popups coming through internet explorer when it is not running...?

Hi guys
I have a weird problem with popups on my pc. It seems that sometimes while searching the web and i get my usualbombarding of popups somehow the blocker stops it, and then a hidden ie process starts up and and the same popup that got blocked comes through internet explorer when it was completely turned off before. (I use the verizon yahoo browser to surf the web). How does this happen and how can i stop it cause it is really getting on my nerves. I have Ad-Aware SE and before that I had spybot s and d. Plus i currently have ms antispyware as an active gaurd running. Both are up to date completly. But i cant figure out why i keep getting these popups through ie. Could someone help?
thanks,
the new tech guy

 

Oh I forgot to mention that I have windows 2k sp4.

 

UPDATE: I found out the name of the server that keeps giveing me these ads. Its ad.yeildmanger.com. It seems that whenever I get this this is the server that i get it from. If anyone out there can help me i would greatly appreciate it.
thanks
-the new tech guy.

 

Well strangely enough when i came on to get to work on this today, i noticed some windows updates that had just come up on the computer for install. I installed them, restarted the computer to finish up the install and the problem stopped. I guess those updates mustve had something in them to remove it. Tomorrow the computer will be checked again for updates then after updateing ad-aware, cleaning cookies, running ms antispy scan, it will be scanned with ad-aware for its weekly checkup then i will run regisrty mechanic, scandisk, and a boot defrag from diskeeper to finish the job.
thanks
-the new tech guy

 

Hey chas just out of curiostiy would there be any reason to that how i was getting that problem in the first place. I know during updateing it downloaded and installed something for the ms malicious software removal tool. Could that be an autoexe.bat file that runs durning update and found the problem?
-the new tech guy

 

Good point. Good chance it was an infected overwritten file if i had to restart the system.
-the new tech guy

 

Dont look now chas, but it started again. Im gonna go ahead and start the run me first sticky and see what comes up then i will post an hjt log.
-the new tech guy

 

Well I just ran stm on the computer and it says that the messenger is turned off. I use aim for instant messageing. And i dont think i can surf the web in safe mode because the drivers for my wireless pci card are not running in safe mode.
-the new tech guy

 

Also, should i install spybot to C:/program files or its own folder?
-the new tec guy

 

Also, another problem with Spybot S & D. I ran the immunization and it said that everything is blocked then when i click to check again, it would always say that six additional items can be immunized and to do it. I noticed it doing this when i had it previously installed on the system a short time ago as well. I am now going to continue with the read me first sticky.
-the new tech guy

 

Ok just finished the bitdefender online scan and nothing found. I am going to continue and do my secind online check with RAV antivirus. (All in normal because i do not think as far as i know, that the drivers for my wireless internet card work in safe mode with networking) Also scince i am useing a wireless connection, Should i boot in safe mode to do te offline read me first stuff so i know the system is not connected to the internet?
-the new tech guy

 

Ok just finished rav and it found one thing marked as "suspicious". Not sure if its important scince it was in nero anyway. But that was the only thing i saw in the online scans. Well attached a logfile for the online rav scan anyway so you can check the file out to be sure. Now i will continue with the read me first sticky.
-the new tech guy

 

Ok finished the read me first with nothing found but the one thing that i showed you. Just some mru stuff was cleaned in ad-aware. I will go see if the problem still persists. If so, i will post a hijack this! log and we will go from there.
-the new tech guy

 

No luck and the problem still persists. Heres an hjt log for ya to review and i guess we can go from there. Thanks for the help so far.
-the new tech guy

 

I think i am noticeing a pattern on what the malware does. It seems that it causes a popup in ie, then it moves to the verizon yahoo browser and comes as a regular popup in there, and then another day it wont do anything. And it will start the process over again. Could this be the program trying to hide from the anti spy programs running on the computer. Also for the past couple of days, I have received alertsd about internet explrer security levels, and things like that in ms anti spy that i have allowed. Could these new changes be related to it in any way?
-the new tech guy

 

Well these are the sites that i have the problem on:
www.flashplayer.com
www.videocodezone.com
I have tried accessing the site through verizon yahoo on another pc and the problem happend there too. I think matybe you should go and try to access these sites scince more than one pc has been there and may have the same problem. And regarding your questions, i think the redzone thing is part of the parental controls which are used on this system. Now those hjt lines you show, should i fix those lines or just leave them alone? Because i think they are part of the parental controls. And with the broken yahoo parental control, i do not think anything is beroken because even when the system is ok yahoo bugs out for no reason at all. So i was wondering if you can go to those sites for me and let me know if you get the problem as well. Just use a third party browser. Do not use internet explorer. I would reccomend you try videocodezone first scince you get it right at the home page where flashplayer it will happen at times and other times it will come through your current browser or it will not happen at all. But those two are the ones that give the problem. Could you just visit the videocodezone site on another browser like firefox or something and let me know if it happens?
thanks
-the new tech guy

