Show Posts
1
Tech Clinic / topantispyware
« on: February 03, 2008, 03:04:21 PM »
[quote name=\'guestolo\' post=\'420805\' date=\'Feb 3 2008, 01:17 PM\']Can you try the following
Download this file - Combofix.exe and save it ONLY to your desktop
We'll need it later
Also:
Download [color=\"red\"]SmitfraudFix[/color][/url] (by S!Ri)
Extract the contents (a folder named SmitfraudFix) to your Desktop.
Print the remainder of these instructions or save them to a text file on desktop
Please reboot your computer in Safe Mode by doing the following :
Open the SmitfraudFix folder and double-click smitfraudfix.cmd
=============================================================
Select option #2 - Clean by typing 2 and press "Enter" to delete infected files.
You will be prompted : "Registry cleaning - Do you want to clean the registry ?"; answer "Yes" by typing Y and press "Enter" in order to remove the Desktop background and clean registry keys associated with the infection.
The tool will now check if wininet.dll is infected. You may be prompted to replace the infected file (if found); answer "Yes" by typing Y and press "Enter".
The tool may need to restart your computer to finish the cleaning process; if it doesn't
Boot to Normal Windows
I'll need to see the log it generates later, by default it is located at
C:\rapport.txt
=============================================================
If your computer doesn't reboot, can you reboot back to Normal windows
Back in Windows
Ensure that SpySweeper is disabled so it won't interfere with any fixes we try
I don't have it installed but you should be able to right click it's icon by the clock and shut it down
Afterwards:
Double click combofix.exe & follow the prompts.
When finished, it shall produce a log for you.
It's default location is C:\Combofix.txt
Note:
Do not mouseclick combofix's window while it's running. That may cause it to stall
Post back all the following
1. Post the log from Combofix
2. Post the report from Smitfraudfix
3. Run a fresh scan/save logfile with Hijackthis and post it's log also[/quote]
I can not download combofix.exe, receive 404 error on url.
Download this file - Combofix.exe and save it ONLY to your desktop
We'll need it later
Also:
Download [color=\"red\"]SmitfraudFix[/color][/url] (by S!Ri)
Extract the contents (a folder named SmitfraudFix) to your Desktop.
Print the remainder of these instructions or save them to a text file on desktop
Please reboot your computer in Safe Mode by doing the following :
- Restart your computer
- After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
- Instead of Windows loading as normal, a menu with options should appear;
- Select the first option, to run Windows in Safe Mode, then press "Enter".
- Choose your usual account.
Open the SmitfraudFix folder and double-click smitfraudfix.cmd
=============================================================
Select option #2 - Clean by typing 2 and press "Enter" to delete infected files.
You will be prompted : "Registry cleaning - Do you want to clean the registry ?"; answer "Yes" by typing Y and press "Enter" in order to remove the Desktop background and clean registry keys associated with the infection.
The tool will now check if wininet.dll is infected. You may be prompted to replace the infected file (if found); answer "Yes" by typing Y and press "Enter".
The tool may need to restart your computer to finish the cleaning process; if it doesn't
Boot to Normal Windows
I'll need to see the log it generates later, by default it is located at
C:\rapport.txt
=============================================================
If your computer doesn't reboot, can you reboot back to Normal windows
Back in Windows
Ensure that SpySweeper is disabled so it won't interfere with any fixes we try
I don't have it installed but you should be able to right click it's icon by the clock and shut it down
Afterwards:
Double click combofix.exe & follow the prompts.
When finished, it shall produce a log for you.
It's default location is C:\Combofix.txt
Note:
Do not mouseclick combofix's window while it's running. That may cause it to stall
Post back all the following
1. Post the log from Combofix
2. Post the report from Smitfraudfix
3. Run a fresh scan/save logfile with Hijackthis and post it's log also[/quote]
I can not download combofix.exe, receive 404 error on url.