wmtdurkin said:The red shield icon with the white x in it continuously pops up saying I
have security problem. It then tries to connect to a web site that says
the web page cannot be found. McAfee says i don't have a problem. How do i
turn this thing off?
Malke said:wmtdurkin said:The red shield icon with the white x in it continuously pops up saying I
have security problem. It then tries to connect to a web site that says
the web page cannot be found. McAfee says i don't have a problem. How do i
turn this thing off?
Are you sure the message is from the Windows Security Center? It doesn't
sound like it. The Windows Security Center doesn't try and connect to a
website and is disabled when you install McAfee. It sounds much more like
you've picked up a rogue antispyware program. See below for general
information about rogues.
=====
Your system is infected with a rogue antivirus program. It is called "rogue"
because it pretends to be A Good Guy but is really Evil. Do not pay them!
Because you didn't give me the name of the program that is trying to get you
to buy it, I can't point you to specific removal steps. Look for them here:
Bleeping Computer removal how-to's -
http://www.bleepingcomputer.com/forums/forum55.html ]
If it is XP Antivirus 2008/09, Here are removal steps:
http://www.bleepingcomputer.com/malware-removal/uninstall-antivirus-2009
http://www.bleepingcomputer.com/forums/topic154529.html (earlier versions)
These may work for you and all may be well. However, in many cases the
computer will also be infected with Zlob and/or Vundo trojans and protected
by a rootkit. These machines are extremely difficult to clean.
If your machine is one of these cases, either get guided help at one of the
specialty forums below OR back up your data and do a clean install of
Windows. It is your choice. If you are unsure how to back up your data or
how to do a clean install, you can take your machine to a local computer
professional. I don't recommend using BigComputerStore/GeekSquad types of
places.
PLEASE DO NOT POST LOGS IN THE MS NEWSGROUPS.
http://aumha.org/downloads/hijackthis.zip
http://aumha.net/ - Click on the HijackThis forum. Read the announcement and
the stickies *first*.
http://www.atribune.org/forums/index.php?showforum=9
http://aumha.net/viewforum.php?f=30
http://www.bleepingcomputer.com/forums/forum22.html
http://www.dslreports.com/forum/cleanup
http://www.cybertechhelp.com/forums/forumdisplay.php?f=25
http://www.geekstogo.com/forum/Malware_Removal_HiJackThis_Logs_Go_Here-f37.html
http://www.malwarebytes.org/forums/index.php?showforum=7
http://gladiator-antivirus.com/forum/index.php?showforum=170
http://spywarewarrior.com/viewforum.php?f=5
http://forums.techguy.org/54-security/
http://forums.tomcoyote.org/
http://www.thespykiller.co.uk/index.php?board=3.0
http://forums.subratam.org/index.php?showforum=7
=====
Malke
wmtdurkin said:It stopped at almost the same time I wrote the message. Now it's back and
driving me nuts. Here's what it's trying to connect me to -
hxxp://helpsupportcenter.cxxx/7cc94ad409e9e8993034457875e0262f5823fde7/edih//
I haven't run anything you suggested yet because it had gone away. It
turns the cursor off while I'm typing, among other things. Any thoughts?
Malke said:hxxp://helpsupportcenter.cxxx/7cc94ad409e9e8993034457875e0262f5823fde7/edih//
Next time please munge suspected malware websites the way I did above. You
are most definitely severely infected. Follow the instructions that I
already gave you.
wmtdurkin said:This virus arrived while I was running McAfee. Shouldn't this have
protected me?
Want to reply to this thread or ask your own question?
You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.