We keep getting this pop up that says Your computer is infected! Windows has detected spyware infection! We've tried to do several system restores and dawg has tried other stuff, but it don't work. What can we do?

Go to http://housecall.antivirus.com and run a scan.

You just have some spyware.

also try this

open up internet explorer. go to the drop down menu and select "tools" > "internet options" > "programs tab" > click the "manage add ons" button (lower left corner)

from the "manage add ons" box you should disable any browser helper object that is not verified and also any one that has numbers for a name you should disable also. this should be a short list and normally should consist of mainly active x controls and java plug ins.

if you are not using firefox for a browser you may want to consider it.

http://www.download.com/3000-8022-10122137.html
http://www.download.com/Ad-Aware-SE-Personal-Edition/3000-8022_4-10399602.html?tag=lst-0-1
download and install both of those. reboot your computer. right when it comes back on (before the windows version screen) start hitting F8. chose "safe mode with networking" when the computer starts, run both of those programs. make sure to update both programs after you install them.

and tell dawg to change his myspace password if he hasn't already.

http://www.download.com/3000-8022-10122137.html
http://www.download.com/Ad-Aware-SE-Personal-Edition/3000-8022_4-10399602.html?tag=lst-0-1
download and install both of those. reboot your computer. right when it comes back on (before the windows version screen) start hitting F8. chose "safe mode with networking" when the computer starts, run both of those programs. make sure to update both programs after you install them.

and tell dawg to change his myspace password if he hasn't already.

This didn't work. I'll have dawg try it later tonight because I could be doing something wrong. Thank you folks. :smile:

We keep getting this pop up that says Your computer is infected! Windows has detected spyware infection! We've tried to do several system restores and dawg has tried other stuff, but it don't work. What can we do?is the popup a windows box or is it from your browser?

I've seen that pop thing - and I can't remember what it's called - but it is spyware - and one of the only things I found that got rid of it was webroots spysweeper - I actually was so pissed with one that I was working on I made my customer buy it - and the damn thing worked like a charm. I later found out how to remove it - but it was worth it's weight in Gold and is super simple to use.

Try their free scanner - see if it works - if you can get a name of the pop up, we may be able to figure out how to get rid of it for ya.
http://www.webroot.com/land/freescan_ent.php?rc=4929&ac=5191623

oh - if it's called Spy Axe - I found my notes:


Kill the following processes
spyaxe.exe , sa1.exe , scvhosts.dll
To kill processes hit Ctrl+Alt+Del and click on "Task Manager" then you should see Windows Task Mgr pop up. Click on Processes tab and scroll the list of processes and "End Process" for each of the processes listed above.

Unregister the following DLLs and reboot
svchosts.dll in Windows\SYSTEM32\
To unregister the dll:
Click start button , then RUN
type or cut & paste the following:

regsvr32 C:\Windows\SYSTEM32\svchosts.dll /U

Remove the following files
spyaxe.exe in Program Files\SpyAxe\
hpE951.tmp in Windows\system32\

Remove the following directories
C:\Program Files\SpyAxe

oh - if it's called Spy Axe - I found my notes:


Kill the following processes
spyaxe.exe , sa1.exe , scvhosts.dll
To kill processes hit Ctrl+Alt+Del and click on "Task Manager" then you should see Windows Task Mgr pop up. Click on Processes tab and scroll the list of processes and "End Process" for each of the processes listed above.

Unregister the following DLLs and reboot
svchosts.dll in Windows\SYSTEM32\
To unregister the dll:
Click start button , then RUN
type or cut & paste the following:

regsvr32 C:\Windows\SYSTEM32\svchosts.dll /U

Remove the following files
spyaxe.exe in Program Files\SpyAxe\
hpE951.tmp in Windows\system32\

Remove the following directories
C:\Program Files\SpyAxe



Tech Talk equals HOT talk!

Sometimes I just make Pack talk about infrastructures until I explode. If I'm feeling particularly naughty I have him go deep into securing firewalls.

Oh god..I need a shower now.:wink:

hahaha - want me to turn on my webcam as I rebuild this Cisco 4230 I'm working on then roll into upgradeing a FreeBSD kernel? Hell, I even have to move my entire operations center from one bedroom to another soon - Will be connecting all sorts of hardware on that day! lmao

It won't let me use ctr alt del. It says disabled by administrator then when I boot in safe mode and try to log on in safe mode it changed the PW to the admin so I can't enable it for any of the users.


Last time it did this I just started in safe mode then system restored and it went away. This time it aint workin.

it changed the PW to the admin
sounds like you got something pretty nasty going on. back up all your data asap if you still can because you may have to reinstall windows at this point.

wow - that sucks - If you can find ERD Commander - it will boot you up to a secure console and allow you to change your password easily...I've also heard of this other free one that works just as well, I just haven't had time to use it myself.

http://home.eunet.no/~pnordahl/ntpasswd/

I know ERD works - but you have to pay for it or find it cracked - it's going to be built into Vista, but I know that doesn't help much.

I could walk you thru hacking it too if it means that much....but that doesn't guarantee anything <grin>

If I take the battery out of the MOBO for a few minutes and unplug all power won't that reset the PW? But that will also fuck up my bios wouldnt it?

If you have a valid XP install CD with the serial number then you could do the following - but no promises and this is "AT YOUR OWN RISK" I don't recommend it for the pc challenged

You can easily change or wipe out your Administrator password for free during a Windows XP Repair. Here’s how with a step-by-step description of the initial Repair process included for newbie’s.

