Another Day, Another Poor Sap..... (Me)

Started by Blakey, September 02, 2005, 07:40:25 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Blakey

Hey guys, and girls, i'm yet another of these people who has contracted spyware, and i've looked over a lot of other threads that seem very like my problem, but aren't quite it.
If there is a thread describing (and fixing) my problem somewhere, i'd love a link, but otherwise, here is whats going on.

Like many others I have got a little red circle with a white X in it in my toolbar. Not only that, i have two, both of which regularly "remind" me that i have "got spyware, and they can help me get rid of it." they tell me to click on them to download "Microsofts" latest "antispyware"

Hmmmmm.....

I also had the desktop of doom, but different. Mine was blue, with a red square telling me i was infected. Duh.

I managed to get rid of that, by using Rawe's (i think) little registry edit.

Also, something was hogging my bandwidth horribly, and causing a lot of my desktop and toolbar programs to quit themselves, through lack of memory or something.

I downloaded AdAware, AVG 7, and SpyBot S and D. I also got that CCleaner thingy. i Have run adaware about 300 times, and it finds stuff every time. Spybot also finds stuff, and so does AVG. I thought i had beaten it last night, as everything was normal, but i restarted and it was back. Except the desktop.

Any help would be greatly appreciated.

Cheers in advance, Blakey

Die Hard

        Hello and welcome here, Blakey :)

        It sounds like if you´ve got the smitfraud infection. One of its variants.

        Please do this:
        Please go here and download Ewido Security Suit:
http://www.ewido.net/en/download/

A quick guide is found here:
  http://www.greyknight17.com/spy/Tutorials/ewidoQuickGuide.pdf

  • Install ewido security suite
  • Launch ewido, there should be an icon on your desktop double-click it.
  • The program will now go to the main screen
You will need to update ewido to the latest definition files.

  • On the left hand side of the main screen click update
  • Then click on Start Update
The update will start and a progress bar will show the updates being installed.
If you are having problems with the updater, you can use this link to manually update Ewido.
Ewido manual updates

Close the program for the time being.

then.....

Download HiJack This from here:  http://www.thespykiller.co.uk/files/HJTsetup.exe

This will download HiJack This to your computer, choose "Save" and navigate to the folder where it´s saved and doubleclick upon it.
This is a complete installer that installs Hijackthis onto the computer to C:\Program Files\HijackThis and makes an entry in the start menu & allows you to have a shortcut on desktop as well.
Do nothing with it yet.

then.......

Reboot into safe mode. (Reboot your computer and during the startup process,tap the F8-key repetedly.)

Once in safe mode, open the Ewido scanner and........
  • Click on scanner
  • Click on Complete System Scan and the scan will begin.
On the first alert, a window will open prompting you to take action. Checkmark "Remove" and "Perform action on all detections".
  • Once the scan has completed, there will be a button located on the bottom of the screen named Save report
  • Click Save report.
  • Save the report .txt file to your desktop.
Now close ewido security suite.

Reboot normally again.

then.........
Doubleclick the HJT icon on your desktop, hit "Do a system scan and save logfile". Save the logfile and a txt-file will be produced.. Copy that one and paste it here together with the report from Ewido and we´ll have a look at them.

regards

Die Hard :)
I create and edit my posts in GS-NOTES

winchester73

Speak softly, but carry a big Winchester ... Winchester Arms Collectors Association member