Simviation Forum - Annoying Pop-Up Adds

	Search the archive:

Simviation Main Site | Site Search | Upload Images

Simviation Forum › Computer Hardware & Software Forum › Computer Games & Software › Annoying Pop-Up Adds

(Moderators: Mitch., Fly2e, ozzy72, beaky, Clipper, JBaymore, Bob70, BigTruck)

‹ Previous Topic | Next Topic ›

Pages: 1

Send Topic

Print

Annoying Pop-Up Adds (Read 1070 times)

Nov 20^th, 2009 at 6:19am

idahosurge Offline
Colonel
I Fly Sim!
Anna, Texas, USA

Gender:
Posts: 687

I starting getting pop-up adds and it is my fault since it started after I stupidly agreed to download a toolbar from a site.

Well I have removed the toolbar using add/remove programs in the control panel. I have run Spybot and Malwarebytes and gotten rid of the adware that they found, but I still get these add popping up. I have "block all popups" enabled in IE8. I also have ESET NOD 32 active, but I still get these adds. If I run Spybot all the time is there a setting in Spybot that will stop them?

How do they work, did they get my IP address and now they just send crap to that address? If so, can I change my IP address?

How can I get this to stop?

Rod

Asus R3E_i7 980X @ 4.44GHz_TR Silver Arrow_Mushkin Redline 6GB 1,644MHz @ 6-7-6-18_Zotac AMP GTX 480_OS - Windows 7 Ult 64b_OS SSD - Crucial C300 128GB_FSX HD - WD VR 600GB*2 w/3ware 9750-4i 6Gb/s Controller_Corsair AX850_CM HAF-X_FSX Gold, UTX, GEX, FSG, ST, MSX, MSE, FTX, FEX, FSWC, MTX, STB, AS F16, PMDG MD11, CS MD80 Pro, FSD P38, VRS FA18E

IP Logged

Reply #1 - Nov 20^th, 2009 at 6:22am

Hagar Offline
Colonel
My Spitfire Girl
Costa Geriatrica

Posts: 33159

Which toolbar was this? Anything you can remember about it might help.

Founder & Sole Member - Grumpy's Over the Hill Club for Veteran Virtual Aviators
Member of the Fox Four Group

Need help? Try Grumpy's Lair

My photo gallery

IP Logged

Reply #2 - Nov 20^th, 2009 at 6:28am

ShaneG Offline
Colonel
I turned into a Martian!

Posts: 10000

Are they random ads, or is it the same one all the time?

Sometimes these things get added to the startup registry, and turn on every time the computer does.

The "Your Computer is Infected, Scan Now?" popups are really bad for that.
Simply clicking the red x to close them will set them off. Angry

Angry

I run CCleaner's startup tool once a week to check if anything has been added without me knowing. Sometimes the odd program makes it through, but it's easily and quickly deleted. Cool

Cool

Also, have you cleared all cookies, and temp internet files and such?

IP Logged

Reply #3 - Nov 20^th, 2009 at 1:34pm

JBaymore Offline
Global Moderator
Under the curse of the
hombuilt cockpit!

Gender:
Posts: 10261

Does anything here look familiar:

http://205.252.250.26/cgi-bin/yabb2/YaBB.pl?num=1258377948

best,

..................john

Intel i7 960 quad 3.2G LGA 1366, Asus P6X58D Premium, 750W Corsair, 6 gig 1600 DDR3, Spinpoint 1TB 7200 HD, Caviar 500G 7200 HD, GTX275 1280M, Logitec Z640, Win7 Pro 64b, CH Products yoke, pedals + throttle quad, simpit

IP Logged

Reply #4 - Nov 20^th, 2009 at 8:29pm

idahosurge Offline
Colonel
I Fly Sim!
Anna, Texas, USA

Gender:
Posts: 687

I checked my startup and had something called internet today that was loading so I uninstalled that and deleted it out of the startup menu.

I get adds for M&M's candy, web based video games, body building products adult web sites, etc. so it is different adds and the adds are not always the same. They seem to pop up when I go into a new website.

I have ran Spybot and Malwarebytes three times and they do not pick anything up.

I deleted all my browser history and deleted everything out of the temperary internet folders and cookies folders.