1. Place your Windows XP CD in your cd-rom and start your computer (it’s assumed here that your XP CD is bootable – as it should be - and that you have your bios set to boot from CD)

2. Keep your eye on the screen messages for booting to your cd Typically, it will be “Press any key to boot from cd”

3. Once you get in, the first screen will indicate that Setup is inspecting your system and loading files.

4. When you get to the Welcome to Setup screen, press ENTER to Setup Windows now

5. The Licensing Agreement comes next - Press F8 to accept it.

6. The next screen is the Setup screen which gives you the option to do a Repair.

It should read something like “If one of the following Windows XP installations is damaged, Setup can try to repair it”

Use the up and down arrow keys to select your XP installation (if you only have one, it should already be selected) and press R to begin the Repair process.

7. Let the Repair run. Setup will now check your disks and then start copying files which can take several minutes.

8. Shortly after the Copying Files stage, you will be required to reboot. (this will happen automatically – you will see a progress bar stating “Your computer will reboot in 15 seconds”

9. During the reboot, do not make the mistake of “pressing any key” to boot from the CD again! Setup will resume automatically with the standard billboard screens and you will notice Installing Windows is highlighted.

10. Keep your eye on the lower left hand side of the screen and when you see the Installing Devices progress bar, press SHIFT + F10. This is the security hole! A command console will now open up giving you the potential for wide access to your system.

11. At the prompt, type NUSRMGR.CPL and press Enter. Voila! You have just gained graphical access to your User Accounts in the Control Panel.

12. Now simply pick the account you need to change and remove or change your password as you prefer. If you want to log on without having to enter your new password, you can type control userpasswords2 at the prompt and choose to log on without being asked for password. After you’ve made your changes close the windows, exit the command box and continue on with the Repair (have your Product key handy).

13. Once the Repair is done, you will be able to log on with your new password (or without a password if you chose not to use one or if you chose not to be asked for a password). Your programs and personalized settings should remain intact.

If I take the battery out of the MOBO for a few minutes and unplug all power won't that reset the PW? But that will also fuck up my bios wouldnt it?

No - that won't reset a windows password - you can reset your bios that way - but not a software password.

Another question, I never set up an administrator account, I think this virus did it. I have 3 accounts set up, mine, sandis and our sons. Mine and my sons ctr alt del works and what not, but on sandi's it doesnt. Mine is an admin account, shouldn't I be able to delete the admin account that just says administrator account?

administrator account is there by default and you can't delete it, sounds like you found out how to get some permissons back though

dang sucks to fix your computer all day

http://www.pandasoftware.com try all the online free online virus scans you know of and maybe one of them will catch the bastard, i use this one alot

ya, your account should be admin on it's own and you should be able to set that password from your account - don't go thru all the other trouble now! hehe and GJ is right

If you have a valid XP install CD with the serial number then you could do the following - but no promises and this is "AT YOUR OWN RISK" I don't recommend it for the pc challenged

You can easily change or wipe out your Administrator password for free during a Windows XP Repair. Here’s how with a step-by-step description of the initial Repair process included for newbie’s.

1. Place your Windows XP CD in your cd-rom and start your computer (it’s assumed here that your XP CD is bootable – as it should be - and that you have your bios set to boot from CD)

2. Keep your eye on the screen messages for booting to your cd Typically, it will be “Press any key to boot from cd”

3. Once you get in, the first screen will indicate that Setup is inspecting your system and loading files.

4. When you get to the Welcome to Setup screen, press ENTER to Setup Windows now

5. The Licensing Agreement comes next - Press F8 to accept it.

6. The next screen is the Setup screen which gives you the option to do a Repair.

It should read something like “If one of the following Windows XP installations is damaged, Setup can try to repair it”

Use the up and down arrow keys to select your XP installation (if you only have one, it should already be selected) and press R to begin the Repair process.

7. Let the Repair run. Setup will now check your disks and then start copying files which can take several minutes.

8. Shortly after the Copying Files stage, you will be required to reboot. (this will happen automatically – you will see a progress bar stating “Your computer will reboot in 15 seconds”

9. During the reboot, do not make the mistake of “pressing any key” to boot from the CD again! Setup will resume automatically with the standard billboard screens and you will notice Installing Windows is highlighted.

10. Keep your eye on the lower left hand side of the screen and when you see the Installing Devices progress bar, press SHIFT + F10. This is the security hole! A command console will now open up giving you the potential for wide access to your system.

11. At the prompt, type NUSRMGR.CPL and press Enter. Voila! You have just gained graphical access to your User Accounts in the Control Panel.

12. Now simply pick the account you need to change and remove or change your password as you prefer. If you want to log on without having to enter your new password, you can type control userpasswords2 at the prompt and choose to log on without being asked for password. After you’ve made your changes close the windows, exit the command box and continue on with the Repair (have your Product key handy).

13. Once the Repair is done, you will be able to log on with your new password (or without a password if you chose not to use one or if you chose not to be asked for a password). Your programs and personalized settings should remain intact.


You should write romance novels...cheap, tawdry...techie romance novels.
:smile:

You should write romance novels...cheap, tawdry...techie romance novels.
:smile:

I found a porn site for ya...

www.iana.org

beween that and technet.microsoft.com you should be set for a month. :wink: