Re: Is this Smitfraud?
- From: "ridged43" <ridged43@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 28 Dec 2005 11:30:02 -0800
Thanks Dave. I thought that might be the solution but the email sending made
me wonder if something else was going on. I'll run the tools tonight.
"David H. Lipman" wrote:
> From: "ridged43" <ridged43@xxxxxxxxxxxxxxxxxxxxxxxxx>
>
> | I'm trying to clean a PC that has some of the Spyaxe symptoms. I have the red
> | X in the systray that states windows has detected the PC is infected with
> | spyware. Click here to download the latest updates. When you click the red X
> | or anywhere in the box the message disappears but then comes back. When I go
> | online I get multiple pop ups and NAV starts scanning dozens of emails that
> | are being sent from Outlook Express but not by me. NAV 2005, Adaware SE and
> | Spybot SD find nothing not even in safe mode.
> | Thanks in advance...
>
>
>
> Two part reply..
>
> Perform Part 1 then perform Part 2.
>
> It is suggested that you execute each tool in Normal Mode then in Safe Mode.
>
> If you are using any version of Sun Java that is prior to JRE Version 5.0, then
> you are are strongly urged to remove any/all versions that are prior to JRE
> Version 5.0. There are vulnerabilities in them and they are actively being exploited.
> It is possible that is how you got infected with malware.
>
> Therefore, it is highly suggested that if there are any prior versions of Sun Java
> to Version 5 on the PC that they be removed and Sun Java JRE Version 5.0 Update 6
> be installed ASAP.
>
> http://www.java.com/en/download/manual.jsp
>
>
>
>
> Use the alternate if the first two parts are ineffective...
> Note: Alternate only for Win2K, WinXP and Win2003 Server
>
> Part 1
> -----------
>
> Use noahdfear's SmitFraud and SpyAxe removal tool -- SmitRem.exe
> http://noahdfear.geekstogo.com/click%20counter/click.php?id=1
>
> http://www.bleepingcomputer.com/forums/topic36868.html
>
>
> Part 2
> -----------
>
> Download SmitFraud.exe from the URL --
> http://www.ik-cs.com/programs/virtools/SmitFraud.exe
>
> Execute; SmitFraud.exe { Note: You must accept the default of C:\McAfee }
> Choose; Unzip
> Choose; Close
>
> NOTE: You may have to disable your software FireWall or allow WGET.EXE to go through your
> FireWall to enable WGET.EXE to download the needed McAfee related files.
>
> Execute; c:\mcafee\clean.bat
> { or Double-click on 'Clean Link' in c:\mcafee }
>
> A final report in HTML format called C:\mcafee\ScanReport.HTML will be generated. At the
> end of the scan, it will be displayed in your browser (Opera, FireFox or Internet Explorer).
> It is suggested that you move the report out of c:\mcafee before performing another scan.
>
> Alternate:
>
> Secured2K's SpyAxe, PSGuard, Smitfraud, Sinnaka and Alemod removal tool.
>
> http://secured2k.home.comcast.net/tools/AntiPuper.exe
>
> http://forums.mcafeehelp.com/viewtopic.php?t=65072
>
>
> Please Copy and Paste the contents of the HTML Log file; C:\mcafee\ScanReport.HTML in your
> reply.
>
> * * * Please report back your results * * *
>
>
> --
> Dave
> http://www.claymania.com/removal-trojan-adware.html
> http://www.ik-cs.com/got-a-virus.htm
>
>
>
.
- References:
- Re: Is this Smitfraud?
- From: David H. Lipman
- Re: Is this Smitfraud?
- Prev by Date: Re: Is this Smitfraud?
- Next by Date: Re: SPYWARE INFECTION
- Previous by thread: Re: Is this Smitfraud?
- Next by thread: Re: Is this Smitfraud?
- Index(es):
Relevant Pages
|
