Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › Popups and virus's just wont stop.
New Posts  All Forums:Forum Nav:

Popups and virus's just wont stop.

post #1 of 30
Thread Starter 
I've been trying for days now to get rid of these popups...i wont even be on the internet, (just MSN or something) and I'll get a random popup for some spywaredoctor.com (just got one LOL). Whilst gaming I keep getting warnings from AVG, virus found...heal or vault? So I'd heal it and continue playing...and again and again it comes back. I've tried running AVG scans in safe mode, I've tried Ad-Aware for all the spyware...nothing. What process do you guys use to get rid of all this junk? BTW, i'm freshly formatted about a week ago. First thing installed was AVG, and I installed windows without the internet connected.
Kopisaurus
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel 2500k @ 5ghz 1.395v Gigabyte P67A-UD3P-B3 ATI HD6950 2GB (flashed --> 6970) 16GB Gskill Sniper 1600mhz 
Hard DriveOptical DriveOSMonitor
500gb WD Black / 2x 1TB WD Black RAID1 LG DVD/RW Super Multi Windows 7 Enterprise x64 ASUS ML239H 23" LED  
KeyboardPowerCaseMouse
Logitech G15 (modded) Corsair TV750W V2 Lian-Li Lancool PC-K62B Logitech G5 
  hide details  
Reply
Kopisaurus
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel 2500k @ 5ghz 1.395v Gigabyte P67A-UD3P-B3 ATI HD6950 2GB (flashed --> 6970) 16GB Gskill Sniper 1600mhz 
Hard DriveOptical DriveOSMonitor
500gb WD Black / 2x 1TB WD Black RAID1 LG DVD/RW Super Multi Windows 7 Enterprise x64 ASUS ML239H 23" LED  
KeyboardPowerCaseMouse
Logitech G15 (modded) Corsair TV750W V2 Lian-Li Lancool PC-K62B Logitech G5 
  hide details  
Reply
post #2 of 30
Try something else than AVG... I've only found it good to remove things before they REALLY spread.

Try housecall for the mean time

http://housecall.trendmicro.com

When Housecall's (it's a java-based scanner, meaning you won't have to install anything) done, install Antivir instead.
#well
(19 items)
 
Lenovo L530
(8 items)
 
 
CPUMotherboardGraphicsRAM
Intel Core i7 4770k Gigabyte Z87X-UD4H XFX Radeon HD 6950 Corsair CMX8GX3M2A2000C9 
Hard DriveHard DriveOptical DriveCooling
Samsung EVO 840 Hitachi HDS722020ALA330 Generic DVD±RW Burner Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 8.1 Dell U2711 LG W2453 Ducky DK9008 Overclock.net Edition, Cherry MX B... 
PowerCaseMouseMouse Pad
Corsair TX850 Antec Three Hundred Corsair Raptor M40 QPAD HeatoN M 
AudioAudioAudio
E-MU Tracker|pre Beyerdynamic DT-770 250 Ohm AntLion ModMIc 
CPUGraphicsRAMRAM
Intel Ivy Bridge 3210M Intel HD 4000 Graphics Soldered Corsair Vengeance  
Hard DriveOptical DriveOSMonitor
500GB DVD-+RW Windows 7 Professional 1600x900 
  hide details  
Reply
#well
(19 items)
 
Lenovo L530
(8 items)
 
 
CPUMotherboardGraphicsRAM
Intel Core i7 4770k Gigabyte Z87X-UD4H XFX Radeon HD 6950 Corsair CMX8GX3M2A2000C9 
Hard DriveHard DriveOptical DriveCooling
Samsung EVO 840 Hitachi HDS722020ALA330 Generic DVD±RW Burner Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 8.1 Dell U2711 LG W2453 Ducky DK9008 Overclock.net Edition, Cherry MX B... 
PowerCaseMouseMouse Pad
Corsair TX850 Antec Three Hundred Corsair Raptor M40 QPAD HeatoN M 
AudioAudioAudio
E-MU Tracker|pre Beyerdynamic DT-770 250 Ohm AntLion ModMIc 
CPUGraphicsRAMRAM
Intel Ivy Bridge 3210M Intel HD 4000 Graphics Soldered Corsair Vengeance  
Hard DriveOptical DriveOSMonitor
500GB DVD-+RW Windows 7 Professional 1600x900 
  hide details  
Reply
post #3 of 30
Try Antivir http://www.free-av.com/.Its free..also Spybot S&D and Ad-aware SE...also if all of those fail id say just do a fresh windows install.,,I know how much of a paint it can bee when youve got your rig set up just the way you like it..but sometimes its the only option.
My System
(15 items)
 