I have installed the google toolbar that also has a popup blocker and that seems to have gotten rid of most of them, but I still get them. It can be when I go into Yahoo, CNN and other respected sites. It also seems to happen when I log into sites that I am a member like www.trains.com

Rod

Asus R3E_i7 980X @ 4.44GHz_TR Silver Arrow_Mushkin Redline 6GB 1,644MHz @ 6-7-6-18_Zotac AMP GTX 480_OS - Windows 7 Ult 64b_OS SSD - Crucial C300 128GB_FSX HD - WD VR 600GB*2 w/3ware 9750-4i 6Gb/s Controller_Corsair AX850_CM HAF-X_FSX Gold, UTX, GEX, FSG, ST, MSX, MSE, FTX, FEX, FSWC, MTX, STB, AS F16, PMDG MD11, CS MD80 Pro, FSD P38, VRS FA18E

IP Logged

Reply #5 - Nov 21^st, 2009 at 5:37pm

Capt.Propwash Offline
Colonel
Let's get a little mud
on the tires!
KCHS, Charleston, SC, USA

Gender:
Posts: 1958

what OS are you running??

I have noticed that alot of popups/unders like to use MSMessenger / Live in XP. If you do have WinXP, if you disable that service it may help stop annoying popups.

WINXP:: Start > settings > control panel > (Administrative tools) > Services

Just a thought. if it doesnt work, sorry, i dont know much else to offer as a suggestion.

The thoughts and expressions contained in the post above are solely my own, and not necessarily those of Simviation.com, its Moderators, its Staff, its Members, or other guests. They can not, are not, and will not be held liable for any thoughts, or expressions, or posts that I have made, or will make in the future.

Computer Specs:: Acer Aspire Laptop..Win7 Home Premium 64-bit (sp1), AMD Athlon II X2 P340 (Dual Core) [2.2 Ghz], ATI Mobility Radeon HD 4250 (256mb), 4GB DDR3......FS9.1(sp3) / FSX (sp2)..... Ultimate Terrain X, Ground Environment X, REX, FTX ORBX PNW-PFJ-NRM-CRM, OZx, Tongass Fjords, Misty Moorings

IP Logged

Reply #6 - Nov 21^st, 2009 at 6:48pm

idahosurge Offline
Colonel
I Fly Sim!
Anna, Texas, USA

Gender:
Posts: 687

I have XP and I already had MSMessenger disabled.

This is really annoying, I go to FoxNews to read the news and by the time I get done going back and forth throught the articles I have five or more advertisements sitting on my desk top, how in the heck can I get this to stop?

I thought that the popup blocker with the google toolbar was helping, but it seems that I was wrong.

Rod

Asus R3E_i7 980X @ 4.44GHz_TR Silver Arrow_Mushkin Redline 6GB 1,644MHz @ 6-7-6-18_Zotac AMP GTX 480_OS - Windows 7 Ult 64b_OS SSD - Crucial C300 128GB_FSX HD - WD VR 600GB*2 w/3ware 9750-4i 6Gb/s Controller_Corsair AX850_CM HAF-X_FSX Gold, UTX, GEX, FSG, ST, MSX, MSE, FTX, FEX, FSWC, MTX, STB, AS F16, PMDG MD11, CS MD80 Pro, FSD P38, VRS FA18E

IP Logged

Reply #7 - Nov 21^st, 2009 at 7:08pm

idahosurge Offline
Colonel
I Fly Sim!
Anna, Texas, USA

Gender:
Posts: 687

Well I just uninstalled Windows Live and that did not help.

This just started up a week ago and there has got to be a reason and a way to stop it. The Google Toolbar does block around half, but it is not blocking them all. Just navigating around a respected site like Fox News I get the crap and I want it to stop.

Does anybody have any ideas?

If it maybe something that got into my registry, how do I find it. I have googled this problem and that has offered no solution other than ones that I have already tried, like tuning on popup blocker in IE8 privacy tab and installing the google toolbar.

What gets me is that some of these seem to be on the level adds, I just do not want the crap popping up on my PC.

