Pop Ups and a Search Bar?

[RobPaul]

I have windows xp with service pack two installed, running the latest patchs and versions of all the software on my system. I have started getting pop ups even though im running pop up killer software, spy bot software, zone alarm firewall and virus scan softwarw all to the newest versions. Im really stuck as what could be allowing these pop us to happen.

I also have a serch bar pop up from the base of the screen that almost looks like its designed for windows but it just slows the browser down for a split sec and is getting very annoying

Cookies are blocked to unwanted sites and im usually good at watching what i download, is there a software "hole" somewhere that is allowing these pop ups?

Any help welcome

[rjfvillarosa]

Hi Rob, welcome to PC Mech, there are some very devious malware/spyware applications about and keeping on top of all of them is a full time job.
Have a read of this thread and consider running your scans in safe mode with system restore switched off.
http://forum.pcmech.com/showthread.php?t=115633

[RobPaul]

Hi rjfvillarosa, thansk for the welcome

Ive turned system restore off as ive tweaked my windows xp by following the "blackviper" web site tips so i dont think theres anything sitting in there.

I will try to run a system scan in safe mode to see if i can flush any stuff out.

Im currently using Spybot - S&D, Ad-Aware, Zonealarm and eTrust EZ Antivirus but none have come up with any problems or system errors.

Any other software out there that could be of some use?

[rjfvillarosa]

What antivirus are you using?
Norton detects spyware and malware but it doesn't remove it.
I am running AVG7 a free download from www.grisoft.com and it is brilliant.
Between AVG7 and adaware SE1.05 I never get any problems, check what version of adaware you are using, only SE1.05 is current at the moment the others are obsolete.
You could try www.housecall.trendmicro.com for an online scan and AVAST, after downloading avast you need a restart and it does a full scan on start up just before windows fully loads, so it can pick up things before they have a chance to activate themselves. I can't remember where to get avast but a google search should find it.

[RobPaul]

Ive found the problem for the pop ups and bar to be somehow the registry is being changed and allowing the pop ups past the pop up blocker and the cookie blocker.

I have three spyware systems running now Ad-Aware, Spybot S&D, Webroot Spy Sweeper and none of them find it, system restore is off and everytime I restart my computer the pop ups are still there

Any ideas? ive turned off Active X aswell and its still a problem.

[glc]

Read the sticky thread - then post a HijackThis log.

[RobPaul]

Will do glc, cheers

Sorry i didnt read the sticky but i didnt know it covered my problems, i do now though

[RobPaul]

Right done the sacn and found that the Adware is called: lopdotcom

It changes the permissions to allow pop ups and a stupid little menu bar that has not very suitable links on it. Any tips for maken sure i can stop this once for all as it still pop up every so often and i want to make sure ive got everything out of the system

see above for my current anti-ad software spe.

[RobPaul]

heres the log file:

[glc]

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.vgzkzrztvrkrsilbg.com/TIC...31LbaF7jOi.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
O2 - BHO: (no name) - {FEC0174D-D4AB-25A4-BEA8-F0B152531E59} - C:\DOCUME~1\Robert\APPLIC~1\WINBOO~1\UPLOAD CAKE.exe
O4 - HKLM\..\Run: [Four settings find bold] C:\Documents and Settings\All Users\Application Data\noun hide four settings\tons locks.exe
O4 - HKCU\..\Run: [Okay bib] C:\DOCUME~1\Robert\APPLIC~1\FIRSTW~1\dale start coal.exe

Uninstall Spyblocs, that's a rogue program.

Google for "aboutbuster", run it.

Before posting another log, please review the sticky thread again, you ran it with a lot of programs open, it needs to be run IMMEDIATELY after a fresh reboot BEFORE opening any programs or going on line.