  
CPUMotherboardGraphicsRAM
4790K delidded @4.9ghz Asus Z97 Deluxe Wifi EVGA GTX 980 SC 2 x 8GB Corsair Vengence 2400 
Hard DriveOptical DriveCoolingOS
Crucial MX200 250gb + 1tb Lg Bluray EK Supreme, TC PA120.3, D5 Vario, San Ace Windows 7 Ultimate  
MonitorKeyboardPowerCase
32" LG7000 1920x1080 Logitech S510 XFX 650Watt XXX Modular Edition Custom Modded 
MouseAudio
Logitech S510 Mission M74 Denon PMA 355 
  hide details  
Reply
My System
(15 items)
 
  
CPUMotherboardGraphicsRAM
4790K delidded @4.9ghz Asus Z97 Deluxe Wifi EVGA GTX 980 SC 2 x 8GB Corsair Vengence 2400 
Hard DriveOptical DriveCoolingOS
Crucial MX200 250gb + 1tb Lg Bluray EK Supreme, TC PA120.3, D5 Vario, San Ace Windows 7 Ultimate  
MonitorKeyboardPowerCase
32" LG7000 1920x1080 Logitech S510 XFX 650Watt XXX Modular Edition Custom Modded 
MouseAudio
Logitech S510 Mission M74 Denon PMA 355 
  hide details  
Reply
post #4 of 30
Thread Starter 
I have tried adaware...i'll give anti vir a shot.
Kopisaurus
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel 2500k @ 5ghz 1.395v Gigabyte P67A-UD3P-B3 ATI HD6950 2GB (flashed --> 6970) 16GB Gskill Sniper 1600mhz 
Hard DriveOptical DriveOSMonitor
500gb WD Black / 2x 1TB WD Black RAID1 LG DVD/RW Super Multi Windows 7 Enterprise x64 ASUS ML239H 23" LED  
KeyboardPowerCaseMouse
Logitech G15 (modded) Corsair TV750W V2 Lian-Li Lancool PC-K62B Logitech G5 
  hide details  
Reply
Kopisaurus
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel 2500k @ 5ghz 1.395v Gigabyte P67A-UD3P-B3 ATI HD6950 2GB (flashed --> 6970) 16GB Gskill Sniper 1600mhz 
Hard DriveOptical DriveOSMonitor
500gb WD Black / 2x 1TB WD Black RAID1 LG DVD/RW Super Multi Windows 7 Enterprise x64 ASUS ML239H 23" LED  
KeyboardPowerCaseMouse
Logitech G15 (modded) Corsair TV750W V2 Lian-Li Lancool PC-K62B Logitech G5 
  hide details  
Reply
post #5 of 30
antivir works great for me...avg, not so much. i would just reformat once more and install spybot and antivir
Chief Keef
(16 items)
 
  
CPUMotherboardGraphicsRAM
e4300 @ 2.93G Asus P5B Vanilla eVGA 7900GS KO 2x1GB Crucial Ballistix 
Hard DriveOptical DriveCoolingOS
WD 250GB Samsung DVD-RW AC Freezer 7 Pro Windows 7 Ultimate Edition x86 
MonitorPowerCaseAudio
32" Insignia LED @ 1080p 550w Antec Truepower II Thermaltake Soprano Audigy 2 ZS 
Audio
Logitech 2.1 Speaker/Sub 
  hide details  
Reply
Chief Keef
(16 items)
 
