899E} - C:\Program Files\Free Surfer\FS20.exe
O9 - Extra 'Tools' menuitem: Free Surfer - {AFC3FA82-AD07-45cd-8B57-983435B9899E} - C:\Program Files\Free Surfer\FS20.exe
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://public.windupdates.com/get_fi...85d7b34e81015d

mikeandike22 Sep 15th, 2004 5:29 pm
Re: Pop ups !! Cannot get rid of it
 
ok you need to save hijack this to your hard drive and post the log exactly as it is you left part out and smushed two partd together.

dlh6213 Sep 15th, 2004 9:15 pm
Re: Pop ups !! Cannot get rid of it
 
Hijackthis needs to be in a permanent folder in order for it to save backups (in case something goes wrong), right now you're running it from a temp folder.

You can download Mozilla-Firefox free from here:
http://www.mozilla.org/

To continue using Internet Explorer more safely, make sure it is updated (using Windows Update) and install Spyware Blaster from here:
http://www.zerosrealm.com/index.php?page=downloads


All times are GMT -4. The time now is 3:06 pm.

Forum system based on vBulletin Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.
©2003 - 2009 DaniWeb® LLC