|
Posted by English Dude on May 18, 2006, 10:54 am
If you were Registered and logged in, you could reply and use other advanced thread options
I went onto a football forum and something automatically downloaded
then a pop-up said my pc was infected. So it told me to click to remove
so i tried it and nothing is happening.
I am running on Windows XP and i have no idea what to do. My webpage is
now: c:\secure32.html
I don't have winzip or and virus removers. I just have the free version
of Ad-Aware.
|
|
Posted by Malke on May 18, 2006, 11:44 am
If you were Registered and logged in, you could reply and use other advanced thread options
English Dude wrote:
> I went onto a football forum and something automatically downloaded
> then a pop-up said my pc was infected. So it told me to click to
> remove so i tried it and nothing is happening.
>
> I am running on Windows XP and i have no idea what to do. My webpage
> is now: c:\secure32.html
>
> I don't have winzip or and virus removers. I just have the free
> version of Ad-Aware.
It looks like you picked up one of the SpySheriff variants. You don't
have an antivirus? That's not very bright but an av wouldn't stop
SpySheriff anyway.
Go through the preparatory steps here, including the scan with one of
the first-line antivirus tools. Then get, install, and update a
full-featured av and do a thorough scan in Safe Mode.
http://www.elephantboycomputers.com/page2.html#Removing_Malware
After you've done that preparatory work, follow the specific removal
steps here:
http://www.elephantboycomputers.com/page2.html#Smitfraud_Trojan
Finish up with the rest of the general malware removal scans from the
first link.
If this all looks too complex - and there is no shame in admitting this
isn't your cup of tea - take the machine to a professional computer
repair shop (not your local version of BigStoreUSA). Then when your
computer is all nice and clean, learn how to practice Safe Hex:
http://www.wilderssecurity.com/showthread.php?t=27971 - So How Did I Get
Infected Anyway?
http://wiki.castlecops.com/Malware_Removal_and_Prevention:_Introduction
http://www.claymania.com/safe-hex.html
http://www.aumha.org/a/parasite.htm - The Parasite Fight
http://msmvps.com/blogs/harrywaldron/archive/2006/02/05/82584.aspx - MVP
Harry Waldron - The Family PC - How to stay safe on the Internet
http://www.spywarewarrior.com/rogue_anti-spyware.htm - Eric Howes on
Rogue Antispyware Programs
Malke
--
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic!"
MS-MVP Windows - Shell/User
|
|
Posted by David H. Lipman on May 18, 2006, 5:29 pm
If you were Registered and logged in, you could reply and use other advanced thread options
| I went onto a football forum and something automatically downloaded
| then a pop-up said my pc was infected. So it told me to click to remove
| so i tried it and nothing is happening.
|
| I am running on Windows XP and i have no idea what to do. My webpage is
| now: c:\secure32.html
|
| I don't have winzip or and virus removers. I just have the free version
| of Ad-Aware.
Two part reply..
Perform Part 1 then perform Part 2.
If the first two parts don't work, perform the alternate section.
It is suggested that you execute each tool in Normal Mode then in Safe Mode.
If you are using any version of Sun Java that is prior to JRE Version 5.0,
then you are strongly urged to remove any/all versions that are prior to JRE
Version 5.0. There are vulnerabilities in them and they are actively being
exploited.
Therefore, it is highly suggested that if there are any prior versions of Sun
Java
to Version 5 on the PC that they be removed and Sun Java JRE Version 5.0 Update 6
be installed ASAP.
Simple check, look under...
C:\Program Files\Java
The only folder under that folder should be the latest version...
C:\Program Files\Java\jre1.5.0_06
http://www.java.com/en/download/manual.jsp
Part 1
-----------
Use noahdfear's SmitFraud, SpyAxe, SpyFalcon, et. al., removal tool --
SmitRem.exe
http://noahdfear.geekstogo.com/click%20counter/click.php?id=1
http://www.bleepingcomputer.com/forums/topic43659.html
Part 2
-----------
Download SmitFraud.exe from the URL --
http://www.ik-cs.com/programs/virtools/SmitFraud.exe
Execute; SmitFraud.exe { Note: You must accept the default of C:\McAfee }
Choose; Unzip
Choose; Close
NOTE: You may have to disable your software FireWall or allow WGET.EXE to go
through your
FireWall to enable WGET.EXE to download the needed McAfee related files.
Execute; c:\mcafee\clean.bat
{ or Double-click on 'Clean Link' in c:\mcafee }
A final report in HTML format called C:\mcafee\Normal_ScanReport.HTML or
C:\mcafee\Safe_ScanReport.HTML will be generated. At the end of the scan, it
will be
displayed in your browser (Opera, FireFox or Internet Explorer). However, if
you are using
WinXP, Win2K or Win2003 your system will be left in a state where you will have
to manually
shutdown/reboot the PC. On Win9x/ME platforms the report will not be shown in
your bowser
but your PC will automatically be shutdown. It is suggested that you move the
report out of
c:\mcafee before performing another scan.
It would be best to scan in both Safe Mode and in Normal Mode and save a copy of
the HTML
report for each session.
ALTERNATE:
Part 1
-----------
Secured2K's SpyAxe, PSGuard, Smitfraud, Sinnaka and Alemod removal tool.
http://secured2k.home.comcast.net/tools/AntiPuper.exe
http://forums.mcafeehelp.com/viewtopic.php?t=65072
Part 2
-----------
S!ri's SmitfraudFix
http://siri.urz.free.fr/Fix/SmitfraudFix_En.php
Please Copy and Paste the contents of the HTML Log files;
C:\mcafee\Normal_ScanReport.HTML & C:\mcafee\Safe_ScanReport.HTML in your reply.
* * * Please report back your results * * *
--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm
|
|
Posted by =?Utf-8?B?UGFuZGFfbWFu?= on May 19, 2006, 1:09 am
If you were Registered and logged in, you could reply and use other advanced thread options
> I don't have winzip or and virus removers. I just have the free version
> of Ad-Aware.
>
... which is equal to *nothing*
To clean you computer , perform the instructions in my site
http://pandaman.my.contact.bg
As soon as you clean , visit the other sections and start protecting your
computer.You'll see it can be easy and much safer ;-)
Panda_man
--
Bronze level Contributor
http://pandaman.my.contact.bg
Please , rate posts
|
|
Posted by English Dude on May 26, 2006, 6:39 pm
If you were Registered and logged in, you could reply and use other advanced thread options
|
| Similar Threads | Posted | | Help needed | March 13, 2007, 11:26 am |
| Virus Help Needed Bad | November 12, 2006, 12:20 pm |
| The much anticipated and needed patch will be available in about 2 hours | January 5, 2006, 3:00 pm |
| Secure DNS | October 7, 2007, 10:36 am |
| simulation virus spread, thesis information needed | September 20, 2006, 1:16 am |
| 128 bit encryption secure? | July 14, 2006, 12:21 am |
| Secure "Lab" Computer | January 27, 2007, 8:17 pm |
| F-Secure Anti-Virus 2006 | October 13, 2006, 6:27 am |
| Secure your endpoints easily with SecureWave Application Control!!!! | July 4, 2006, 9:11 am |
|
XML site map