XP Police

Hello, first I'd just like to say thank you to anyone who donates their knowledge and time to helping idiots like me.

With that, I do want to mention that I did read the "READ & RUN ME FIRST" thread and tried my best to do what I could off of it. Here is my predicament:

I've been battling with this "XP Police" program for a few days and it's started to significantly debilitate my PC. I tried to handle it by manually deleting the files from the Local Disk and registry...maybe that was a no-no. If anything it seems worse now.

I am unable to download spyware and malware scanners, like those listed in the “start here first” thread. From what reading I’ve been able to do, it seems this program blocks the installer from completely finishing/unpacking/whatever. Thus, I am not able to run these programs, even if I rename them (as was suggested).

At this point I'm unable to open links for any kind of spyware/malware scanner/removal tool. My IE and Firefox both seem to be affected by it, and pages frequently freeze up. When I do attempt to click links that are related even in a small way to spyware removal etc…I get “cannot display” messages, with the address sometimes being shown as some kind of “windowsclick.com” malicious tool, I assume. Other times even directly pasting the link into the address bar doesn’t work.


I share a network with another computer. We have access to maybe 1 or two “shared folders”. Would it possibly work if I downloaded the necessary programs from that PC into a shared folder, and ran them on my PC?


The other thing I’ve noticed is some process called “sysguard.exe” running when I start my computer…it just appeared today. I assume it’s something XP Police dumped on me. I’m not sure of anything else about it though.


I apologize that I’m not able to provide any logs. I have CCleaner on my computer, and it still runs, but that is all. I'm not sure what other helpful information I can provide...I'm a Windows XP user with IE 7 and Mozilla Firefox 3.0.4

I will wait for some response before I take anymore action.

 

Hi,

I was just about to edit this post. I'm sorry for posting long useless information. I went ahead and tried putting all the installers on the other PC and accessing them via a shared folder. So far it's working, but I've only just started the SAS scan. I will post again when I have all the logs.

Do you suggest I do the same thing (in another thread) for the other PC, just to be safe?

Thanks for getting back to me.

 

Hi again, here are my logs. I had more problems than I even knew about! :-o

 

1 more log - not trying to bump.

My MGTools didn't make a zip file of the log(s)...did I do something wrong? I ran it as directed for a Windows user. I'm assuming you want the hijackthis one so that is the one I attached. If I am missing something though, please let me know.

Thank you again.

 

Hi,

I'm really sorry - I'm not intentionally trying to bump this, but I realized my mistake and am attaching the MGlogs zip file now.

Sorry again :-o

 

Oops...well I did actually do those yesterday when I ran everything, but then today I was wondering why I couldn't find that MG Tools zip file. So I ran it again, I probably shouldn't have...I was just trying to figure out where that zip file was going. I had already put those 2 things back to the way I used to have them. Sorry for being a pain.

I followed the steps you provided, and I did spend some time reading the "how to protect yourself" thread, and decided to purchase the Malwarebytes program.

Not to keep taking up your time but I was just wondering if I got lucky with this, so to speak? I had read in a couple other threads on this board about these rogue programs and that they can be really difficult to get rid of, and dangerous for people that do things like online banking...

Are there any other steps I should take in response to having a rogue on my PC, like maybe alert my bank, change all my passwords, etc?

Thank so much again for your time!