pop-ups, iesettingsupdates search

The_Daniel_in_AZ · Sep 26, 2006

I am getting a IE popup window that automatically searches for "iesettingsupdates" after I start my computer (I am on cable internet; always on connection). I do not even use IE for my browsing.

I have run a couple of different spyware detection/removal programs and an anti-virus and even an ad detection/removal program but the problem keeps coming back.

I did a few searches on the internet for this problem and I found one that was the same thing so I followed the forum notes but the HijackThis log files listed do not match what I have so I thought it best to get some advice on how to proceed from here.

Windows XP Pro SP2
AMD Athlon 2600+
1.92 GHz
512 MB RAM

I have HijackThis running and I await your advice.

Thank you in advance.

The Daniel.

chaslang · Sep 26, 2006

Welcome to Majorgeeks!

Please follow our standard cleaning procedures which are necessary for us to provide you support. Also there are steps included for installing, running, and posting HijackThis logs as attachments.

Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support

Make sure you check version numbers and get all updates.

Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:

Downloading, Installing, and Running HijackThis

Make sure you also rename HijackThis.exe as suggested in the procedures. Use analyse.exe for the new name. This is very important due to some new infections going around.

When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too:

CounterSpy - ONLY IF you were not able to run Windows Defender

Bitdefender - from step 6

Panda Scan - from step 6

runkeys.txt - the log from GetRunKey.bat

newfiles.txt - the log from ShowNew.bat

HijackThis

NOTE: You can only attach 3 files in a single message so it will require that you use two messages to attach all of these logs!

The_Daniel_in_AZ · Sep 26, 2006

Thanks for the reply.

I have run most of the steps in you READ AND RUN ME FIRST but when I try to use Bitdefender thru IE it tells me error on page. When I try to use it trhu Mozilla it tells me to update to the most recent IE versoin.

Everything else I have run prior to this point has either found and deleted "bad things" or found nothing. The exception in SpyBot... it found and deleted everything except for two entries listed under "Command Service". It tells me it cannot delete them because they are in use, then it recommends that I reboot and try again and I get the same results... even in safe mode.

The effect it is having on computer it that it automaticall popups an ie window that automaticall searches for "iesettingsupdate" and it will also popup random advertisements when I am online playing video games.

Please advise as what to do next as I cannot even complete your READ AND RUN ME FIRST proceedures.

Thank you,

The Daniel

The_Daniel_in_AZ · Sep 26, 2006

Also, I have run Ad-Aware and removed several "bad things" as well.

The Daniel

The_Daniel_in_AZ · Sep 26, 2006

OhYeah, one more thing... since this problem began or maybe this is how it began, my Windows Firewall is not active and I cannot open the Win Firewall to activate it or anything esle either.

The Daniel

chaslang · Sep 27, 2006

Skip Bitdefender and continue with the rest of the READ & RUN ME and attach all the other logs. If you run into an issue and also cannot run PandaActiveScan, you will need to run the below as a substitute.

Running Ewido Anti-Malware - if you need to run this, attach the log as requested

The_Daniel_in_AZ · Oct 2, 2006

chaslang,

Thank you so much for the assistance, without your help my friend (an IT guy) would have been here all day and my still have not fix the issue. I am not exactly sure what was going on but he did tell me that my system had not been hijacked but some nasty stuff did get in.

It is all taken care of now;except my Win Firewall, still cannot get it open. I will be looking into that next. My IT guy would have done so but he got a call and had to run.

Anyway, thanks again and I will keep Major Geeks in mind next time I have a problem.

The Daniel

PS. There are 11 kinds of people in this world, those that understand binary, those that don't and those that can fake it ;-)

chaslang · Oct 3, 2006

In reality, you do not want the inadequate Windows firewall anyway. See step 3 info in the below link. But perhaps you need to complete all steps in the READ ME to make sure you have removed all malware.

How to Protect yourself from malware!

Log in or Sign up

pop-ups, iesettingsupdates search

The_Daniel_in_AZ Private E-2

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

The_Daniel_in_AZ Private E-2

The_Daniel_in_AZ Private E-2

The_Daniel_in_AZ Private E-2

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

The_Daniel_in_AZ Private E-2

chaslang MajorGeeks Admin - Master Malware Expert Staff Member