| 3 paland, on Aug 6, 2008 5:13:13 pm BSTI had the same thing. I cleaned out all temp files and cookies (through IE options) and then deleted it from memory (taskbar) and then delete it from your registry (HKEY_LocalMachine/Software/Microsoft/Windows/Current Version/ Run). If you do this then you wont be bothered by these messages.
I have a feeling that the Power-AntiVirus 2009 is in itself the culprit. That is how they are going to access your credit numbers, buy having you buy it. | 4 paland, on Aug 6, 2008 5:21:37 pm BSTOh, and when you are done, run one of your anti-virus programs and run a full scan. I use the corporate edition of Symantec and it found nothing after I cleaned it out. | 23 Liz, on Dec 21, 2008 11:27:44 pm GMTOk, we have the same thing - it is showing with some bogus file called Security systems - says we the lsasl.blaster.keyloger. The "security system" program also informed me I have 38 other issues, i.e. viruses, keyloggers, etc. So, my son got a bit nervous - I reviewed it and have determined that whoever it is that is attempting to get me to buy the program has developed a real good scam. Further, my Norton Symantec doesn't detect anything. So, I will try the other steps to remove it. Thanks so much! | 24 j, on Dec 21, 2008 11:40:30 pm GMTThank You.....I have used my System Restore....Now, the Winweb Security is GONE!!!!!! | 43 jrs, on Dec 26, 2008 1:02:58 am GMTHow do you use the system restore???? I CANNOT get this thing to leave and Norton will not help me unless I pay $100. | 48 j, on Dec 26, 2008 9:42:56 pm GMTYou have to have system restore as part of your programs that came with your computer. I go to my START then programs, then PC help.....that is where my System Restore is located. I used my windows defender to tell me when that winweb secuirty hit my pc. Then I took it back the day before and restored my computer to that time. It workded. then I used my Windows defender to do a FULL scan. It found some hidden attacks this program thought it acheived. I had windows defender delete all applications. So far, it is working now. |
|
|
| 31 James, on Dec 22, 2008 7:07:55 pm GMTHi,
I seem to be having the same issue as you are describing. Somehow, something called System Security has got onto my laptop. It opens up a window when I first switch on my laptop, then keeps appearing when I go on the net. When the window opens up it appears to do a scan and notifies me that there are 38 infections (rogues, worms, trojans, etc). When you click on the fix/remove icon it then asks you for you credit card details - I guess this is where the scam is.
This System Security virus has a icon which is a black and yellow stripped shield and has positioned itself on my taskbar, bottom right of the screen. I cannot remove this at all. Does anybody have any info on how I can get rid of this, its driving me mad? | 81 caveguy, on Jan 27, 2009 12:11:23 am GMTI got the same issue you have described here and after a couple of days dealing with the pop up my computer has crash and it won't respon to almost any command and if it does takes for ever to even write an email, do not what to do maybe i need the back up disk and erase all contents an downloads, i hope to find another way to fix it. if someone knows please let me know, thanks a lot. |
| 85 virus buster, on Feb 8, 2009 12:16:37 am GMTPress ctrl+alt+delete, for task manager. then go to process and find file with a long number/etc.1100456ex, then press remove or delete. the pop ups stop and the sheild dissapers after 1min. that annoying security settings shit should now be off your pc. p.s[the number1100456ex] is an example, it will be a long number which normally ends with, ex. let me know how you got on. | 90 roeroe, on Feb 26, 2009 12:38:18 am GMTVirusbuster...thanks ever so much....followed your instructions for getting rid of that stupid system security warning....it worked beautifully just as you said...thank you again. |
| 91 gordhawk, on Mar 2, 2009 3:26:19 am GMTI tried what you said to do but it didn't get rid of this darn thing. Do you have any other ideas as this is about to drive me nuts.
Thanks | 97 cadbary, on Apr 2, 2009 3:20:53 pm BSTThey were right in saying to CNTRL+ALT+DELETE, then stopping the process with the numbers in it.
Then go to the c:\windows \temp file. DElete EVERYTHING listed in the temp file. THEN, empty your recycle bin.
Then go to the Start\Search option and do a search for : *.tmp. Delete EVERYTHING the search finds.
Empty the recycle bin again.
Go online and download a program called Malwarebytes at:http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html
Make sure you DO NOT download it from ANYWHERE that lists it on an internet or GOOGLE search, EXCEPT for a trusted site such as CNET.COM. There are MANY imitators out there LOADED with viruses with spoofed names, so do not fall for it.
