computer under control of ip 297.4.167.118 windows xp help?
 

I'm getting popup messages prompting me to buy anti-virus software, i also keep getting an error that says a computer with an ip address of 297.4.167.118 has infected my computer, internet explorer has problems loading, with some images not being able to load. Also my computer tends to restart randomly. It's driving me crazy. Help please?? :eeek:

There are different ones out there that do this. It is called rogue software in that it infects your computer and then tries to get you to purchase their program to fix the infections.

Most can be fixed relatively easy but it is best to know exactly which one that you are dealing with.

Either post back with the name of the program that they want you to use or google it yourself for the way to fix the issues.

The IP address that is shown is really nothing at all . You need the name of the program.

ok sorry. I think the name of the program doing this is "trojan.downloader.suurch.dw" and I'm not sure how I can remove this from my computer.

will copy/pasting the scan report of the spywares help? [I used Spyware Terminator to find the programs]
If so, here it is: (if it doesn't make a difference, I guess ignore it) :)

Threat Files
<Trojan.Downloader.Suurch.dw> : C:\Documents and Settings\user-b ah\Local Settings\Temp\csrssc.exe
<FraudTool.XPSecurityCenter.ba> : C:\WINDOWS\system32\_scui.cpl
<Trojan.Downloader.FraudLoad.vcud> : C:\WINDOWS\system32\brastk.exe
<Trojan.Downloader.FraudLoad.vcud> : C:\WINDOWS\brastk.exe
<Trojan.Tiny.705.1> : C:\oxii.exe

Advanced Files Report
%PROGRAMFILES%\Adobe\Acrobat 6.0\Distillr\adistres.dll [Adobe Systems Incorporated.] [Acrobat Distiller for Windows] MD5=F41A8F6E80DB4853CFC8613F72B53E12 SIZE=155648
%SYSDIR%\hpzjrd01.dll [Hewlett Packard] [Hewlett Packard Rediscovery Library] MD5=16FC2C309998C6D55C182652D6A1C5B1 SIZE=139264
%SYSDIR%\hpzsnt12.dll [HP] [HP DeskJet] MD5=A2973A14FD05F6A5BD61F3528DFAE922 SIZE=180315
%COMMONFILES%\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [Apple Inc.] [Apple Mobile Device Service] MD5=B8E865D24F2753A35CC2A9A6A3CE1AD4 SIZE=116040
%PROGRAMFILES%\McAfee\MSC\mcmscsvc.exe [McAfee, Inc.] [McAfee SecurityCenter] MD5=CB3A8976DE2F65349322DA7627CEA223 SIZE=767976
%COMMONFILES%\McAfee\MSC\mcutil\8,1,114,0\mcutil.d ll [McAfee, Inc.] [McAfee SecurityCenter] MD5=CA0732D2F2D582E669C9A408C4E2DCF9 SIZE=128368
%PROGRAMFILES%\McAfee\MSC\mcres.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=CF5C2CBCCC496B9157A7C56DA71EA6BB SIZE=80720
%PROGRAMFILES%\McAfee\MSC\mclocres.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=99B6E705C5CE392CA8FF526A6EB46175 SIZE=64408
%PROGRAMFILES%\McAfee\MSC\oem\105\Mccobres.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=AE35ECC36A0C1C0121BAE1850ECDB4D9 SIZE=685376
%PROGRAMFILES%\McAfee\MSC\mccobres.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=92014B08550DB313BC6DD90EBFE0E6F3 SIZE=690648
%COMMONFILES%\McAfee\MSC\sqlite3.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=377A49EC40546CE62AB424F41D8D0300 SIZE=410072
%COMMONFILES%\McAfee\Core\mccoreps.dll [McAfee, Inc.] [McAfee Core API] MD5=19E0FBD24CB1A016E035BC1A526AA1ED SIZE=90968
%PROGRAMFILES%\McAfee\MSC\mcshllps.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=2BBEBD88F878D07DF1C98D31B08FF545 SIZE=95568
%PROGRAMFILES%\McAfee\MSC\mcmispps.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=71987B191F2FD94CECDF29C3C599D3CB SIZE=168272
%PROGRAMFILES%\McAfee.com\Agent\mcagntps.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=34B8ECDBA9B8806578DD3770264E2702 SIZE=66896
%PROGRAMFILES%\McAfee\MSC\McDBMgr.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=292F8E60E8BC0CFFBDF538F78A2CE2B8 SIZE=257872
%PROGRAMFILES%\McAfee\MSC\mcsubmgr\8,1,133,0\mcsub mgr.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=52B6E1BA4DCC3F22842C0AEE499F4A22 SIZE=492880
%PROGRAMFILES%\McAfee\MSC\mcmscver.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=828C209F104B6776A6A3733DEA524F6F SIZE=320848
%PROGRAMFILES%\McAfee\VirusScan\mvsap.dll [McAfee, Inc.] [McAfee VirusScan] MD5=A3FF6F525FEC34233F2092F946A2E71D SIZE=185672
%PROGRAMFILES%\McAfee\MPF\MC\MpfMISP.dll [McAfee, Inc.] [McAfee Personal Firewall Plus] MD5=973411647A7FE64A78A463640969EA9D SIZE=1047328
%PROGRAMFILES%\McAfee\MPF\L10N.DLL [McAfee, Inc.] [McAfee Personal Firewall] MD5=9CD16D2DF7B22F44889941FC72041F3C SIZE=214304
%PROGRAMFILES%\McAfee\VirusScan\McVsPP.dll [McAfee, Inc.] [McAfee VirusScan] MD5=392653214BCA3B24D2757E4B65B05082 SIZE=210248
%PROGRAMFILES%\McAfee\MSC\mcprotpv.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=C12AF9ADFD6B2A8011CAB87E77CE1408 SIZE=329040
%PROGRAMFILES%\McAfee\MSC\McNmcPrv.dll [McAfee, Inc.] [McAfee Integrated Security Platform] MD5=FCF388A3EB9F8286A93FBC94A7804854 SIZE=385768
%PROGRAMFILES%\McAfee\MSC\McNmcRes.dll [McAfee, Inc.] [McAfee Integrated Security Platform] MD5=244B30B37B46968F7DBE0748274CE6E8 SIZE=150928
%PROGRAMFILES%\McAfee\MSC\McNmcLoR.dll [McAfee, Inc.] [McAfee Integrated Security Platform] MD5=7DAD4AE7938A92AD7D614E55BB82E3A3 SIZE=16568
%PROGRAMFILES%\McAfee\MSC\McNmcCoR.dll [McAfee, Inc.] [McAfee Integrated Security Platform] MD5=2B925B6D5EE70A0686F8E1314ADBD61F SIZE=14520
%COMMONFILES%\McAfee\MNA\McNASvcPS.dll [McAfee, Inc.] [McAfee Integrated Security Platform] MD5=19B21FDCDD5BF86D86254A8416E407E2 SIZE=85008
%PROGRAMFILES%\McAfee\MSC\McNmcSPS.dll [McAfee, Inc.] [McAfee Integrated Security Platform] MD5=8D687570948C1F728C552EF55E3572F2 SIZE=66848
%PROGRAMFILES%\McAfee\VirusScan\mvscfg.dll [McAfee, Inc.] [McAfee VirusScan API] MD5=6F95ACC764A3755314CCE267B7F8BFAF SIZE=324936
%PROGRAMFILES%\McAfee\MSC\mcregobj\8,0,226,0\mcreg obj.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=E8B7A11BBB7E1E47B58BA5BC69D73556 SIZE=300368
%PROGRAMFILES%\McAfee\MPF\MC\MPFP.dll [McAfee, Inc.] [McAfee Personal Firewall Plus] MD5=9BB8167C197BA54DADAD677D1DB51AA6 SIZE=730400
%PROGRAMFILES%\McAfee\MSC\mcdemenu.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=2C4913A5581E3B9D032D9A57477BB27C SIZE=435024
%PROGRAMFILES%\McAfee\MSC\mcprohlp.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=A1CB12BCE7436EF6EDD7946F9FBC4703 SIZE=240976
%PROGRAMFILES%\McAfee\VirusScan\mvscp.dll [McAfee, Inc.] [McAfee VirusScan] MD5=63DA6121EB851F63EBB95C0C5D78C3A3 SIZE=169288
%PROGRAMFILES%\McAfee\MSC\mcuicfg.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=6808762C4FC147C6D8AF1CE3E9267517 SIZE=116048
%PROGRAMFILES%\McAfee\MSC\mccfgpv.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=CC2CA1AA9623A737EF4905271B3FC62D SIZE=425808
%COMMONFILES%\mcafee\mna\mcnasvc.exe [McAfee, Inc.] [McAfee Integrated Security Platform] MD5=C69E71E00B30B60556D3E096699BD423 SIZE=2458128
%PROGRAMFILES%\McAfee\MSC\McNmcSrv.dll [McAfee, Inc.] [McAfee Integrated Security Platform] MD5=75B5C9F6090D89D4E87A675007063EBB SIZE=1185048
%PROGRAMFILES%\McAfee\MSC\mcmismgr.dll [McAfee, Inc.] [McAfee SecurityCenter] MD5=2B160CD12B622E18AD913905845AECD4 SIZE=431952
%COMMONFILES%\McAfee\MNA\McUJ.dll [McAfee, Inc.] [McAfee Integrated Security Platform] MD5=E150DF39CB8ABB17627071FEF8EA5376 SIZE=336328
%COMMONFILES%\McAfee\McProxy\McProxy.exe [McAfee, Inc.] [McAfee Proxy] MD5=8CF3DA0BE6094C34D7C4A85493E60547 SIZE=359248
%PROGRAMFILES%\McAfee\VirusScan\EscnPlug.dll [McAfee, Inc.] [McAfee VirusScan API] MD5=621FF0E8917AB0FEE5463C117861A460 SIZE=460104
%PROGRAMFILES%\McAfee\VirusScan\esplgres.dll [McAfee, Inc.] [McAfee VirusScan API] MD5=8C437135FD69BB84B96B072B49E4B4A1 SIZE=14624
%PROGRAMFILES%\McAfee\VirusScan\mvslog.dll [McAfee, Inc.] [McAfee VirusScan] MD5=835E11BD5DF2E91F1E241D0EEB5C6E89 SIZE=275784

This is what a program called Antivirus 2008 or Antivirs 2009 will say and prompt you to download it. Once installed it will install a virus and put fake virus files on your computer for it and other spyware programs to find.

If you have one of the above programs on your computer, there are specific removal instructions.

What are the instructions to fixing this virus? Can you tell me? Please and thankyou! :sconfused:

If it helps to be more specific, the programs on my computer were called Antivirus2009 and I think Antivirus pro2009 too.

I just posted a reply here the other day. With instructions and links.
http://www.syschat.com/please-help-m...html#post13033

i just tried it & it worked! thanks soo much :D was a huge relief !

I am getting the samething. I think I got it through facebook. It says it wants to downlard Antivirus 2009 to fix the problem. It even has the Mircosoft logo on it. I know it is fake. How do I stop the popup every five minates?:icon_twisted: :icon_twisted: :icon_twisted: :icon_twisted: :icon_twisted: