Unable to remove "System security scanner has detected following threats..." popups in random IE pag

Discussion in 'Spyware' started by Tom, Oct 24, 2004.

  1. Tom

    Tom Guest

    I can't seem to find a reference to this specific problem. In the
    last few days I've started getting annoying popups that I can't get
    rid of them. There are two variants:
    1. Black popup with no "close" mechanism that says "System scan
    finished" .... "System scurity scanner has detected following threats
    on you computer: etc." Followed by list with entries like
    Trojan.AdPopper, Huntbar/TS.
    Final paragraph has URL of whatever page I am on as he subject of a
    sentence recommending I install a threat eliminator. So:
    "nytimes.com or google.com is recommending you to install..."
    2. Variation on above, with different background and a message that
    development has ceased on CWShredder so I must get this protection,
    blahblah...

    This is in IE6 running on XP professional (SP1). I've run ad-aware SE
    Plus and Spybot search and destroy, both with latest definitions. I've
    run CWShredder, I've run Norton anti-virus (lastest definitions), I've
    turned on ZoneAlarm ad blocking (already had Google toolbar blocking
    and popup stopper running).

    I should mention that I picked up a beagle virus last week and got the
    Fixbeagle program from Symantec to eliminate it.

    I see another note posted today with someone who has the same problem.
    I haven't seen any other instances in usenet searches

    If you know what this is and how to get rid of it, thanks.
     
    Tom, Oct 24, 2004
    #1
    1. Advertisements

  2. Tom

    CalamityKen Guest

    Tom typed:
    This is the latest scammer technique to scare you into purchasing their
    worthless software.

    1a. Download the latest v1.98.2 version of HijackThis to post your new log:
    http://aumha.org/downloads/hijackthis.exe
    or
    http://tools.radiosplace.com/HijackThis.exe

    Post the log to one of the support forums.
    http://forum.aumha.org/viewforum.php?f=30&sid=b664fdd35739199a19f66e621e37d12b

    It will probably be one of the O9 entries that need to be removed by using
    the Registrar Lite registry editor.
    http://www.snapfiles.com/get/registrarlite.html

    1b. Huntbar/TS
    http://doxdesk.com/parasite/HuntBar.html

    2. CWShredder was adopted by InterMute then updated to V2.0 and included in
    their latest Spyware remover offering.
    http://www.intermute.com/spysubtract/cwshredder_download.html

    Rogue/Suspect Anti-Spyware Products & Web Sites
    http://www.spywarewarrior.com/rogue_anti-spyware.htm
     
    CalamityKen, Oct 24, 2004
    #2
    1. Advertisements

  3. Tom

    madmax Guest

    Yo
    Thanks for info on CWS-I have updated my web site to reflect the change
    -max

    --
    To help you stay safe see: http://www.geocities.com/maxpro4u/madmax.html
    Virus cleaning +fixes see: http://www.geocities.com/maxpro4u/TechPros
    Change nomail.afraid.org to neo.rr.com so you can reply by e-mail
    (nomail.afraid.org has been set up specifically for
    use in Usenet. Feel free to use it yourself.)
     
    madmax, Oct 24, 2004
    #3
  4. And when you've got rid of it try getting rid of IE6 and Norton too.
     
    Anonymous Sender, Oct 27, 2004
    #4
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.