Download the program, install it, and let it run fully with a FULL scan, NOT a partial scan. Make sure the version you download is from the month you are downloading the file, it is updated at least on a monthly basis, if not even more often than that. Tell the software to delete everything it finds, even if it is a familiar sounding program, as that is houw the virus got in ther in the first place, by installing itself in place of windows security center and other programs.
Empty the recycle bin again, then reboot your PC. You now should have a clean PC.
Go online, and download a current version of Norton Internet Security 2009, from: http://download.cnet.com/...
DO NOT download from anywhere but the Cnet site that shows the Editors choice stars next to it in the middle of the page!!!! There are MANY spoofs out there, even listed on the CNET advertisment sponsored sites, or better yet, go to Best Buy and buy a legitimate copy that you know is clean and new.
Your PC should now be completely clean and protected. Do not go for the spoofed sites on the internet and take the easy way out, as you amy either download a spoofed copy of the software titles, or your efforts may not remove the infection from the System Restore files on your drives backup of your operating system, which will re-infect youur PC with the virus. Most virus detection programs will NOT detect the infection, as the infected files load during the boot-up BEFORE the anti-virus software does, using legitimate names.
Good Luck | 106 delibalik, on Jun 3, 2009 11:27:15 am BSTMalwarebytes cleaned all of viruses...thanks a lot.... |
|
|
| 94 SweetT, on Mar 3, 2009 12:47:51 am GMTThank you so much!!!! your instructions have worked for me. The pop ups were driving me crazy so I didnt use my laptop for days. Thanks again.... |
| 98 A.V., on May 17, 2009 1:20:44 pm BSTHello.
The same thing has happened to my computer, and well I'm pretty much stuck because I can't open a single thing, I tried opening my task manager and nothing, I tried opening the add or remove programs and nothing, I'm really stuck here and I would like the help so I can get this stupid Security shield off my computer because I can't open anything not even to restore my computer. I really would appreciate it. thanks. | 103 Joanne, on May 17, 2009 10:36:52 pm BSTDid you ever get rid of yours, Im going crazy here, it wont let me do anything. |
| 114 voice, on Jun 19, 2009 2:33:56 am BSTI finally got my computer fixed. I followed the sugestion of doing a system retore. Use your pc help system, it will tell you how to restore your system. Coose a date prior to the time you first began having the problem.
I followed up by downloading the malwarbytes program and so fthe system has still found som einfected files. |
|
| 102 Joanne, on May 17, 2009 10:35:14 pm BSTI cant do the control, alt, delete thing. It says Im infected. I cant download anything to get rid of this. Can ANYONE please help me?? Im been at this damn thing all day. |
| 104 Teri, on May 17, 2009 11:14:39 pm BSTI cannot even get the task manager to appear. When I do alt control delete it appears very quickly then disappears. Any ideas of what to do next.
Thanks because I am extremely frustrated. | 105 JW, on May 22, 2009 2:11:27 pm BSTBring up task manager (ctrl+alt+del) as soon as your PC has run through it's start up process. The long number appears a few seconds before it takes control of your PC, so you have a short opportunity to end process.
It comes back as soon as you restart, so you need to do something else for a permanent fix. |
|
| 107 justin, on Jun 7, 2009 2:05:33 am BSTI tried task manager but this system security virus that started the whole thingis preventing me from starting most of my progams. | 113 voice, on Jun 19, 2009 2:30:28 am BSTI finally fixed the problem. Te bet solution is to go into your computer and do a system restore and choose a date that before the problems started. I just did it after being frustrated for almost two weeks. it worked.
Your comoputer help screen should get give you a restore option. |
|
| 129 chip, on Oct 7, 2009 6:54:27 pm BSTI am still trying to remove the lss.blaster.keyloger..... control altdeleteis not working... help !! by the time i type anything in, that stupid security tool warning pops up. | 130 Eric stacy, on Oct 7, 2009 11:04:21 pm BSTOnce again I will post this. It works permanently. And it is simple with limited ability.
lsas.blaster.keylogger is a combination worm,trojan and virus.
This is the way to get rid of the problem completely.
Go to the internet and look for and download a file called
combofix.exe at http://combofix.org/download.php
Keylogger will ussually not block internet. Save the file to your desk top.
Rename the file combofix.com so that it will work at the dos level on your computer.
Reboot your computer. While it is starting hit the f8 key until a number of start
up options apear. You will have no mouse so use your arrow keys and click on Safe Mode or
safe mode with support. Bottom line, get to safe mode.
