I have just been hit with the ADWARE/SPYWARE virus......:mad2:

Now I get nudie pop-ups in all the vendor ad windows....you should see the tire RACK!

Anyway, it took me two hours to figure out how to kill this bastige, but it is being removed as we speak. These viruses take over your browser and do whatever they want. You are no longer able to edit personal settings,and any site you visit, like here, it swaps the sites banners with the one it want you to see.

Paul's HP now sells insurance!

Oh my.....

There are free removal tools, and free prevent future tools available online.

install Spyblaster, it protects you against this crap. I also run Sybot and Spysweeper a couple time a week. I used to get that crap all the time, since I instaaled these, I don't have a problem anymore. RAY

Thanks Ray, I installed 2 different services that removed some 1661 files. I also installed the 2 blockers as well.

Problem is, it's still happening???? I can't seem to clear it up. The blockers catch iit every time...but it just continues???

All the adds on the MM page are still porno adds!!!

This all happened on my laptop. It has the basic Norton Antivirus program which allowed this to happen, and cannot detect it.

This computer, my desktop, has the advanced Norton with firewall protection, maybe that's why it never made it in here?

I am at a loss, guess I gotta pay someone to fix it, cause the downloads aren't clearing the issue.

Thanks Ray, I installed 2 different services that removed some 1661 files. I also installed the 2 blockers as well.

Problem is, it's still happening???? I can't seem to clear it up. The blockers catch iit every time...but it just continues???

All the adds on the MM page are still porno adds!!!

This all happened on my laptop. It has the basic Norton Antivirus program which allowed this to happen, and cannot detect it.

This computer, my desktop, has the advanced Norton with firewall protection, maybe that's why it never made it in here?

I am at a loss, guess I gotta pay someone to fix it, cause the downloads aren't clearing the issue.Try this software that you can download for free and works by not just scaning your files but scans your registery and removes ALL of the tracking cookies Redsheriffs etc: from your system .theres no obligation to buy . its free for personnel use . corp and commercial have to buy this software and they give you updates ...

Go into "regedit" and delete it. RAY

Delete what?

I am using:

ad-ware 6.0
spybot
spyware blaster
spywaregaurd

Try this software that you can download for free and works by not just scaning your files but scans your registery and removes ALL of the tracking cookies Redsheriffs etc: from your system .theres no obligation to buy . its free for personnel use . corp and commercial have to buy this software and they give you updates ...


Thanks for the advice. i normally remove this crap myself and aols help but this program found stuff aol can't... it's a quater of the way threw and allready it's got 157 things :bounce:

delete the file that has the name of the spy. The other way is to make the spyremover ativate on start up. What happens is the spy come back before your spyblocker is activated. You can make it start before the system. Then when you reboot it will block right away. There should be a way to make it activate on start up. Click on properties of the blocker you put in. Search all the profrags for a place that it ask if you want this to work on start up and say yes. RAY :up:

SPYBOT-SD and SPYWAREGUARD are in my system tray on the right as tsr's. I assumed they automatically start up first??

Now as far as the REGEDIT program, when I start it, it shows some folders and such....I'm not sure where to start to look for the word "spy". I guess I could do a "search for files" first. BUT, I certainly do not want to delete files associated with these new programs I just installed.

OH, AND BTW: THANKS FOR TAKING MORE TIME OUT OF YOUR DAY FOR A MEMBER.:o

There are several .pf files in a folder I have never seen before: c:\windows\prefetch\

Otherwise I foung nothing.

OMG, these pu's are slowing this fast machine to a crawl. And the porno adds on the MM page are really p'ing me off...awwwww!

And NOW, key words are automatically becoming URL'S IN MY POSTS!!!!!

DO NOT CLICK ON THESE IF YOU GUYS CAN SEE THEM!!!!

when you run your spyblocker what is the name of the file it finds?? Look for that file in regedit and right click and delete it. Empty your recycle bin. Have you run a windows update? Sometimes that will also clean things out. Clear all temp internet files and clear cookies. RAY :up:

This is the BEST spyblocker and remover I've found http://www.pestpatrol.com/

Sign up as a small business. Tell them you have five computers. They will email you a trial version of this. This found and removed stuff that no other program even found. I had a spy one time that nothing could get rid of and this did. Good Luck, Ray

If you are useing Adaware, remove it. I couldn't get rid of stuff until I did. I swear this program does more harm than good. RAY :pimp:

Ray, There are a couple spyware clones of Ad-aware sitting on some very convincing URL's. I use Ad-aware 6.0 from Lavasoft http://www.lavasoft.de and paid for the real-time monitor and I never have any problem from anywhere... Cheap insurance.

[QUOTE=CRUZTAKER]I have just been hit with the ADWARE/SPYWARE virus......:mad2:

Now I get nudie pop-ups in all the vendor ad windows....you should see the tire RACK!


So anyhow, how would one get one of these..... :D

OK, will try that. I am on the good computer now. I did'nt realize my posting from the infected computer wouls cause certain words to change into links.

I edited my last post from here and the links are gone.

I called bestbuy, and they have a program as well.

I think, I say I think, my adware came from lavasoft. There were several choices. I may have chosen the link thru 'computergeeks' or geeks something or other.

Should I just uninstall all of them and reinstall from lavasoft?

Ray, There are a couple spyware clones of Ad-aware sitting on some very convincing URL's. I use Ad-aware 6.0 from Lavasoft http://www.lavasoft.de and paid for the real-time monitor and I never have any problem from anywhere... Cheap insurance.



This bad boy werked well fer me :banana2:

OK, I finally got the hang of regedit....it was tough finding the folders!

I looked at the first file that was quarantined, "ALEXIS", but could not find it even though I followed its path the the correct directory. Then it occured to me to remove it from quarantine, and bang, it showed up right where it was supposed to be. I deleted the folder and all of it's contents. Haven't checked the pc yet. Unfortunately, there are 51 more quarantined files. This is gonna take awhile....time I have...

OOOps...I thought this was a thread about Marty's last trip to Atlantic City...carry on. :P

It's things like this that make me glad I don't do much internet work on my Windows PC (it's just a game machine). No operating system is 100% secure, but I just don't see these kinds of problems on my Linux and MacOS X systems.

Sometimes it's good to be in the minority. :)

Well, I cannot fix it. I've tried for 11 hours now.

Turns out one of the programs I tried to use to find the problem, had a problem as well. The ADWARE program from LAVASOFT carried the infection as well.:shake:

I have deleted ALL the freeware soltions at this point and tried PESTPATROL as suggested above. It seemed to work well and found several more issues.

But upon deleting them from regedit, after a reboot, the problem persists.:mad2:

I will go to Best But tomorrow and purchase SPYSWEEPER and go from there.
They even said that IT might not find all the files. This is real doozy to kill, much like my pneumonia, it refuses to give up!

I am really surprised that there are no solutions at SYMANTIC for this. They have dozens of virus removal tools, but nothing for this.

I have just been hit with the ADWARE/SPYWARE virus......:mad2:

Now I get nudie pop-ups in all the vendor ad windows....you should see the tire RACK!



Man oh man, this is the 1st time that I wish Macintosh's could have just ONE virus ;)
But, with over 70,000 PC virii around, at least I'm gainfully employed!

Pest Patrol works very well.
Get rid of Norton and get Macafee.
If you use a firewall get Zonealarm professional

Man oh man, this is the 1st time that I wish Macintosh's could have just ONE virus ;)
But, with over 70,000 PC virii around, at least I'm gainfully employed!

Have you installed Google's toolbar with the pop-up blocker yet? If not, I recommend it. If an infected pop-up cannot get "popped up", you cannot get re-infected. I've been an ISP for 11+ years now and I've never been hit.

My recipe for success has been:

1. Not opening attachments in email
2. Trend's PC-Cillian anti-virus software
3. Google's pop-up blocker
4. Outlook 2003

The forth one may have you scratching your heads, but it has the nifty ability to block all graphic images from downloading and displaying in html formatted email messages. Why is this important? Because now spammers are looking through logs on their web servers to see which graphic images are requested to match them up with messages sent to see which email are valid and which ones aren't. Pretty clever if you ask me.

Anyway, hope you get it under control Barry.

John

PestControl is trying, but failing.

I found a forum site much like ours called SWI, it's a spyware forum. Alot of brilliant people over there. Busy though....very busy. There are 5 of us on there waiting for a fix. we use HiJackit to pull our registry lod file, post it, and these computer gurus can look and tell what's going on....incredible!

For now, it's off to Best buy.


DO NOT CLICK ON ANY UNDERLINED WORDS IN MY POSTS!!!

It's one of the issues that came with this hijacking.

Barry has cooties!

Barry has TopText. Here is a link all about it.

http://unwantedlinks.com/parasite/TopText.html

Hope this helps you Barry.

John

Yup, that's it John. Actually, that WAS it.

Let me assure everyone, there isn't a program out there that will completely remove this plague....period. It must be removed by hand.

The talented folks over at spywareinfo.com have a great forum addressing issues like this. I used one of their tools called HiJackThis to get a copy of my systems log file and submit it for their diagnosis. The program is a General Browser HiJacker detector/repairer.

An administrator by the name of DAVE38 addressed my thread within 12 hours, which is amazing, seeing as how they get hundreds of requests a day for help.
He told me which lines in my log needed deletion, reboot, and walla!

I am back to normal. No more TopList HiJacker.

The Tire rack banner will never be the same though.....tires hum.....but hummers......:shake: :banned:

BTW: It's safe to click the links in my sig. now.:up:

I use both Ad-aware 6.0 and Webroot Spysweeper. The trial version of Spysweeper has real-time protection against home-page hijacking, tracking cookies, and software running in the background. However, you don't get definitions updates without paying a subscription fee. That's where Ad-aware comes in. No free realtime protection, but free definitions updates to scan with. The combination of these 2 have kept my laptop pretty clean. If you notice your Explorer window often changing to a specific page, do a search for spyware associated with that page. It may be a spyware program/virus that has several mutations, and sometimes you need to find a cleaner specifically for it. A while ago I had this "coolwebsearch" spyware that would not go away. I had to find a site to download a specific "cleaner" program for it.
Good luck.

Chris