Spyware detected! Need help fast!

[Bogey]

April 14th, 2007, 3:55 pm

I need help right now. My computer's security system found a couple active spyware on my computer. I'm afraid I downloaded a Trojan or something because that happened after I downloaded a file from a "red" site acording to McAfee SiteAdvisor.

Any help would be appreciated.

Here is an insight on my problem.

I installed an add-on for Firefox from a site that gives away downloads. McAfee SiteAdvisor said that this site was bad since there are a few "red" (bad) downloads. I didn't imaging that that Add-on that I was downloading (for Windows Media Player run-time environment v2.01).

I installed it and McAfee noticed a registry change and asked me if I wanted to allow the registry change. I checked which program wanted to change the registry on my computer and it weas the installer for the Add-on so I allowed it. It asked me about it a couple more times and I said yes, since the source was the add-on installer.

After the installation, the McAfee security center detected a "Potentially Unwanted File" a spyware.It's name was even spyware-ish.

There came up a flashing icon by my clock on the computer. It is a blue and white question mark changing into a "no" sign (the red circle with a line running through it diagonally). The alert says to click on it to resolve the problem but when I click on the icon, nothing happens. It's like I didn't click on it at all. I assume the spyware is doing that.

I would want to fix that problem but I'm not good with computers. I uninstalled the Firefox add-on that I installed, but I knew that the spyware still would be active and it was. I need help.

Any help would be appreciated, but right now, I'm going to scan my computer. Thank you.

Please help.

April 14th, 2007, 4:24 pm

If the registry key that was changed was logged or if you remember it, you could change or delete it yourself. You could also try a restore point if you are using XP.

[Bogey]

April 14th, 2007, 6:57 pm

I'm sorry but I have to warn you. I barely know anything about computers. I'm a beginning beginner.

How do I delete the registry keys? Since I have about 15 spyware on my computer, all running at the same time and ruining my computer.

April 14th, 2007, 7:02 pm

If you are that new to computers, get someone to look at the machine. Otherwise, you'll drive yourself nuts trying to understand instructions posted in the forum.

[Bogey]

April 14th, 2007, 7:57 pm

I'm good with instructions though. You can tell me how to delete the registry keys. Are they in a folder that is located in system32? I bet they are my computer found a total of 79 spyware on my computer. Can't talk much now, I'll post later. Thanks.

April 15th, 2007, 6:01 am

Ok, set Mcafee to allow registry changes. Run msconfig and disable everything under the startup tab. Reboot and don't return to normal startup. Download, install, update and run Spybot Search & Destroy or any spyware dectector. Fix any problems that it finds. Update McAfee virus definitions and run it. Hopefully, those two things will clean your machine.
Then go to http://www.jacobsm.com/mjsoft.htm#pknife and download registry watcher. Unzip the file and run it. It will immediately go to the task bar. Bring it up and set it to reject. That way if anything else tries to change the registry, it will stop it. If you are satisfied with the way McAfee blocks registry changes, then skip the last step and use McAfee instead.

April 15th, 2007, 8:24 am

I'd suggest using Spybot Search & Destroy and Adaware as well. By the way do you have two odd icons on your desktop?

April 15th, 2007, 10:45 am

Do not go nuts about it. It is very common these days to detect that on your PC. Just download free spyware and adware software, and install them in your computer. They will detect and remove the spyware. They will actually show you the spyware detected and ask you if you want to quarantine it (remove it).
Do a search for free spyware software at goole.com or babadorie.com or overture.com. you will see bunch of free ones.

Good luck!

April 15th, 2007, 11:55 am

Hi Bogey

I would not recommend messing around with the registry.

1) Download and install Spybot search and destroy from http://www.download.com/3000-8022-10122137.html

2) The software will give you the option to backup your registry. I recommend you back it up.

3) Download and install new updates.

4) Restart your machine and press F8 on your keyboard continuosly.

5) Select safe mode and press enter

6) Once in safe mode, strart Spybot Search and destroy and click Check problems.

7) Once the scan is complete, remove detected spyware programs.

Whilst you are still in safe mode, run a full anti virus scan

9) Restart your machine

All should be ok

April 15th, 2007, 4:28 pm

My suggestion was to use that program to lock the registry not to make any changes, so I don't know why you said "messing around with the registry".

April 16th, 2007, 3:40 am

Sorry Don2007

Bogey mentioned

"I'm sorry but I have to warn you. I barely know anything about computers. I'm a beginning beginner. How do I delete the registry keys? Since I have about 15 spyware on my computer, all running at the same time and ruining my computer"

That's why I posted not to mess around with the registry.

Thanks

April 16th, 2007, 9:58 pm

According to the PCWorld, the best antispyware application is Spy Sweeper. The free one Spybot search and destroy is unable to get rid all the spywares.

Refer
http://www.pcworld.com/article/id,12681 ... ticle.html

Hope this would be helpful.

April 17th, 2007, 12:37 am

That is true markov. That is why I suggested using both Spybot & Adaware as together I find they do very well. I use them both myself if I think I have a infection of any kind.

April 17th, 2007, 5:36 am

I have always used spybot search and destory and it has never failed to remove spyware. It's free aswell

April 17th, 2007, 5:45 am

Trust me it misses things. I've used it and found things its missed, run adaware and its cleaned up the left overs.
Then I usually do a HJT scan as well and look that over to check on things that they may both have missed.

If you never do secondary checks how can you be sure its gotten everything everytime?
Not all spyware is gives obvious symptoms of its presence.