I only replied to a previous post 9 days ago, but this error has impacted my computer usage severely. I know you're in the middle of testing, and that I should be patient; but I can't use my Yahoo! online e-mail for long before I get the subject error message. Tonight, I can't even retrieve any messages from one of my daughters. Yahoo! e-mail has been 'Transferring data from ads.pointroll.com' for more than an hour. Previously, it terminated with the subject message.
I don't see any way to refer to my reply, so I'll reproduce it here (with minor edits for clarity, and to provide insights since my reply).
"The problem has just started within the last month or two. Three things during that period come to mind as perhaps bearing on the problem. All have occurred withing the last 10 days.
1. I downloaded the latest update to ZoneAlarm Internet Security Suite (ZAISS).
2. I used Microsoft (MS) Update for the first time (previously used Windows Update), then followed instructions and my own instincts to remove the "evil updates": Windows Genuine Advantage (WGA) Validation and Notification Tools, collectively known as Windows Genuine Spyware. NOTE: I've done this before and it has never affected anything.
3. After the two actions above, I began receiving alerts from ZAISS that Generic Windows Service (svchost) is requesting access to the Internet...for IP addresses 0.0.0.0, port 135; 188.8.131.52, 184.108.40.206 (DNS), and 220.127.116.11. The first request usually happens early, sometimes before I even open access to the Internet, and mostly only once. The others tend to happen when I start browse, using Firefox 18.104.22.168, a site with ads. When I click for details and choose the tab for hacker info, the site identified by 'whois' is always on the east quadrant of the north coast of Australia.
I suspect that some malware has invaded my computer, but none of my anti-malware products (AAW 22.214.171.124, SpybotS&D 126.96.36.199, and AVG 188.8.131.52) find anything; SpywareBlaster 184.108.40.206 doesn't seem to have installed protection in the hosts file, and only ZoneAlarm gets worried.
I'm collecting information as it becomes relevant, but I'm just starting to do so.
Does anyone have information on this issue? What additional data, including attributes of my system, should I collect?
Operating System: Windows XP Pro
Software Version: 8.0
Product Name: ZoneAlarm Internet Security Suite"
Please help me if you can.
- 'Gator sends
Operating System:Windows XP Pro
Product Name:ZoneAlarm Internet Security Suite