Popcash.net "dialing Out," And Something Disabling Ad Blocker...

hi there ...and thanks so much to the experts here for the help you provide!


...a few months ago, i had a premium trial of malware bytes which started alerting me that something called "popcash.net" was trying to dial out from my computer -

(to check if this is still going on, i might need to purchase a premium subscription - unless someone knows of a way i can get another trial?)

then, something started disabling my ad blocker, adblock plus, (no matter how many times i re-enabled, or re-installed), and,

i've gotten adblock plus to stay on, BUT, the ad counts it is showing on its little icon are going CRAZY - used to be "3-4 ads blocked" on a page, now...

i left my email open overnight and the number kept going up and up, over ***9,000 OVERNIGHT***!!!

(i DO now have "additional tracking/social media" items blocked by adblock plus, but ...would that make ***9,000*** ads attempt to break through, overnight in my email which wasn't even being used /by me/?)

i've tried to provide what information i can think of, off the top of my head, and also i'll provide the logs from - i think i've run all the scans, and i've tried to do them the right way, as best as i could remember (even with the great instructions, it's a lot to remember)

...i tried to make sure user account control and antivirus were off, and to run all as administrator ...i hope i did right - if i did anything wrong that you notice, please let me know and i will try again, with my apologies!

...thanks so much for taking the time to review my issue!

~principessa

 

hi ........thank you so much for the FASTEST RESPONSE I'VE EVER HAD, FROM A TECH!!! ...you are AWESOME!!!

adding the special code to the registry, was a success(!),

and here's the latest mgtools log ...hope i did everything okay, and that everything worked as hoped...

 

WOW! that could possibly be ittttt??

...can i tell you, i had to go back and forth with another tech for over a month, and,

what's worse, in the end he told me that my computer (windows vista) was basically too old for him to invest his time to help me?

...what is a person who is stuck with an old computer, to do? i felt so left to fend for myself -

and then YOU helped me ...and FAST!

THANK YOU SO MUCH!

(would it be okay if i / should i wait cautiously a few days before i say that i think it's okay?

so far, i've tried using adblock withOUT the "additional tracking," which - without it on, it was getting disabled repeatedly, and ...SO FAR, it is staying on,

but i don't know about the "popcash.net" alerts - do you know of any way i could get a malware bytes free premium trial -

maybe if i uninstall, then reinstall, or ...that would probably be too easy lol )

 

hi...


i don't know if it's anything, but, after having left this tab and returned to it ...all the writing in our exchange was ...blanked out -

maybe it is just a fluke thing, but it felt like there's still malware and, it's trying to stop us from getting it?!

have you seen this happen before, and do you have any idea if it's just a fluke thing?


...i don't think i disabled any disk emulation software(?),

i don't see "hijackthis" in my installed programs list,

and i had manually turned back on user account control - do i still need to employ the "enableUAC.reg" file,

and - i had wanted to ask you if it's safe to manually delete "fixME.reg,"

and also there are two icon images (like, hidden files being shown?) on my desktop that say "desktop.ini" -

are these safe to delete, or NO, and they are hidden files that i should try to make hidden again, through "folder options"?

 

okay GREAT! .....................THANK YOU SO SO MUCH, AND WISHING YOU THE BEST!!!

 

( hi... i'm sorry to bother you again... it may be because of the malware, OR it may be because - a previous tech had me "reset" opera browser, and he said it had not gone correctly, but then quit helping me...

i am now unable to access my bank acct in OPERA - only - in firefox, it still works -

and also - from the same "overview" page for both banking AND credit cards ...i'm able to click through to the credit card details, but not the bank details ...it shows a spinning circle, that never lets me through...

do you have any opinion on this, and might you know any steps that might be able to help it work again?

thank you again...... )

 

( okay cool, will do and thanks again! )

 

(...*sad sigh* so sorry to bother you again - nearly the only sites i have used since you kindly helped me to clear out my computer, have been ebay, my banking site, some information sites like wiki ...nothing that seemed like a risk -

tonight, as i was attempting to go to ebay - and DID go through, and log in - i heard " *dingdingding* threat has been detected," and i noticed a little green dot on avast antivirus, went to the avast dashboard > notifications, and it says:

" we've safely aborted connection to www.ebay.com _because IT was infected_ with JS:Redirector-BKG [TrJ] " -

does this mean that ebay itself had a virus, and/or that a hacker intercepted the connection - and because i went through and entered my password, is it likely that i have now got a virus? [and/or a hacker has likely stolen my password?],

OR is it likely that my computer has the virus? ...i thought i was in the clear, and i'm so sorry for bothering you again...)

 

hi thanks for getting back! ...i typed in www.ebay.com manually, no link... really appreciate your replying!

 

hi, i was using opera, and i was able to log in and view pages as normally... i hope it was a false positive, and that i don't have to keep bothering you, i'm really sorry...

 

okay then, with any luck, i won't be back here again in just a few days! ...thank you aaaaagain , and best wishes

 

( awwww ...well one would never know it from 'your picture' [avatar ] - looking good ...okay okay i'm going away ...for now )