Your computer will boot to a simple desk top without all the extra programs. Click on
the combofix.com file and follow the instructions. It will clean your system completely
free of the logger virus. Let the program do the work. Don't rush. It will take about
15-20 minutes, but no data will be lost. Just the virus.
Good Luck,
Eric stacy | 134 la bella cee, on Oct 17, 2009 9:36:49 pm BSTEric stacy you are a life saver. the combofix program will wipe it out completely
thank soo much |
|
|
| 135 KZ, on Oct 21, 2009 4:37:24 am BSTWe just got hit with this virus and got very nervous at what might be lost or taken! I have followed your instructions and so far so good. I am running scans now and might do the system restore as well but so far no pop ups. |
|
| 86 virus buster, on Feb 8, 2009 12:16:37 am GMTPress ctrl+alt+delete, for task manager. then go to process and find file with a long number/etc.1100456ex, then press remove or delete. the pop ups stop and the sheild dissapers after 1min. that annoying security settings shit should now be off your pc. p.s[the number1100456ex] is an example, it will be a long number which normally ends with, ex. let me know how you got on. | 92 gordhawk, on Mar 2, 2009 1:37:23 pm GMTI must be doing something wrong because I have followed your instructions and I still have that gold and black shield down by the clock. Let me tell you exactly what I'm doing and see if I'm doing everything right. After I read your message about how to get rid of this problem I press ctrl,alt. Then when the task manager comes up I go to processes and highlight the long number that is there and then press the delete button. Is this the correct way to do this? |
| 93 tarryboots, on Mar 2, 2009 7:03:39 pm GMTThank you very much Virus Buster for helping us get rid of the System Security Pop Ups. Did not get any joy from Tiscali or Dell help. You were extremely helpful and did exactly as your name suggests! |
|
|
| 37 brit09, on Dec 24, 2008 1:57:39 pm GMTHi liz can you plz tell me how you got rid of that program called "system security" it is infected my computer too | 40 tazz, on Dec 24, 2008 11:06:36 pm GMTHello, i have the same problem security systems warning etc, anti virus is green and my computer is fine.
to uninstall it just use system restore or maunally find and delete it.
if this doesnt work reinstall windows. |
|
| 44 dane, on Dec 26, 2008 1:19:59 am GMTHave you an answer to stop this from appearing all the time | 100 Joanne, on May 17, 2009 6:19:50 pm BSTMy IE Browser was taken away. I cant even do the control, alt, delete. Any other suggestions? |
|
| 108 r, on Jun 7, 2009 8:25:51 pm BSTFor whoever is having this issue and cannot open absolutely ANYTHING, I know how you feel. I read solutions like open task manager, delete temp files & cookies..I read it all. I know it's even frustrating to read since you can't do anything about it without something popping up at the bottom saying it's infected. What I did to open task manager (and try doing this as soon as you log on your computer so you're not flooded with pop ups) was press Alt Ctrl Delete, but HOLD it and do not let go or else you'll have no chance & it'll just say it's infected. You'll have to hold all 3 buttons and ending system security off your task manager at the same time. It's a challenge, but it worked for me. The System Security icon at the bottom right hand of your screen should then disappear. Along with what I just said, go to tools, click delete browsing history and then delete temp files and cookies. After I tried opening an application such as MSN that hadn't worked before due to Lsas.Blaster.Keylogger, but it opened no problem. You should be fine after. |
|
| 54 ear, on Dec 29, 2008 7:40:10 am GMTWill this help with the Mozilla Firefox? |
|
| 5 W12, on Aug 6, 2008 10:34:10 pm BSTPaland
Thanks for your help. Please excuse my ignorance but how do I delete from memory and also from registry.
Can you give me step by step instructions? |
| 8 willy, on Nov 23, 2008 9:17:55 pm GMTI have used your instructions on how to get rid of lsas.blaster.keyloger and have not been able to do so. I'm receiving a program intitled winweb security that brings up the keyloger. I have an icon for winweb at the bottom right of my computer. It pops up the keyloger and wants me to buy their security program. Scam! I have gone through my programs and it is not their. Probably because I didn't buy it. I think if I could delete winweb security the keyloger would also delete. Any suggestions? Thanks. | 10 winweb security scam, on Dec 9, 2008 4:05:26 am GMTWARNING: Winweb Security is a SCAM!
DO NOT continue with winweb as it will steal critical/personal information!
It reports that Lsas.Blaster.Keyloger is the culprit, but that is not the case,
as Lsas.Blaster.Keyloger is either a part of Winweb, or does not exist.