Rod

Asus R3E_i7 980X @ 4.44GHz_TR Silver Arrow_Mushkin Redline 6GB 1,644MHz @ 6-7-6-18_Zotac AMP GTX 480_OS - Windows 7 Ult 64b_OS SSD - Crucial C300 128GB_FSX HD - WD VR 600GB*2 w/3ware 9750-4i 6Gb/s Controller_Corsair AX850_CM HAF-X_FSX Gold, UTX, GEX, FSG, ST, MSX, MSE, FTX, FEX, FSWC, MTX, STB, AS F16, PMDG MD11, CS MD80 Pro, FSD P38, VRS FA18E

IP Logged

Reply #8 - Nov 21^st, 2009 at 7:49pm

JBaymore Offline
Global Moderator
Under the curse of the
hombuilt cockpit!

Gender:
Posts: 10261

It sounds like you have a virus or Trojan that got thru your defenses. Take close note on the ads that pop up. Then do a web search for those names along with the term "trojan" and or "virus". You might find the details that help you tackle getting rid of it. That is how I found out about my little problem (documented in the thread I noted above.)

Are your defenses updated to the latest on a daily basis?

best,

...................john

Intel i7 960 quad 3.2G LGA 1366, Asus P6X58D Premium, 750W Corsair, 6 gig 1600 DDR3, Spinpoint 1TB 7200 HD, Caviar 500G 7200 HD, GTX275 1280M, Logitec Z640, Win7 Pro 64b, CH Products yoke, pedals + throttle quad, simpit

IP Logged

Reply #9 - Nov 21^st, 2009 at 9:25pm

idahosurge Offline
Colonel
I Fly Sim!
Anna, Texas, USA

Gender:
Posts: 687

Well I have found that when I am running in safe mode with networking I get no popups, but running in regular mode I get popups, does that tell anyone anything?

I try the idea about googling the adds and see if I find anything.

Rod

Asus R3E_i7 980X @ 4.44GHz_TR Silver Arrow_Mushkin Redline 6GB 1,644MHz @ 6-7-6-18_Zotac AMP GTX 480_OS - Windows 7 Ult 64b_OS SSD - Crucial C300 128GB_FSX HD - WD VR 600GB*2 w/3ware 9750-4i 6Gb/s Controller_Corsair AX850_CM HAF-X_FSX Gold, UTX, GEX, FSG, ST, MSX, MSE, FTX, FEX, FSWC, MTX, STB, AS F16, PMDG MD11, CS MD80 Pro, FSD P38, VRS FA18E

IP Logged

Reply #10 - Nov 22^nd, 2009 at 2:54am

jime59 Offline
Colonel
I Fly Sim!
Streamwood,Il

Gender:
Posts: 1608

Try start-run-type msconfig in the box, then click the start-up tab and check there to see if you find something suspicious. If so, uncheck the box and reboot. Might be worth a shot. Wink

Wink

The mind is like a parachute...it only works when it's open.

IP Logged

Reply #11 - Nov 22^nd, 2009 at 9:55am

JBaymore Offline
Global Moderator
Under the curse of the
hombuilt cockpit!

Gender:
Posts: 10261

jime59 wrote on Nov 22^nd, 2009 at 2:54am:

Try start-run-type msconfig in the box, then click the start-up tab and check there to see if you find something suspicious. If so, uncheck the box and reboot. Might be worth a shot. Wink

Wink

Restrict your actions to the Statup Tab unless you know what you are doing.

Likely you are going to find that this is a complex mess to get rid of. This crap tends to store itself all over your computer in obscure places..... and has the ability to re-generate itself after you delete one of the places you find. You usually have to get ALL of them, all at once. And they almost always also store a copy of themselves in the the Windows Restore archive too....so that is not an option unless you know when you have a clean restore point before the infection.

And be VERY careful if you go to working about in the registry! Delete or change the wrong thing and you then have a very expensive boat anchor instead of a computer.

best,

.................john

Intel i7 960 quad 3.2G LGA 1366, Asus P6X58D Premium, 750W Corsair, 6 gig 1600 DDR3, Spinpoint 1TB 7200 HD, Caviar 500G 7200 HD, GTX275 1280M, Logitec Z640, Win7 Pro 64b, CH Products yoke, pedals + throttle quad, simpit

IP Logged

Reply #12 - Nov 22^nd, 2009 at 9:56am

JBaymore Offline
Global Moderator
Under the curse of the
hombuilt cockpit!

