eeeek!!! Will spybot get rid of a pop-up that wants me to get contravirus for free?

I can't make the pop-up go away. I can get a new window (thus the ability to post) but I can't get rid of the small box with what I assume is a fake warning. I don't want to click anywhere on the box, but I can't get the small menu from right-clicking on the button in my lower task bar that corresponds with this stupid thing.

Firefox, xp home by the way.

I am reading about it on Wiki but now afraid to click on anything related to it from google - it appeared at the exact same time I was trying to get to babelfish for something. Coincidence or????

Will run my scans (adaware, avg, spybot) but would appreciate any other help if I need it. Or just reassurance. Who would think a simple pop-up would scare me, but I haven't seen on in soooo loooong, I don't know what to do!

No I haven't rebooted because I have an irrational fear it won't come back on. OK?

not that it matters, neither worked:crazy:

Of some form of spyware, malware or other nasty. Usually some form of browser hijacker.

Start by upgrading to v1.5 of Spybot Search & Destroy.

You got mung on that system, m'am.

If that dosn't get it, come back.

what do you think about this? http://www.bleepingcomputer.com/forums/topic95405.html

I suspected it was a Smitfraud variant, by virtue of the reported behavior.

Uninstall it, run Smitfraudfix and run all of your spyware scanners.

Also, try to figure out why you got it in the first place.

and it popped up as I clicked on a link from google that I thought was babelfish - never got to that, the popup was all that appeared and then I couldn't get rid of it. hmmm maybe some squids were surfing around when I wasn't here...:shrug: I'm sure even asking will bring denials all around!

Oh do you have a current link to get that newer version of spybot? the one in the pinned post above seems to be gone? and thanks!

Does anyone else use this computer? Ever?

I did the panda scan and it cleaned one virus and listed 120 spyware items, 4 hacking tools and rootkits, and 1 dialer.

All the spyware seemed to be cookies so I deleted cookies and ran the scan again. Now it says I have 123 spyware-cookies. WTF? (no surfing during any of this)

I think two of the hacking tools are the smitfraudfix tool, no clue will list tehm if anybody wants. The dialer is Dialer.BEW and seems to be a low risk thing, but I would fo course like to get rid of it. Panda seems to want me to buy their product to get rid of this stuff, but I am not sure. Recommendations?

Adware:adware/oemji Not disinfected Windows Registry

Potentially unwanted tool:Application/SuperFast Not disinfected C:\Documents and Settings\Compaq_Owner\Desktop\SmitfraudFix\restart.exe


Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Mke\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Dummy.class-137366af-248ff460.class


Dialer:Dialer.BEW Not disinfected C:\Documents and Settings\Mke\Local Settings\Temporary Internet Files\Content.IE5\16DF53BE\connect<1>.htm


Potentially unwanted tool:Application/KillApp.B Not disinfected C:\hp\bin\KillIt.exe

About the dummy Java class. As for the others, you might want to google their names(not the path, just the name) and see if there are any special quirks to them.

That said, the tools I recommended *should* clean them out.

The cookies are a small, almost negligible, threat.

1. If you don't want to pay for a virus scanner, go with either Avast or AVG Free. Both are very good.

2. If you DO want to pay for a virus scanner, the acknowledged best out there are NOD 32 and Kapersky. Well worth the cost.

3. Get AVG Anti-Spyware, Spybot and AdAware 2007. Install all and run all, full scan. Start with AVG, then Spybot and then AdAware. Also install Spywareblaster.

4. It is time to have a long and serious talk with the other users of this machine.

spybot and adaware I run about once a week (although I have been doing it the other way around adaware first. Will get spywareblaster too, I guess - what does it do?

I know the cookies aren't too serious but why did I get even more after I deleted them?

What should I tell the other users? They barely ever have a chance to get on here as it is!:rofl: :hide:

SpywareBlaster, when used in conjunction with Spybot's "Immunize" function, blocks one hell of a lot of nasties from being able to install themselves. Is it perfect? No, but it is damn good.

You should tell the other users to take great care in what they install and what websites they go to. There are some websites out there that can, and will, install nasties, if you are using IE. This is why one great way to keep infections down is to use Firefox as your browser. Firefox does not have ActiveX functionality, which ain't no loss. ActiveX can be manipulated by a malicious website to install all sorts of malware. Yes, these malicious websites exist out there. I suspect that this malign functionality is how you got things installed on there.

Also, if someone is using MSN Messenger or Yahoo! Messenger, get them off of there and get a program called "Pidgin". The advertising "push" channels on these IM clients have been compromised and are used to push nasties onto your computer. Pidgin is reasonably secure, a hell of a lot moreso than either of the others. Also, when someone sends you or someone else a link in IM, do not click on it unless you know the link. That link may well be sending you to a malign instrumentality address that will slam something onto your machine in the blink of an eye.

I will reiterate the use of Firefox - pretty sure that is what all are using - me anyway (except the panda scan mentioned above required IE). Nobody uses instant messaging, but the kids do go on facebook and myspace...

In my little IT department fixing Spyware on people's XP machines is starting to become a full time. Infections are becoming more abundant and harder to fix. It's going to become a serious problem soon I think, unless the anti-virus companies are able to get on the ball on come to the rescue.