 

So what would you recommend i do based on my previous post?
-the new tech guy

 

Yes internet explorer is where i have the problem. The reason i said not to use that was because if you have a popup blocker installed, it may not let you see the problem. And i do not use ie when surfing those sites. I use the verizon yahoo! internet browser (which i think is based off of ie because of very similar menues that are on it)But the problem kinda occurs in both, when i look at the site in the verizon yahoo i will get a popup ad, which instead of comeing through the verizon yahoo browser, it will come up in an internet explorer window which also has a popup blocker which is part of the verizon yahoo suite. Now, to your notion on useing proper security software, i have proper security software. I have avast! antivirus for antivirus, zone alarm free edition firewall, ms anti spyware, and I have ad-aware for anti spy as well. And i run a boot scan with avast once a month, and i scan ms anti spy and ad aware in safe mode once a week to control spyware. Plus, i use ccleaner once a week on all accounts that are on the computer to clean cookies and other junk out of the computer. So the system is well protected. Also before i run anything at all, while connected to the internet in normal mode, i check all of the programs for updates and install any if found, then i run windows update to make sure the computer is up to date. And to answer the question on why i visit the sites, i use videocodezone to put music videos on myspace, and i go to flashplyer just for enjoyment to watch flash videos. So i would guess i just have a false postive in the computer?
-the new tech guy

 

Well i did not see spyware blaster in the read me first sticky. But i did run spybot s & d and ran the immunize function. Should i ditch ad aware and use spybot instead? I just ran ie and i did see a privacy report appear in the interent explorer. The reason i use verizon yahoo is because i also have all my verizon yahoo features come through it and well its my default browser. Plus after my first hit on the website useing ie it added the sites to restricted zone and i clicked refresh and saw no more popups. And with the zone alarm internet security settings, im not quite sure what you are talking about so could you please tell me how to get to them. I also recieved media fastclick. And they are just like normal stupid popup ads that are different every time.
hope this information is useful,
-the new tech guy

 

Hang on i think i know what you are talking about. If your talking about my internet security settings in zone alram (correct me and tell me how to get what you need if im wrong) is set to stealth mode on the interenet zone and i am on a lan with two other pcs and a print server for a printer. And they are set on shareing mode which is in trusted zone security. Again, if this is not what your looking for, tell me what you are looking for again and how to get to it.
hope this is right and thanks for the help
-the new tech guy

 

Im sorry for the confusion chaslang. I just looked through zone alarm and i see no privacy settings tab. I am useing the free version of zone alarm. Regard the confusing posts, I meant that i get one everytime i go to videocodezone and it is like a normal popup ad. It is the server you mentioned: mediafastclick. And flashplayer.com will give you the ad in a strange matter. Sometimes i get it in internet explorer, then i will get it in verizon yahoo! then i will not get it at all. I will now run hoster, ewido, and panda active scan for you and post log files from all three. And i will run spyware nuker and give you a log from that as well.
-the new tech guy

 

Umm chasalang, while downloading panda activescan i got an alert from avast about a virus dectection in it. I dunno if this is bad or if this is just a false- positive.
-the new tech guy

 

I just checked to see if the problem is still occuring. It has stopped and i do not get it useing either browser. Just the usual stuff that comes through as regular advertising on the site. I did not run ewide and i ran part of panda which then i accidentally disconnected verizon yahoo which messed up the scanner but the part that did run did not pick anything up so i think i am in good shape now.
thanks for all the help
-the new tech guy

 

Thanks for being patient too because i have pretty much taught myself with computerrs and well still in school and dont have the professional experience you have and well know some stuff with spyware but im no pro. So thanks for being patient because some of that stuff i never heard of before.
-the new tech guy

 

Hey i just tried that suggestion on lsp fix to fix the verizon yahoo chain and i think it fied a small problem that i was having where when i would click something, the browser would just hang and not do anything for a few seconds,then it would go cause now when i click something the browser responds almost immediately. Thanks for the lsp idea.
-the new tech guy

 

Go me im a seargeant