| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 89998 | 2008-05-19 04:43:00 | Cant Remove Spyware- Help | learning (5137) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 670698 | 2008-05-19 04:43:00 | I have got spyware on PC somehow and now i cant get it off. It is displaying a spalsh screen on desktop saying PC is affected with spyware and to click here for a anti spyware dowload. It keeps popping up balloons every few minutes remind PC has spyware. Seems like a spyware is on PC promoting a anti spyware software to be downloaded. Ran NAV and it didnt pick up anything. Ran Spybot with latest update and it come swith warning box that "Command Service hs been shutdown" and Entry name is cmdservice. Also i cant bring up task manager to see whats running in background, when i do that now by cntrl+alt+delt i get error "The Task Manager has been disabled by administrator" When I try to update Windows Defender def files it says failed as if the internet connection is not there. i can bring up webpages, although they are extremely slow. Ca anyone tell me a alternat way of bringing up task manager via CMD or some other way to get rid of this spyware? Thanks |
learning (5137) | ||
| 670699 | 2008-05-19 04:46:00 | Get rogueremover in my sig update it then scan. See if it picks anything up Post a HJT log |
Speedy Gonzales (78) | ||
| 670700 | 2008-05-19 04:48:00 | NAV won't pick anything up, it's near to useless. Get rid of it if you can, it will make getting rid of this spyware infection easier thats for sure. Disable system restore, control panel/system properties/system restore. You have smitfrad, first thing to do is boot up in safe more with networking (by tapping F8 on bootup), download smitfraud fix (http://siri.geekstogo.com/), and run it through, options 1-3. Then boot up normally, go to www.eset.com/onlinescan in IE, and do a scan with Eset NOD32. make sure you tick both the boxes before running it. Run CCleaner (http://www.ccleaner.com/) through, do a normal and registry scan. Then post a HijackThis (www.trendsecure.com) log, and take note if there is any files that NOD32 picked up but couldn't delete (not likely though). |
wratterus (105) | ||
| 670701 | 2008-05-19 05:35:00 | Thanks Wratterus, i Downloaded the smitfraudfix file and when i run it in Safe mode with Netwroking , nothing happens when dbl click on it. I tried to "ran as" option and ran as admin , it gave error "this service cannot be started in safe mode" Any other way to fix this spyware. I still cannot bring up task manager and get erroe it has been disabled by System Admin. Thanks for any help |
learning (5137) | ||
| 670702 | 2008-05-19 05:37:00 | You saved siri.urz.free.fr to your desktop, in safe mode with networking, then ran it? I have never had that error message before, and I've used it hundreds of times. That task manager message is caused by spyware, we can clean it off and fix this problem. |
wratterus (105) | ||
| 670703 | 2008-05-19 05:43:00 | I would use trojan remover in my sig. Install and update it then click on scan. Then select all the options under the utilities menu, if task manager, the firewall, or regedit dont open. Its more than spyware. |
Speedy Gonzales (78) | ||
| 670704 | 2008-05-19 05:48:00 | Yer, use Trojan Remover after running SMF through. I know for a fact Trojan Remover doesn't get rid of most of smitfraud. | wratterus (105) | ||
| 670705 | 2008-05-19 05:54:00 | Well its got Trojan-Spy.HTML.Smitfraud.c and Trojan.FakeDesktop, b, c, and d in its database. Which says belongs to Trojan-Spy.HTML.Smitfraud.c It'll probably fix task manager, regedit and the firewall tho (if theyre disabled). So you can use them It may work better, IF you scan the hdd, not just click on scan in the program itself |
Speedy Gonzales (78) | ||
| 670706 | 2008-05-19 06:02:00 | Speeedy so which program should i use? "rogueremover" and what do yo umean "I would use trojan remover in my sig." whats in my sig? you mean dowload rogueremover and update its def files and then run scan? I tried running smitFraudFix but nothing happens. I dbl click on it and hr glass pops up for 1 sec and goes away and nothing happens. I tried this in both Safe and normal mode |
learning (5137) | ||
| 670707 | 2008-05-19 06:13:00 | Both, rogueremover and trojan remover. Theyre in my sig in this post. Click on the links, download the programs Install both, click on update (to update both), then click on scan Then in trojan remover select all of the options under utilities Then open my computer / highlight c, then right mouse / scan with trojan remover |
Speedy Gonzales (78) | ||
| 1 2 3 4 | |||||