  
CPUMotherboardGraphicsRAM
e4300 @ 2.93G Asus P5B Vanilla eVGA 7900GS KO 2x1GB Crucial Ballistix 
Hard DriveOptical DriveCoolingOS
WD 250GB Samsung DVD-RW AC Freezer 7 Pro Windows 7 Ultimate Edition x86 
MonitorPowerCaseAudio
32" Insignia LED @ 1080p 550w Antec Truepower II Thermaltake Soprano Audigy 2 ZS 
Audio
Logitech 2.1 Speaker/Sub 
  hide details  
Reply
post #6 of 30
Sounds like adware. Try Lavasoft Ad-aware SE, it'll get rid of most things. If it's still there, move on the Spybot S&D. If that doesn't work you can always try Hijack This, ad as a last resort you might want to format. Where did you get such a virus anyway? >_> XD
Lynnfield Build
(13 items)
 
  
CPUMotherboardGraphicsHard Drive
Intel Core i5 750 ASUS P7P55D EVO GTX280 RAID0 250GB Seagate Perp. 16MB 
Optical DriveOSMonitorKeyboard
Sony DVD+/-RW/RAM Windows 7 Ultimate x64 20.1" Sceptre 1680x1050 Logitech Slim 
PowerCaseMouseMouse Pad
Corsair TX650W Antec P180B Logitech G500 Allsop High-tracking Metal pad 
  hide details  
Reply
Lynnfield Build
(13 items)
 
  
CPUMotherboardGraphicsHard Drive
Intel Core i5 750 ASUS P7P55D EVO GTX280 RAID0 250GB Seagate Perp. 16MB 
Optical DriveOSMonitorKeyboard
Sony DVD+/-RW/RAM Windows 7 Ultimate x64 20.1" Sceptre 1680x1050 Logitech Slim 
PowerCaseMouseMouse Pad
Corsair TX650W Antec P180B Logitech G500 Allsop High-tracking Metal pad 
  hide details  
Reply
post #7 of 30
Thread Starter 
reformat again eh...but i just did one...is there really no way to get this junk out?

I have been using AdawareSE. Not sure where I got this junk, its not where you're thinking its from though. I'll try going AntiVIR now.
Kopisaurus
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel 2500k @ 5ghz 1.395v Gigabyte P67A-UD3P-B3 ATI HD6950 2GB (flashed --> 6970) 16GB Gskill Sniper 1600mhz 
Hard DriveOptical DriveOSMonitor
500gb WD Black / 2x 1TB WD Black RAID1 LG DVD/RW Super Multi Windows 7 Enterprise x64 ASUS ML239H 23" LED  
KeyboardPowerCaseMouse
Logitech G15 (modded) Corsair TV750W V2 Lian-Li Lancool PC-K62B Logitech G5 
  hide details  
Reply
Kopisaurus
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel 2500k @ 5ghz 1.395v Gigabyte P67A-UD3P-B3 ATI HD6950 2GB (flashed --> 6970) 16GB Gskill Sniper 1600mhz 
Hard DriveOptical DriveOSMonitor
500gb WD Black / 2x 1TB WD Black RAID1 LG DVD/RW Super Multi Windows 7 Enterprise x64 ASUS ML239H 23" LED  
KeyboardPowerCaseMouse
Logitech G15 (modded) Corsair TV750W V2 Lian-Li Lancool PC-K62B Logitech G5 
  hide details  
Reply
post #8 of 30
Quote:
Originally Posted by Kopi View Post
reformat again eh...but i just did one...is there really no way to get this junk out?

