WiredWX Hobby Weather ToolsLog in

 


Computer processing slowly and Ads pop up of product I searched on net

2 posters

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
SysProt AntiRootkit v1.0.1.0
by swatkat

******************************************************************************************
******************************************************************************************

Process:
Name: C:\Program Files\Mozilla Firefox\firefox.exe
PID: 4
Hidden: Yes
Window Visible: No

Name: C:\Program Files\Mozilla Firefox\firefox.exe
PID: 4
Hidden: Yes
Window Visible: No

Name: C:\Program Files\Mozilla Firefox\firefox.exe
PID: 4
Hidden: Yes
Window Visible: No

Name: C:\Program Files\Mozilla Firefox\firefox.exe
PID: 4
Hidden: Yes
Window Visible: No

Name: C:\Program Files\Mozilla Firefox\firefox.exe
PID: 4
Hidden: Yes
Window Visible: No

******************************************************************************************
******************************************************************************************
Kernel Modules:
Module Name: \SystemRoot\System32\Drivers\dump_atapi.sys
Service Name: ---
Module Base: A89CD000
Module End: A89E5000
Hidden: Yes

Module Name: \SystemRoot\System32\Drivers\dump_WMILIB.SYS
Service Name: ---
Module Base: BA616000
Module End: BA618000
Hidden: Yes

Module Name: \??\C:\WINXP\system32\Drivers\PROCEXP113.SYS
Service Name: ---
Module Base: BA634000
Module End: BA636000
Hidden: Yes

Module Name: \??\C:\DOCUME~1\Joann\LOCALS~1\Temp\catchme.sys
Service Name: catchme
Module Base: BA3F8000
Module End: BA400000
Hidden: Yes

******************************************************************************************
******************************************************************************************
No SSDT Hooks found

******************************************************************************************
******************************************************************************************
No Kernel Hooks found

******************************************************************************************
******************************************************************************************
Hidden files/folders:
Object: C:\Qoobox\BackEnv\AppData.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Cache.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Cookies.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Desktop.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Favorites.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\History.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\LocalAppData.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\LocalSettings.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Music.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\NetHood.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Personal.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Pictures.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\PrintHood.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Profiles.Folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Profiles.Folder.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Programs.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Recent.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\SendTo.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\SetPath.bat
Status: Access denied

Object: C:\Qoobox\BackEnv\StartMenu.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\StartUp.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\SysPath.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Templates.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\VikPev00
Status: Access denied

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
RogueKiller V8.6.1 [Jun 29 2013] by Tigzy
mail : tigzyRKgmailcom
Feedback : hxxp://www.adlice.com/forum/
Website : hxxp://www.adlice.com/softwares/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User : Joann [Admin rights]
Mode : Scan -- Date : 06/30/2013 11:17:01
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST31000520AS +++++
--- User ---
[MBR] 4b2781759b3bc9ac0f6a1d36b62554ae
[BSP] f45afc7d4e5a2730f73c4fcf0111dfec : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 120001 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 245762370 | Size: 833866 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: ST31000520AS +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[0]_S_06302013_111701.txt >>



descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
Please run RogueKiller again and delete those items.
Pleae tell me how your computer is running now?


I'd like to scan your machine with ESET OnlineScan

•Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan

•Click the Computer processing slowly and Ads pop up of product I searched on net - Page 2 EsetOnline button.
•For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

  • Click on Computer processing slowly and Ads pop up of product I searched on net - Page 2 EsetSmartInstall to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the Computer processing slowly and Ads pop up of product I searched on net - Page 2 EsetSmartInstallDesktopIcon-1 icon on your desktop.

•Check Computer processing slowly and Ads pop up of product I searched on net - Page 2 EsetAcceptTerms
•Click the Computer processing slowly and Ads pop up of product I searched on net - Page 2 EsetStart button.
•Accept any security warnings from your browser.

  • Leave the check mark next to Remove found threats.

