Re: Adware and hijacking, please help!
- From: "David H. Lipman" <DLipman~nospam~@Verizon.Net>
- Date: Sat, 4 Nov 2006 11:23:15 -0500
From: "Robin" <Robin@xxxxxxxxxxxxxxxxxxxxxxxxx>
| Please forgive me I am not super computer literate but I really need some help.
|
| A couple of days ago I noticed a weird little icon in the tray on the right
| hand side of the screen near the clock. It was blinking between a question
| mark and an X and sometimes a little bubble would come up that said "critical
| system errors!" If you click on it or open Internet Explorer you are taken to
| "iesecurepage.com" and it tries to tell me that I have adware on my PC and I
| need to download this program to fix it. Well I don't trust this program and
| I think it is what is causing the problems so after searching for help I go
| to try to doanload ad-ware because it is a well known trusted program.
| Whenever I click on the link to try to download it I am taken to what looks
| like a "cannot find server" page and a little bar is at the top (like when a
| pop up is blocked) that says "this web site is being blocked because you have
| spyware on your PC, click here to download spyware doctor to fix it" But I
| don't want to download spyware doctor. Please help me fix this, I don't want
| to have to reformat my hard drive.
|
| Also I tried to do a system restore from about a week agu but it failed
| because it said there had been no changes made to my computer.
Two part reply..
Perform Part 1 then perform Part 2.
If the first two parts don't work, perform the alternate section.
It is suggested that you execute each tool in Normal Mode then in Safe Mode.
Part 1
-----------
Use noahdfear's SmitFraud, SpyAxe, SpyFalcon, et. al., removal tool -- SmitRem.exe
http://noahdfear.geekstogo.com/click%20counter/click.php?id=1
http://www.bleepingcomputer.com/forums/topic43659.html
Part 2
-----------
Download SmitFraud.exe from the URL --
http://www.ik-cs.com/programs/virtools/SmitFraud.exe
Execute; SmitFraud.exe { Note: You must accept the default of C:\McAfee }
Choose; Unzip
Choose; Close
NOTE: You may have to disable your software FireWall or allow WGET.EXE to go through your
FireWall to enable WGET.EXE to download the needed McAfee related files.
Execute; c:\mcafee\clean.bat
{ or Double-click on 'Clean Link' in c:\mcafee }
A final report in HTML format called C:\mcafee\Normal_ScanReport.HTML or
C:\mcafee\Safe_ScanReport.HTML will be generated. At the end of the scan, it will be
displayed in your browser (Opera, FireFox or Internet Explorer). However, if you are using
WinXP, Win2K or Win2003 your system will be left in a state where you will have to manually
shutdown/reboot the PC. On Win9x/ME platforms the report will not be shown in your bowser
but your PC will automatically be shutdown. It is suggested that you move the report out of
c:\mcafee before performing another scan.
It would be best to scan in both Safe Mode and in Normal Mode and save a copy of the HTML
report for each session.
ALTERNATE:
S!ri's SmitfraudFix
http://siri.urz.free.fr/Fix/SmitfraudFix_En.php
Please Copy and Paste the contents of the HTML Log files;
C:\mcafee\Normal_ScanReport.HTML & C:\mcafee\Safe_ScanReport.HTML in your reply.
* * * Please report back your results * * *
--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm
.
- Follow-Ups:
- Re: Adware and hijacking, please help!
- From: Emilio Wilde
- Re: Adware and hijacking, please help!
- Prev by Date: Re: Prevent from program installation
- Next by Date: Re: popcorn
- Previous by thread: Re: password
- Next by thread: Re: Adware and hijacking, please help!
- Index(es):
Relevant Pages
|