I have been using AdawareSE. Not sure where I got this junk, its not where you're thinking its from though. I'll try going AntiVIR now.
Give Spybot and Hijack This! a try. You might also be able to remove the virus files through a Linux LiveCD once you know where they are.
Lynnfield Build
(13 items)
 
  
CPUMotherboardGraphicsHard Drive
Intel Core i5 750 ASUS P7P55D EVO GTX280 RAID0 250GB Seagate Perp. 16MB 
Optical DriveOSMonitorKeyboard
Sony DVD+/-RW/RAM Windows 7 Ultimate x64 20.1" Sceptre 1680x1050 Logitech Slim 
PowerCaseMouseMouse Pad
Corsair TX650W Antec P180B Logitech G500 Allsop High-tracking Metal pad 
  hide details  
Reply
Lynnfield Build
(13 items)
 
  
CPUMotherboardGraphicsHard Drive
Intel Core i5 750 ASUS P7P55D EVO GTX280 RAID0 250GB Seagate Perp. 16MB 
Optical DriveOSMonitorKeyboard
Sony DVD+/-RW/RAM Windows 7 Ultimate x64 20.1" Sceptre 1680x1050 Logitech Slim 
PowerCaseMouseMouse Pad
Corsair TX650W Antec P180B Logitech G500 Allsop High-tracking Metal pad 
  hide details  
Reply
post #9 of 30
Thread Starter 
heres my logfile...maybe someone can help me with this one.

Logfile of HijackThis v1.99.1
Scan saved at 11:20:59 AM, on 5/19/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\\WINDOWS\\System32\\smss.exe
C:\\WINDOWS\\system32\\winlogon.exe
C:\\WINDOWS\\system32\\services.exe
C:\\WINDOWS\\system32\\lsass.exe
C:\\WINDOWS\\system32\\svchost.exe
C:\\WINDOWS\\System32\\svchost.exe
C:\\WINDOWS\\system32\\spoolsv.exe
C:\\WINDOWS\\Explorer.EXE
C:\\PROGRA~1\\Grisoft\\AVGFRE~1\\avgcc.exe
C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\ hpztsb09.exe
C:\\Program Files\\HP\\hpcoretech\\hpcmpmgr.exe
C:\\Program Files\\Hewlett-Packard\\HP Software Update\\HPWuSchd2.exe
C:\\WINDOWS\\system32\\hphmon05.exe
C:\\WINDOWS\\RTHDCPL.EXE
C:\\WINDOWS\\system32\\RunDLL32.exe
C:\\Program Files\\MSN Messenger\\msnmsgr.exe
C:\\Program Files\\Xfire\\xfire.exe
C:\\PROGRA~1\\Grisoft\\AVGFRE~1\\avgamsvr.exe
C:\\PROGRA~1\\Grisoft\\AVGFRE~1\\avgupsvc.exe
C:\\PROGRA~1\\Grisoft\\AVGFRE~1\\avgemc.exe
C:\\Program Files\\Diskeeper Corporation\\Diskeeper\\DkService.exe
C:\\WINDOWS\\system32\
vsvc32.exe
C:\\WINDOWS\\system32\\PnkBstrA.exe
C:\\WINDOWS\\System32\\svchost.exe
C:\\Documents and Settings\\Kops\\Desktop\\Computer Apps\\Core Temp.exe
C:\\Program Files\\MSN Messenger\\usnsvc.exe
C:\\WINDOWS\\system32\\wuauclt.exe
C:\\Program Files\\Mozilla Firefox\\firefox.exe
C:\\Documents and Settings\\Kops\\Desktop\\Computer Apps\\ORTHOS.exe
C:\\Documents and Settings\\Kops\\Desktop\\Computer Apps\\HijackThis.exe