•Check Computer processing slowly and Ads pop up of product I searched on net - Page 2 EsetScanArchives
•Push the Start button.
•ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
•When the scan completes, push Computer processing slowly and Ads pop up of product I searched on net - Page 2 EsetListThreats
•Push Computer processing slowly and Ads pop up of product I searched on net - Page 2 EsetExport, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
•Push the Computer processing slowly and Ads pop up of product I searched on net - Page 2 EsetBack button.
•Push Computer processing slowly and Ads pop up of product I searched on net - Page 2 EsetFinish
A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
RogueKiller V8.6.1 [Jun 29 2013] by Tigzy
mail : tigzyRKgmailcom
Feedback : hxxp://www.adlice.com/forum/
Website : hxxp://www.adlice.com/softwares/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User : Joann [Admin rights]
Mode : Remove -- Date : 06/30/2013 17:11:03
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST31000520AS +++++
--- User ---
[MBR] 4b2781759b3bc9ac0f6a1d36b62554ae
[BSP] f45afc7d4e5a2730f73c4fcf0111dfec : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 120001 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 245762370 | Size: 833866 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: ST31000520AS +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[0]_D_06302013_171103.txt >>
RKreport[0]_S_06302013_171038.txt



descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
My computer does seem to be running faster but I am still getting printer ads on various pages when I open them, including yours.

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
Ok, I'll wait for the ESET scan and take it from there.

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
C:\Documents and Settings\Joann\Local Settings\Temp\htpt+9Ui.exe.part Win32/Adware.iBryte.G application cleaned by deleting - quarantined
C:\Documents and Settings\Joann\Local Settings\Temp\WHka7d0X.exe.part Win32/Adware.iBryte.G application cleaned by deleting - quarantined
C:\Documents and Settings\Joann\My Documents\Downloads\Setup(1).exe Win32/Adware.iBryte.G application cleaned by deleting - quarantined
C:\Documents and Settings\Joann\My Documents\Downloads\Setup(2).exe Win32/Adware.iBryte.G application cleaned by deleting - quarantined
C:\Documents and Settings\Joann\My Documents\Downloads\Setup(3).exe Win32/Adware.iBryte.G application cleaned by deleting - quarantined
C:\Documents and Settings\Joann\My Documents\Downloads\Setup(4).exe Win32/Adware.iBryte.G application cleaned by deleting - quarantined

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
Are you still getting pop-ups? What browser are you using?

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
Firefox and the add on your page wasn't printers for first time so maybe that is good sign ^^

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
AngelsElf wrote:
Firefox and the add on your page wasn't printers for first time so maybe that is good sign ^^

Do you have FF set up to block pop-ups?

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
Yes FF is set up to block pop ups

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
Its not so much pop ups as it seems almost every page that has advertisement on it will have ads for printers, which is the last item I researched. It has been for other items that I researched as well for example dog collars, air conditioners etc. Printers just happen to be the latest and it was the add at the top of your page again.

It happens way to often to be just random .

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
AngelsElf wrote:
Its not so much pop ups as it seems almost every page that has advertisement on it will have ads for printers, which is the last item I researched. It has been for other items that I researched as well for example dog collars, air conditioners etc. Printers just happen to be the latest and it was the add at the top of your page again.

It happens way to often to be just random .

Not really, almost every page I open has ads for weed killer which is the latest thing I've searched for.

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
Well if that is normal then I guess my computer is up and running.

A great big thank you to you guys, you rock.

Joann

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
Ok, let's do some cleanup.

Download this program and run it Uninstall ComboFix .It will remove ComboFix for you.

Click Start> Computer> right click the C Drive and choose Properties> enter
Click Disk Cleanup from there.

Computer processing slowly and Ads pop up of product I searched on net - Page 2 Diskcleanup2

Click OK on the Disk Cleanup Screen.
Click Yes on the Confirmation screen.

Computer processing slowly and Ads pop up of product I searched on net - Page 2 Diskcleanup

This runs the Disk Cleanup utility along with other selections if you have chosen any. (if you had a lot System Restore points, you will see a significant change in the free space in C drive)
********************************************
Go to Microsoft Windows Update and get all critical updates.

----------

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
Safe Surfing!

descriptionComputer processing slowly and Ads pop up of product I searched on net - Page 2 EmptyRe: Computer processing slowly and Ads pop up of product I searched on net

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum