can anyone help me get rid of the 'Warning Spyware detected on" virus display?

  • Thread starter Thread starter FireBrick
  • Start date Start date
F

FireBrick

OneLive doesn't find/cure it.
But I can't get rid of Warning Window.
I can't change my Desktop picture.
"it says it was disable by the Admin. I'm the Admin."

and something funny is happening when I boot up.

vista premium

PS: I can't get to Use a Restore Point either.
 
FireBrick said:
OneLive doesn't find/cure it.
But I can't get rid of Warning Window.
I can't change my Desktop picture.
"it says it was disable by the Admin. I'm the Admin."

and something funny is happening when I boot up.

vista premium
Click to expand...

Your system is infected with a rogue antivirus program. It is called "rogue"
because it pretends to be A Good Guy but is really Evil. Do not pay them!

Because you didn't give me the name of the program that is trying to get you
to buy it, I can't point you to specific removal steps. Look for them here:

Bleeping Computer removal how-to's -
http://www.bleepingcomputer.com/forums/forum55.html

If the rogue is XP (or Win) Antivirus 2008/09, here are removal steps:

http://www.bleepingcomputer.com/malware-removal/uninstall-antivirus-2009
http://www.bleepingcomputer.com/forums/topic154529.html (earlier versions)

These may work for you and all may be well. However, in many cases the
computer will also be infected with Zlob and/or Vundo trojans and protected
by a rootkit. These machines are extremely difficult to clean.

If your machine is one of these cases, either get guided help at one of the
specialty forums below OR back up your data and do a clean install of
Windows. It is your choice. If you are unsure how to back up your data or
how to do a clean install, you can take your machine to a local computer
professional. I don't recommend using BigComputerStore/GeekSquad types of
places.

PLEASE DO NOT POST LOGS IN THE MS NEWSGROUPS.

http://aumha.org/downloads/hijackthis.zip
http://aumha.net/ - Click on the HijackThis forum. Read the announcement and
the stickies *first*.
http://www.atribune.org/forums/index.php?showforum=9
http://aumha.net/viewforum.php?f=30
http://www.bleepingcomputer.com/forums/forum22.html
http://www.dslreports.com/forum/cleanup
http://www.cybertechhelp.com/forums/forumdisplay.php?f=25
http://www.geekstogo.com/forum/Malware_Removal_HiJackThis_Logs_Go_Here-f37.html
http://www.malwarebytes.org/forums/index.php?showforum=7
http://gladiator-antivirus.com/forum/index.php?showforum=170
http://spywarewarrior.com/viewforum.php?f=5
http://forums.techguy.org/54-security/
http://forums.tomcoyote.org/
http://www.thespykiller.co.uk/index.php?board=3.0
http://forums.subratam.org/index.php?showforum=7

Malke
 
Thanks for pointing me at MalWareBytes.
It was a bit scary for a while but it cleaned out the spyware and got rid of
the window that replaced my desktop picture.

Thank for the help.
The funny part is....I had UAC enabled, I had OneLive running.
But as I had been shipping a lot via UPS and expecting some merchandise via
UPS
I opened the email and may have said it was ok.

I never did see it any specific program it wanted me to buy but that may
have not gotten past LiveOne or I missed it.
 
The UPS scam has been around for a while. It typically says "Sorry we missed
you. Click here to rearrange delivery"

They get enough people to click here to make it worth their while.
 
Well they sure got me. lol
I was waiting for UPS to arrive, as I knew the packages I was expecting were
due to be delivered that day.
Timing is everything.
 
Timing certainly is everything.

If they send out 20 milling bogus emails, how many recipients do you think
just "may" be waiting for a package?

It is very effective - and nasty.
 
Back
Top