Pop-Ups galore!!!

Discussion in 'Malware Help (A Specialist Will Reply)' started by MsApril, Dec 31, 2006.

  1. MsApril

    MsApril Private E-2

    I'm back once again -I really don't know what I would do without your help!

    Anyway...for a couple of days now I have been getting pop-ups galore! One right after another -they are all advertising computer protection and cleaning programs. I don't know what happened to start all of this as I am not the only one who uses this computer.

    I went through all of the read and run me first steps and have attached all of the requested logs. The scans may have fixed my problem because I am not getting near as many pop-ups, but I would greatly appreciate someone taking a look to make sure.

    Also...when I click on get run and show new .bat files I get this message:

    C:\WINDOWS\system32\cmd.exe
    C:\PROGRA~1\Symantec\S32EVNT1.dll. An installable virtual device driver failed Dll initalization. Choose 'Close' to terminate the application.

    Not sure what this means or if it is something to worry about -if I click ignore I am able to go ahead and run the get run and show new.

    Thanks again in advance for all of your help!

    April
     

    Attached Files:

    MsApril, Dec 31, 2006
    #1
  2. MsApril

    MsApril Private E-2

    Here are the other three!
     

    Attached Files:

    MsApril, Dec 31, 2006
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Didn't you read the information on the download pages for ShowNew and GetRunKey. It explains this error message (the second type of possible error message) and how to fix it. You need to fix this NOW, but before attaching new logs, you should run the below procedure first to help remove part of your problems with malware. You need to explain to someone who is downloading codecs to view videos (of who knows what type) to stop downloading codecs. Most of them are infections waiting to bite you!


    I'm going to post two sets of instructions below. Each will be enclosed in separate Quote boxes. Make sure to complete the first one 100% before moving on to the second one.

    ATTACH THE FIRST LOG NOW BEFORE CONTINUING OR YOU WILL OVERWRITE IT!!!! And then immediately continue on to the below steps.

    Now attach new logs from:
    • GetRunKey
    • ShowNew
    • HJT
    How are things working now?
     
    chaslang, Jan 2, 2007
    #3
  4. MsApril

    MsApril Private E-2

    Here is the smitfraufix log.
     

    Attached Files:

    MsApril, Jan 2, 2007
    #4
  5. MsApril

    MsApril Private E-2

    Here is step 2...
     

    Attached Files:

    MsApril, Jan 2, 2007
    #5
  6. MsApril

    MsApril Private E-2

    And here is the rest!

    Sorry about overlooking the info on the error messages!

    Thank you,
    April
     

    Attached Files:

    MsApril, Jan 2, 2007
    #6
  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Why didn't you install Spybot as requested in the READ & RUN ME? It offers a fair amount of protection from its Immunize feature and uses no system resources to do this. In addition it offers secondary scanning when needed.

    Do you still use anything from Symantec? I'm wondering why I see the below installed:
    "Symantec Network Drivers Update"

    And also why the below service is running:
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe


    Now Copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.
    Uninstall the below old versions of software:
    J2SE Runtime Environment 5.0 Update 10

    Make sure you reboot after uninstalling the above!

    After reboot, now install the current version of Sun Java from: Sun Java Runtime Environment

    Make sure you tell me how things are working now!
     
    chaslang, Jan 4, 2007
    #7
  8. MsApril

    MsApril Private E-2

    I do have Spybot, I use it almost everyday.

    I do not use anything from Symantec anymore. I thought that I got rid of it all.


    I have no idea why that is running...obviously I don't need it any longer...how do I kill it?

    I followed the rest of your instructions and things are going really well. The pop ups have finally quit!

    Thanks,

    April
     
    MsApril, Jan 6, 2007
    #8
  9. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    It does not show in your Uninstall list in the newfiles.txt log which would indicate some kind of problem. It would be a good idea to uninstall, REBOOT, delete the C:\Program Files\Spybot - Search & Destroy folder and then reinstall and Immunize and configure as recommended in the READ ME to get around the bugs.



    Run this: Norton Removal Tool (SymNRT)

    Then if necessary, I will give you manual steps to remove any left overs.


    Attach new logs from ShowNew and HJT now.
     
    chaslang, Jan 7, 2007
    #9

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds