Help2Go
Free Computer Help.
Powered by Volunteers.
- Home
- Tutorials
- Computer Help
- Spyware Help
- All Forums


- Home
- Forums Home
- Tutorials
- Get Computer Help
- Spyware Help
- Help2Go Detective
- SuperAntiSpyware
- Software Picks
- Newsletter
- Testimonials
- Donate
- Search Tutorials
- Search Forums


Home

These forums have moved!

Click here to view the new, updated Help2Go

System Integrity Scan Wizard and Security System
   Help2Go Forum Index -> Spyware Help
View previous topic :: View next topic  
Author Message
KarenS
Member


Joined: 29 Apr 2008
Posts: 1
Points: 0

uk.gif
Posted: Tue 04/29/2008 12:49pm [Post #1]
Hi there! I am new to asking questions on forums so please forgive me if I do something wrong! My computer has been running very slowly and comining up with a fake system integrity scan wizard and a security system, both of which take me to ads to purchase spyware removal. I also have a yellow triangle with an exclamation mark in it at the bottom right of my screen and keep getting "warnings" that my computer is infected. I have followed your guide on how to get rid of spyware, adware and web browser hijackers and Panda has given me the following information:- Thank you so much in anticipation of your valuable help and for giving your time to help numbskulls like me!!!

We have detected that the McAfee VirusScan Enterprise protection on your PC is disabled and up-to-date
You need better protection for your PC. With Panda solutions you will be protected against more than 3 million viruses, spyware and other threats.
Threats with free disinfection (3)
Medium danger level (2) Trj/Lager.CT Virus Latent Hide + Info
1. C:\quarantine\taskdir.exe.Vir.4

Trj/Lager.CV Virus Latent Hide + Info
1. C:\quarantine\taskdir.exe.Vir.6


Low danger level (1) Trj/ClassLoade... Virus Latent Hide + Info
1. C:\Documents and Settings\Lawrence Stone\Appl...\5224156f-4206eb68[Installer.class]
2. C:\Documents and Settings\Lawrence Stone\Appl...\3e36ace5-195ba1e0[Installer.class]


Only available for registered users.
Register free - I'm registered
Threats disinfected with the paid version (1Cool
High danger level (1) Adware/Malware... Adware Active Hide + Info
1. C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\IBIJCPAJ\ANGXCDKR.EXE


Medium danger level (2) Adware/Malware... Adware Latent Hide + Info
1. C:\System Volume Information\_restore{46DE892...9-64119261F211}\RP1125\A 0179346.exe

Adware/PCClean... Adware Active Hide + Info
1. C:\WINDOWS\SYSTEM32\XELCRWLU.EXE


Low danger level (15) Cookie/Xiti Tracking Cookie Latent Hide + Info
1. C:\Documents and Settings\Guest\Cookies\guest@xiti[1].txt

Exploit/ByteVe... Hack Tool Latent Hide + Info
1. C:\Documents and Settings\Lawrence Stone\Appl...156f-4206eb68[OwnClassLoader.class]
2. C:\Documents and Settings\Lawrence Stone\Appl...ace5-195ba1e0[OwnClassLoader.class]
3. C:\Documents and Settings\Lawrence Stone\Appl...d1bb-6d7bad15[OwnClassLoader.class]

Cookie/Adtech Tracking Cookie Latent Hide + Info
1. C:\Documents and Settings\Guest\Cookies\guest@adtech[1].txt

Exploit/ByteVe... Hack Tool Latent Hide + Info
1. C:\Documents and Settings\Lawrence Stone\Appl...0\62\579713e-3b9d8818[Parser.class]

Adware/VapSup Adware Latent Hide + Info
1. C:\WINDOWS\pmsoarbf.dll

Cookie/PCClean... Tracking Cookie Latent Hide + Info
1. C:\Documents and Settings\Lawrence Stone\Cook...es\lawrence_stone@pc-cleaner[2].txt
2. C:\Documents and Settings\Karen Stone\Cookies\karen_stone@pc-cleaner[2].txt

Exploit/ByteVe... Hack Tool Latent Hide + Info
1. C:\Documents and Settings\Lawrence Stone\Appl...\62\579713e-3b9d8818[Counter.class]

Exploit/ByteVe... Hack Tool Latent Hide + Info
1. C:\Documents and Settings\Lawrence Stone\Appl....0\62\579713e-3b9d8818[Dummy.class]