Fortunately, it seems that the payment is corrupt on the website, in that
it will not let you buy the program, and therefore should not leak any information.
However, it seems there is a way to erase the program/virus.
It doesn't go by Winweb Security as the filename,
instead, you want to look for:
1806188250.exe
and
1806188250.EXE-18E9FE96.pf
The only way that I can think of to delete these files is to
boot up under Safe Mode, and search for these files and
manually delete them.
I repeat, stay away from this program.
DO NOT USE, DOWNLOAD, OR BUY THIS PROGRAM!! | 17 j, on Dec 17, 2008 12:31:08 am GMTCan someone please help me get this stupid winweb securtiy off my computer without having to buy software to do so. | 18 karasusynth, on Dec 17, 2008 5:18:12 am GMTTo get winweb off your computer, you need to start up your computer in safe mode.
then go to the start menu and click on search (alternately, open any folder and click on search)
make sure you're looking in hidden files and folders, and search for:
1806188250.exe
one the result comes up, you should be able to manually delete it.
(to bypass sending it to recyle bin, click on the file and press Shift+Delete) | 56 gazgaz, on Dec 29, 2008 7:40:21 pm GMTHow do i start up computer in safe mode and i cant fing system restore | 66 ljlemi, on Jan 3, 2009 8:59:48 pm GMTTo start up in safe mode: restart pc..while restarting tap F8 key until safe mode appears |
|
|
| 68 w90wen, on Jan 6, 2009 12:32:14 am GMTI have the same problem. have read all the posts and did find a stategy. Firstly my norton security has not flagged any problems but the continuous pop ups and not being able to delete icon is annoying.
have done the history deletes and the ctrl alt delete clicked processes and there was only one option that was numbered. it was diffrent to what I have read here but its deletion did remove the icon and stop the pop ups. however when restarting the PC I have to do it all again. my PC is due its annual health check so hopefully. I can get the matter fully resolved but at least with what I have done coutesy of this forum i can surf and work without the annoying pop-ups.
Thanks everybody and keep the tips coming.
Please note I did not download any additional software.
O | 73 oaktown, on Jan 9, 2009 5:32:10 pm GMTHey, i have the same problem turn up on my laptop. i did a system restore, and problem gone. the thing with system restore is that you most computers are not set up with system checkpoints. so if you go to try to restore alot of the times there is no check point. a check point is a time when the computer takes a snapshot of all you info., files, etc. usually if you set it up, you can do a check point 4 times a month, so if you have a problem one week, you can go back one week and not lose that much info. if you bought the computer at a store and didnt build it yourself, then it might have been set up. my laptop was set up. my desktop was not. i lost everything. i reinstalled windows and made a check point.....got a virus or corrupt file.....last week....was able to go back to december and recover without reinstalling window all over again. you can try deleting files, folders, but you are not going to get rid of the system security spam. if you want to try to, then you have to delete these in Safe Mode. when you power up your laptop computer, as soon as you see something, anything on the screen, hold the F8 button... on a desktop computer usually you will see the some numbers like the size of memory in your computer..etc...this is when you hold the F8 button.. some computers can be tricky...my laptop didn't want to go into Safe Mode...so i turned it off or restarted it with the button or switch...not with the start button. This made the computer go into Safe Mode...because i turned it off manually.
once it goes into safe mode you have to wait...do not hit any keys on your keypad.
it will eventually show you a black screen with safe mode on the top corners and i think the bottom corners.
you still have to wait. it will start windows with very large letters. sign in as adminstrator. most computers don't have a password. if yours does type it in. if you dont know it, then try to sign in under your other profile, if there is one there.
once you get past this screen, it gets easy. your computer or laptop might ask you if you want to continue in safe mode to try and fix the problem.. read the instructions...it should say something about going into system restore. this is where you want to go. once you are there, then look for the tab that say restore to an earlier point. click next. then look for a date that is highlighted, this will be a check point, you can go back a month or two...hopefully you have a check point. if you dont, then this wont work. go back and exit, you will have to turn off computer, and reboot in to safe mode again and reinstall windows...
If you do have a check point click on it, and then hit next....this will take a few minutes, depending on how much memory you have, and how much memory is taken up on your computer. it will turn off and resart on its own...
After this problem should be gone. |
|
|
|
|
| 19 yada, on Dec 18, 2008 12:07:02 am GMTI can not delete the regestry it wont allow me too | 20 j, on Dec 19, 2008 3:38:42 am GMTThank You.....But, I believe I took care of the problems using System Restore! |
|
|
Codecs sound blaster live 5.1