Gender:
Posts: 10261

idahosurge wrote on Nov 21^st, 2009 at 9:25pm:

Well I have found that when I am running in safe mode with networking I get no popups, but running in regular mode I get popups, does that tell anyone anything?

I think that pretty much says "infection".

best,

.................john

Intel i7 960 quad 3.2G LGA 1366, Asus P6X58D Premium, 750W Corsair, 6 gig 1600 DDR3, Spinpoint 1TB 7200 HD, Caviar 500G 7200 HD, GTX275 1280M, Logitec Z640, Win7 Pro 64b, CH Products yoke, pedals + throttle quad, simpit

IP Logged

Reply #13 - Dec 1^st, 2009 at 1:47pm

jaime Offline
Colonel
I can haz fail now?

Posts: 248

idahosurge wrote on Nov 21^st, 2009 at 9:25pm:

Well I have found that when I am running in safe mode with networking I get no popups, but running in regular mode I get popups, does that tell anyone anything?

I try the idea about googling the adds and see if I find anything.

Rod

that speaks volumes...as John said...infection...best thing to try and do (inshort of the drastic step of rebuilding the file table and all that or reformatting your system) is boot into safe mode with NO NETWORKING AT ALL (and disconnect the machine from your network [IE pull the network cable out of the back side to be 100% sure you got no network]) and run both spyware, antivirus and then if you know what your doing (not recommended unless you know 100% what your doing) attempt to find the enteries (if any) that are associated with the pop ups or what ever and kill them, show no mercy...

then restart, login open IE and download firefox and make sure you have firefox built in pop up blocker turned on...I use firefox and rarely get pop ups...well if any...

sounds like you may have a virus (more like trojan)...and you need to be sure that sucker is killed...with out mercy...

one of the starters of the burner pandemic

IP Logged

Reply #14 - Dec 2^nd, 2009 at 10:30am

idahosurge Offline
Colonel
I Fly Sim!
Anna, Texas, USA

Gender:
Posts: 687

Thanks for all the responses, I got rid of the trojan on 11/22, just thought that I would let you know since Jaime had a response yesterday.

Rod

Asus R3E_i7 980X @ 4.44GHz_TR Silver Arrow_Mushkin Redline 6GB 1,644MHz @ 6-7-6-18_Zotac AMP GTX 480_OS - Windows 7 Ult 64b_OS SSD - Crucial C300 128GB_FSX HD - WD VR 600GB*2 w/3ware 9750-4i 6Gb/s Controller_Corsair AX850_CM HAF-X_FSX Gold, UTX, GEX, FSG, ST, MSX, MSE, FTX, FEX, FSWC, MTX, STB, AS F16, PMDG MD11, CS MD80 Pro, FSD P38, VRS FA18E

IP Logged

Reply #15 - Dec 2^nd, 2009 at 7:51pm

JBaymore Offline
Global Moderator
Under the curse of the
hombuilt cockpit!

Gender:
Posts: 10261

idahosurge wrote on Dec 2^nd, 2009 at 10:30am:

....... I got rid of the trojan on 11/22, .......

Congratulations!

Intel i7 960 quad 3.2G LGA 1366, Asus P6X58D Premium, 750W Corsair, 6 gig 1600 DDR3, Spinpoint 1TB 7200 HD, Caviar 500G 7200 HD, GTX275 1280M, Logitec Z640, Win7 Pro 64b, CH Products yoke, pedals + throttle quad, simpit

IP Logged

Reply #16 - Dec 13^th, 2009 at 6:04pm

jaime Offline
Colonel
I can haz fail now?

Posts: 248

indeed congrats, hopefully it wont happen again....

one of the starters of the burner pandemic

IP Logged

Pages: 1

Send Topic

Print

‹ Previous Topic | Next Topic ›

Top of this page

Simviation Forum » Powered by YaBB 2.5 AE!
YaBB Forum Software © 2000-2010. All Rights Reserved.

Valid XHTML

Valid CSS

Powered by Perl

Source Forge