Exploit/ByteVe... Hack Tool Latent Hide + Info
1. C:\Documents and Settings\Lawrence Stone\Appl...e36ace5-195ba1e0[MagicApplet.class]
2. C:\Documents and Settings\Lawrence Stone\Appl...07cd1bb-6d7bad15[MagicApplet.class]
3. C:\Documents and Settings\Lawrence Stone\Appl...224156f-4206eb68[MagicApplet.class]

Cookie/Adverti... Tracking Cookie Latent Hide + Info
1. C:\Documents and Settings\Guest\Cookies\guest@advertising[1].txt

Adware/SystemD... Adware Latent Hide + Info
1. C:\WINDOWS\system32\atwxqdot.exe

Cookie/Atlas D... Tracking Cookie Latent Hide + Info
1. C:\Documents and Settings\Guest\Cookies\guest@atdmt[1].txt

Application/PC... Tracking Application Latent Hide + Info
1. C:\System Volume Information\_restore{46DE892...9-64119261F211}\RP1116\A 0177922.exe
2. C:\Documents and Settings\Lawrence Stone\Local Settings\Temp\37b55abc.exe
3. C:\System Volume Information\_restore{46DE892...9-64119261F211}\RP1118\A 0178016.exe
4. C:\Documents and Settings\Karen Stone\Local Settings\Temp\fd1b4804.exe
5. C:\Documents and Settings\Lawrence Stone\Local Settings\Temp\3cd69064.exe

Cookie/Go Tracking Cookie Latent Hide + Info
1. C:\Documents and Settings\Guest\Cookies\guest@go[1].txt

Exploit/ByteVe... Hack Tool Latent Hide + Info
1. C:\Documents and Settings\Lawrence Stone\Appl...0\62\579713e-3b9d8818[Matrix.class]


Only available in paid version.
Buy - I am a client
Suspicious files (3)
C:\WINDOWS\SYSTEM32\TITYRATQ.EXE Sent
C:\WINDOWS\SYSTEM32\FUNSHERY.EXE Sent
C:\WINDOWS\SYSTEM32\FEXQZSXC.EXE Sent


Vulnerabilities (0)
Terms and conditions of use - © Panda Security 2008
 
This post has: 0 recommendations

Back to top
Canuck
Help2Go Administrator


Joined: 22 May 2003
Posts: 6945
Points: 1425
Location: Edmonton, Alberta, Canada
canada.gif
Posted: Tue 04/29/2008 1:24pm [Post #2]
Please follow the instructions here http://www.help2go.com/Tutorials/Protect_Your_PC/Get_Ri d_of_Spyware%2C_Adware%2C_and_Web_Browser_Hijackers.htm l . You have already done the Panda scan, please do steps 2 to 6 and post your Highjackthis log to this thread. Thanks.
 
This post has: 1 recommendation

Back to top
JanePurdy
Member


Joined: 29 Apr 2008
Posts: 10
Points: 0
Location: CA
usa.gif
Posted: Tue 04/29/2008 3:46pm [Post #3]
Ok, I've got the exact trojan horse described recently, but the response made no sense to me! Sorry, newbie here, flashing red lights. I can make my way around the computer pretty well, but don't know much about technical stuff. Anyway, looking for how to get rid of this thing? Thanks, sorry for not understanding what was already posted!
_________________
Jane, Happily married 15 yrs with 8 gorgeous children!
 
This post has: 0 recommendations

Back to top
Osc
Help2Go Administrator


Joined: 01 Jan 1999
Posts: 1789
Points: 516
Location: Washington, DC
usa.gif
Posted: Wed 04/30/2008 1:43pm [Post #4]
Hi Jane!

Follow the directions in our Get Rid of Spyware Guide

That will clear up more than 90% of virus/spyware related problems. After installing and running that software, reboot, and see if you are still having problems. If the problems persist, create and post a new HijackThis log.
_________________
Oscar Sodani
Help2Go Administrator
 
This post has: 0 recommendations

Back to top
Canuck
Help2Go Administrator


Joined: 22 May 2003
Posts: 6945
Points: 1425
Location: Edmonton, Alberta, Canada
canada.gif
Posted: Wed 04/30/2008 1:49pm [Post #5]
I wondered if I should have locked this one Osc. Jane started a new post http://www.help2go.com/component/option,com_forum/Itemi d,32/page,viewtopic/t,27740/ . The original poster KarenS e-mailed me saying everything worked out when following the tutorials.
 
This post has: 0 recommendations

Back to top
Display posts from previous:   
   Help2Go Forum Index -> Spyware Help All times are GMT - 5 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


phpBB component by Adam van Dongen. Based on phpBB © 2001, 2002 phpBB Group
Creative Commons License

(C) 2008 Help2Go      Contact Us      Joomla! is Free Software released under the GNU/GPL License.