Got pop ups galore and the normal stuff just ain't workin!

Anyone in a helping mood?

I keep getting pop-ups from some malware or another can anyone help?

System spec:

--------[ AIDA32 (c) 1995-2004 Tamas Miklos ]---------------------------------------------------------------------------

Version AIDA32 v3.93
Author tamas.miklos@aida32.hu
Homepage http://www.aida32.hu
Report Type Report Wizard
Computer
Generator
Operating System Microsoft Windows XP Home Edition 5.1.2600 (WinXP Retail)
Date 2006-06-21
Time 01:28


--------[ Summary ]-----------------------------------------------------------------------------------------------------

Computer:
Operating System Microsoft Windows XP Home Edition
OS Service Pack Service Pack 2
Internet Explorer 6.0.2900.2180
Computer Name
User Name
Logon Domain

Motherboard:
CPU Type Intel Pentium 4HT, 3054 MHz (5.75 x 531)
Motherboard Name ECS L4S5MG3 (3 PCI, 1 AGP, 1 CNR, 2 DIMM, Audio, Video)
Motherboard Chipset SiS 651
System Memory 1024 MB (DDR SDRAM)
BIOS Type Award (02/12/03)
Communication Port Communications Port (COM1)
Communication Port Communications Port (COM2)
Communication Port ECP Printer Port (LPT1)

Display:
Video Adapter WinFast A180B (128 MB)
3D Accelerator nVIDIA GeForce4 MX 4000

Multimedia:
Audio Adapter C-Media CMI8738/C3DX Audio Device
Audio Adapter SiS 7012 Audio Device

Storage:
Floppy Drive Floppy disk drive
Disk Drive HP USB Device
Disk Drive Maxtor 6L080L0
Disk Drive ST3200826A
Optical Drive _NEC DVD_RW ND-3500AG
Optical Drive LITE-ON DVDRW LDW-411S (DVD+RW:4x/4x, DVD-RW:4x/2x, DVD-ROM:12x, CD-RW:40x/24x/40x DVD+RW/DVD-RW)

Partitions:
C: (NTFS) 190779 MB (141571 MB free)
D: (NTFS) 78159 MB (7759 MB free)

Input:
Keyboard Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Mouse PS/2 Compatible Mouse

Network:
Primary IP Address
Primary MAC Address
Network Adapter Realtek RTL8139/810x Family Fast Ethernet NIC (192.168.2.2)
Modem Mobile 115200
Modem PCI SoftV92 Speakerphone Modem

Peripherals:
Printer hp psc 1300 series
USB Device hp psc 1300 series (DOT4USB)
USB Device hp psc 1300 series
USB Device USB Composite Device
USB Device USB Mass Storage Device
USB Device USB Printing Support

Problems & Suggestions:
Problem Disk free space is only 10% on drive D:.


Cheers you lovely lovely people )

 

Welcome to MajorGeeks.com, please follow the steps below:

- Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support

• Make sure you check version numbers and get all updates.

After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis:

Downloading, Installing, and Running HijackThis

When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too (these scans are covered in steps 6 & 7 of the READ & RUN ME sticky)

• Bitdefender
• Panda Scan
• HijackThis

 

Thanks for the advice.

I have followed the instructions in your reply, but I am still having problems.

I have attached my bitdefender, activescan and hijackthis log files for your perusal.

Hope you can advise further.

Many thanks

Golfindel

 

From Add or Remove Programs in the Control Panel; uninstall the following:
FunWeb Products
MyWeb Search Assistant

Download
- Pocket Killbox

In HJT Choose Open the Misc Tools Section choose Process Manager, Highlight:

Choose Kill Process

Now Run HijackThis. Click the 'Do a system scan only' button. Place a checkmark in the box next to the following lines:

Click on the 'Fix checked' button. Wait for HijackThis to finish; close HijackThis.

Now run Pocket Killbox:

Choose Tools -> Delete Temp Files and click the RED X.

Run Killbox.exe. Paste the below filenames into KILL BOX one at a time. Check mark the box that says "Delete on Reboot" and checkmark the box "Unregister DLL" (If available) Click the RED X and it will ask you to confirm the file for deletion say YES and when the next box opens prompting you to reboot now...click NO...and proceed with the next file. Once you get to the last one click YES and it will reboot. Note many of the file list below may not exist but we need to check for them anyway.

If Killbox does not reboot or you get a Pending Operations type error message just reboot your PC yourself.

Now boot into SAFE MODE

Open ExplorerXP navigate to and DELETE the following: (Some of these may have already been deleted by Pocket Killbox)

Now run CCleaner. If you have Windows XP delete the contents of C:\WINDOWS\Prefetch.

Then, as an added precaution, Go to Start -> Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:
Temporary Files
Temporary Internet Files
Recycle Bin

And Click OK.

REBOOT to Normal Mode.

Post a fresh HijackThis log.

 

Thanks a lot Shadow Puter Dude,

I have completed your instructions and have attached my new HJT log file.

Many thanks

Golfindel

 

Some of the files are still present.

Follow the directions for Using GetRunKey.

Post runkey.txt when finished.

 

Sorry for the delay,

~ ATTACHED INLINE LOG ~ SPD

Cheers

 

GetRunKeys didn't show me what I was looking for; follow the directions for Running WinPfind by OldTimer.

Attach WinPFind.txt and fresh HijackThis log when finished.

 

Here's the winpfind log.

Many thanks
golfindel

 

Follow the directions for Virtumonde aka Trojan Vundo Removal.

Post the VundoFix log and a fresh HijackThis log, when finished.