Question:
Since installing UKonline broadband,
my anti-virus has been working overtime.
I have pop-up stoppers, adaware and spybot.
Yet something in my registry keeps popping up the site belonging to Adultfriendfinder.com.
My pop-up stopper privacy report shows I have two run history items none of which mention friendfinder.
Where in my registry do I get rid of any automated run histories.
I use Windows XP.
Answers:
run your spybot and adaware in safe mode
and download + install Microsfots own free spyware
and run that in safe mode as well
you may need to turn off your system restore if it keeps coming back as it may be hiding in there (then again run the above in safe mode)
Might be worth running your anti virus in safe mode while you are there !!
Answers:
Don't forget to turn restore back on again when clear.
Answers:
whoops , forgot that !! lol
Answers:
and stop looking at pron
Answers:
and stop looking at pron
Didn't you mean Porn, Unless you meant The Last Night at the Pron's
Answers:
@ Intel
Didn't you mean Porn,
It's euphemistic
TOG
Answers:
@ Intel
It's euphemistic
TOG
I dont need a link like that Toxy as I can speak English
not Tripe by Chav Scum..... (Moronic Divvy's)
Answers:
I dont need a link like that Toxy as I can speak English
1337
TOG
Answers:
Restart PC and on boot up tap F8... for safemode
P.S System restore off/on does not require you to go into safemode
Answers:
Tapping F8 does not allow me to go into safe mode.
My help only tells me to look up the operating system and then select safe mode , pressing escape whilst booting does no good.
The only available option I have is F2 which gets me into my computer's CMOS settings.
I've gone into start-up and recovery and ca
Answers:
sorry had to get out quick.
pc has just shown error message "generic host process for win32 services has encountered a problem and needs to close" etc.
Gone into start up and recovery and cannot find where I can dual booting.
I have only one operating system here - winXP and it is on my laptop that I am using to post here.
Answers:
Hi
Safe mode....sometimes tapping F5 instead of F8 during the boot up process will get you to safe mode.
Pop up.....sounds like you could have a LOP infection or something similar.
Download HijackThis ["HJT"] here.....
Do not use this tool yet.
Next download and install Ewido from here.....
Update to the newest definitions. Do NOT run it till you can get to safe mode.
Once in safe mode run a full scan in Ewido. Post the log from the Ewido scan here.
Whether or not Ewido is sucessful I suggest you also post a HJT log here.
To do this open the HJT program you downloaded earlier. You will be presented with a list of options. Choose the first one...."Do a system scan and save a logfile". Two things will happen... HJT will scan your PC then it will give you a Notepad logfile with the scan results. Copy that Notepad logfile to this thread. It may tell us if anything else is wrong.
EDIT: Does this PC have "Messenger Plus 3" installed?
Answers:
The above site now keeps popping up.
I wrote about what I had done earlier.
When I pressed submit my browser refused to respond, and so did the rest of my pc even though I copied my reply.
This is a test.
Answers:
Life's a !!!!! sometimes.
Here's what I did to get rid of my adultfriendfinder pop ups.
I found out how to get into safe mode both with system restore on and off - I had to toggle between shutdowns and press escape whilst rebooting forcing my pc off if necessary.
I ran both adaware and spybot in safemode both in admin and user mode which had admin rights.
Both came up with spyware which I removed.
I then decided to disconnect my broadband equpment, uninstall my anti-virus and install another browser making that the default one all offline.
I also reomoved one Liveupdate BVRP software program because the only live update software I had did not come from that.
Ran both Adaware and spybot offline and my anti-virus found the following strains:
Adware.WinAd.Bs in C\Windows mediagatewayx.dll
Trojan.LowZones.ct in C\pce.exe, c\goaway.exe and c\emoticon.exe
Hooked up to the internet and didn't even start browsing or opening up any browser.
My browser opened up itself and brought out the kings of Chaos website I placed above
plus all the above viruses my pc deleted and TrojanDownloader.V8 in C\documents AND (nothing more)
&
c\mmxxxxxas2.exe
pchelpman,
don't want to sound ignorant cos I appreciate your offers but I don't generally like going into safe mode very much.
I am posting the above in the hope somebody might have a better understanding.
I might have a LOP infection (whatever that may be) but I am more interested in preventing my anti-virus going awol and preventing my other programs from working properly.
Solved one problem - adultfriendfinder.com now I need to find out how to stop my browsers from self opening as soon as I hook up to the net.
Might try your suggestion later pchelpman.
My pc does not have Messenger Plus 3
Time for some thank you's even though my problem has not been resloved yet.
Answers:
Generic Host Processes for Win32 has encountederd a problem and needs to close is also affecting my internet usage pleasure.
How do I get round this one?
This is a quickie
Answers:
I've found in the past that I've had to run all Anti spyware in safe mode one after the other, so update the definitions on Spybot ,ewido and Adaware via the update button, update your anti virus and then run them ALL in safe mode one after the other (this may take a while but it's worth it in the end !), I personally run Ewido fist , then spybot and then the rest, then rerun spybot at the end as it sometimes picks up stuff that was masked by other spyware before
don't forgot to turn OFF system restore before you boot to safe mode as it will hide in there and re-install on boot up !!
Answers:
I also got this message asking if I wanted this to be removed. I declined it.
C:\Windows\system32\GRock03.dll.
I ran ewido with system restore kept on.
What do you want me to do with Hijack This?
I am still getting my pop-ups and my pc is sloowing down.
---------------------------------------------------------
ewido anti-malware - Scan report
---------------------------------------------------------
(this section has been removed)
I am in an internet cafe right now because my pc constantly refused to allow me to post.
I think this is getting serious because all my applications are taking 5 times longer to open up.
Before I reply next I am going to defragment my pc and run adaware, spybot and ewido in safe mode with system restore turned off.
Hope to hear frrom you soon.
Answers:
Just reading that ewido report tells me you have (or had) much malware on your system. By all means do those scans you mention.
IF you can get your troubled PC online also do the folllowing.
-----------------
In NORMAL mode download CleanUp! here…..
*WARNING* Cleanup deletes EVERYTHING out of temp/temporary folders and does not make backups. If you have a 64 bit Operating System do NOT run Cleanup and let me know as we will use another utility
Run CleanUp! and click on CleanUp! button. When it asks you if you want to logoff, click on Yes.
-----------------
Also in NORMAL mode run all the free scans and cleaning procedures offered at these two sites.....(assuming you have broadband; you did mention dial up in an earlier post; some of these scans can take a time).....
…and here…..
.
When running the Panda Activescan make sure you click the Free Online Virus Scan in the upper right hand corner of the page under the Free use Activescan header. You do NOT want the default spyXposer scan.
Once it has finished save the Activescan log. Then post that log in your next post.
Please run ALL the free scans offered by Housecall. In case you are on dial up and are wondering the CWShredder scan doesn't take long.
Make sure both sites perform full system scans.
If either/both scans find something they cannot fix - perhaps because the infected files are "in use" - please make a note of the file(s) concerned and post the details back to this thread.
-----------------
Run a HJT scan after all that and post the Notepad logfile report to this thread.
-----------------
Two more things.....
Please don't forget to post details of anything the scans find but can't fix.
Let us know how your PC is behaving now and give any more indications of what is slowing down the PC. You may get some clues from Task Manager.
In case you dont know about Task manager do this....
On your keyboard press Ctrl AND Alt AND Del together. That will bring up the Task Manager window. Double click the tab headed "CPU". Look at the top of that column and see which processes is/are using up the most % of your CPU. Tell us what it/they are called and how much of the CPU they are using.
Answers:
good luck....!!