O4 - HKLM\\..\\Run: [AVG7_CC] C:\\PROGRA~1\\Grisoft\\AVGFRE~1\\avgcc.exe /STARTUP
O4 - HKLM\\..\\Run: [HPDJ Taskbar Utility] C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\ hpztsb09.exe
O4 - HKLM\\..\\Run: [HPHUPD05] C:\\Program Files\\Hewlett-Packard\\\\{5372B9A6-6E51-4f90-9B40-E0A3B8475C4E}\\hphupd05.exe
O4 - HKLM\\..\\Run: [HP Component Manager] "C:\\Program Files\\HP\\hpcoretech\\hpcmpmgr.exe"
O4 - HKLM\\..\\Run: [HP Software Update] "C:\\Program Files\\Hewlett-Packard\\HP Software Update\\HPWuSchd2.exe"
O4 - HKLM\\..\\Run: [HPHmon05] C:\\WINDOWS\\system32\\hphmon05.exe
O4 - HKLM\\..\\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\\..\\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\\..\\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\\..\\Run: [NvCplDaemon] RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup
O4 - HKLM\\..\\Run: [RivaTunerStartupDaemon] "C:\\Program Files\\RivaTuner v2.01\\RivaTuner.exe" /S
O4 - HKLM\\..\\Run: [setup] rundll32.exe "C:\\WINDOWS\\system32\\euuwerea.dll",realset
O4 - HKCU\\..\\Run: [msnmsgr] "C:\\Program Files\\MSN Messenger\\msnmsgr.exe" /background
O4 - Startup: Xfire.lnk = C:\\Program Files\\Xfire\\xfire.exe
O8 - Extra context menu item: Download All Links with IDM - C:\\Program Files\\Internet Download Manager\\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\\Program Files\\Internet Download Manager\\IEExt.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\\PROGRA~1\\MSNMES~1\\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\\PROGRA~1\\MSNMES~1\\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\\WINDOWS\\system32\\WPDShServiceObj.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\\PROGRA~1\\Grisoft\\AVGFRE~1\\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\\PROGRA~1\\Grisoft\\AVGFRE~1\\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\\PROGRA~1\\Grisoft\\AVGFRE~1\\avgemc.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\\Program Files\\Diskeeper Corporation\\Diskeeper\\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\\Program Files\\Common Files\\InstallShield\\Driver\\11\\Intel 32\\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\\WINDOWS\\system32\
vsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\\WINDOWS\\system32\\PnkBstrA.exe



PnkBster is for BF2142
Kopisaurus
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel 2500k @ 5ghz 1.395v Gigabyte P67A-UD3P-B3 ATI HD6950 2GB (flashed --> 6970) 16GB Gskill Sniper 1600mhz 
Hard DriveOptical DriveOSMonitor
500gb WD Black / 2x 1TB WD Black RAID1 LG DVD/RW Super Multi Windows 7 Enterprise x64 ASUS ML239H 23" LED  
KeyboardPowerCaseMouse
Logitech G15 (modded) Corsair TV750W V2 Lian-Li Lancool PC-K62B Logitech G5 
  hide details  
Reply
Kopisaurus
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel 2500k @ 5ghz 1.395v Gigabyte P67A-UD3P-B3 ATI HD6950 2GB (flashed --> 6970) 16GB Gskill Sniper 1600mhz 
Hard DriveOptical DriveOSMonitor
500gb WD Black / 2x 1TB WD Black RAID1 LG DVD/RW Super Multi Windows 7 Enterprise x64 ASUS ML239H 23" LED  
KeyboardPowerCaseMouse
Logitech G15 (modded) Corsair TV750W V2 Lian-Li Lancool PC-K62B Logitech G5 
  hide details  
Reply
post #10 of 30
Sounds like you have a root kit hidden in your system, and thats why even after you run your little AV and have your firewalls etc.. you are still getting them Try this and it will probably work.

http://www.f-secure.com/blacklight/
Desktop
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q9550 EVGA 780SLi EVGA GTX285SSC 4GB OCZ Reaper HPC Edition 
Hard DriveOptical DriveOSPower
150GB Velociraptor x2 - RAID0 2 - Samsung Write Master's Window 7 64-bit 750 Watt OCZ 60 AMPs on +12v 
CaseMouse
LIAN LI PC-V2110B Black Logitech G3 
  hide details  
Reply
Desktop
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q9550 EVGA 780SLi EVGA GTX285SSC 4GB OCZ Reaper HPC Edition 
Hard DriveOptical DriveOSPower
150GB Velociraptor x2 - RAID0 2 - Samsung Write Master's Window 7 64-bit 750 Watt OCZ 60 AMPs on +12v 
CaseMouse
LIAN LI PC-V2110B Black Logitech G3 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Windows
Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › Popups and virus's just wont stop.