Navigation
Install the app
How to install the app on iOS
Follow along with the video below to see how to install our site as a web app on your home screen.
Note: This feature may not be available in some browsers.
More options
-
Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
How to Remove smitfraud C
How to get rid of virus
How to Remove smitfraud C
by
pechenegs
Posted
(Edited
)
Here is The instructions for Smitfraud C removal!
http://forums.techguy.org/showthread.php?t=376692&page=1
This is an update for smitfraud C. This canned fix put together by flrman from the TSG forum based on Noadhfear's work. This is good for not only Smitfraud C, but also Spysheriff and antivirusgold!
here's the canned fix in full for all.
Note: for those running Win 98 and ME you should substitute Ewido with Adaware!
New canned fix for SpySherrif, Smitfraud & AntivirusGold
AntiVirusGold
Smitfraud
SpySheriff
* Click here to download smitRem.zip.
for W2k & XP
http://noahdfear.geekstogo.com/click%20counter/click.php?id=1
* Save the file to your desktop.
* Unzip smitRem.zip to extract the two files it contains.
* Do not do anything with it yet. You will run the RunThis.bat file later in safe mode.
* Go here to download CCleaner.
http://www.ccleaner.com/
* Install CCleaner
* Launch CCleaner and look in the upper right corner and click on the "Options" button.
* Click "Advanced" and remove the check by "Only delete files in Windows temp folders older than 48 hours".
* Click OK
* Do not run CCleaner yet. You will run it later in safe mode.
* Download the trial version of Ewido Security Suite.
http://www.ewido.net/en/
* Install ewido.
* During the installation, under "Additional Options" uncheck "Install background guard" and "Install scan via context menu".
* Launch ewido
* It will prompt you to update click the OK button and it will go to the main screen
* On the left side of the main screen click update
* Click on Start and let it update.
* DO NOT run a scan yet. You will do that later in safe mode.
* Click here for info on how to boot to safe mode if you don't already know how.
http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001052409420406?OpenDocument&src=sec_doc_nam
* Now copy these instructions to notepad and save them to your desktop. You will need them to refer to in safe mode.
* Restart your computer into safe mode now. Perform the following steps in safe mode:
* Run Hijack This again and put a check by these. Close ALL windows except HijackThis and click "Fix checked"
Add entries from the HJT log to be fixed here
* Open the smitRem folder, then double click the RunThis.bat file to start the tool. Follow the prompts on screen.
Wait for the tool to complete and disk cleanup to finish.
* Run Ewido:
* Click on scanner
* Click Complete System Scan and the scan will begin.
* During the scan it will prompt you to clean files, click OK
* When the scan is finished, look at the bottom of the screen and click the Save report button.
* Save the report to your desktop
* Start Ccleaner and click Run Cleaner
* Go to Control Panel > Internet Options. Click on the Programs tab then
click the "Reset Web Settings" button. Click Apply then OK.
* Next go to Control Panel > Display. Click on the "Desktop" tab then click the "Customize Desktop" button. Click on the "Web" tab. Under "Web Pages" you should see an entry checked called something like "Security info" or similar.
If it is there, select that entry and click the "Delete" button. Click OK then Apply and OK.
* Restart back into Windows normally now.
* Run ActiveScan online virus scan here
http://www.pandasoftware.com/activescan/
When the scan is finished, anything that it cannot clean have it delete it. Make a note of the file location of anything that cannot be deleted so you can delete it yourself.
- Save the results from the scan!
post another hijack this log, the ewido and active scan logs
For 98/ME systems:
http://noahdfear.geekstogo.com/click%20counter/click.php?id=1
* Click here to download smitRem.zip.
* Save the file to your desktop.
* Unzip smitRem.zip to extract the two files it contains.
* Do not do anything with it yet. You will run the RunThis.bat file later in safe mode.
* Go here to download CCleaner.
* Install CCleaner
* Launch CCleaner and look in the upper right corner and click on the "Options" button.
* Click "Advanced" and remove the check by "Only delete files in Windows temp folders older than 48 hours".
* Click OK
* Do not run CCleaner yet. You will run it later in safe mode.
* Go here and download Ad-Aware SE.
* Install the program and launch it.
* First in the main window look in the bottom right corner and click on Check for updates now
* Click Connect and download the latest reference files.
* Do not run Adaware yet. Just download the updates and have it ready to run later in safe mode.
* Click here for info on how to boot to safe mode if you don't already know how.
* Now copy these instructions to notepad and save them to your desktop. You will need them to refer to in safe mode.
* Restart your computer into safe mode now. Perform the following steps in safe mode:
* Run Hijack This again and put a check by these. Close ALL windows except HijackThis and click "Fix checked"
Add entries from the HJT log to be fixed here
* Open the smitRem folder, then double click the RunThis.bat file to start the tool. Follow the prompts on screen.
Wait for the tool to complete and disk cleanup to finish.
* Now launch Adaware:
* From main window click Start then under Select a scan Mode tick Perform full system scan.
* Next deselect Search for negligible risk entries.
* Now to scan just click the Next button.
* When the scan is finished mark everything for removal and get rid of it.
* Right-click the window and choose select all from the drop down menu and click Next
* Start Ccleaner and click Run Cleaner
* Go to Control Panel > Internet Options. Click on the Programs tab then click the "Reset Web Settings" button. Click Apply then OK.
* Next go to Control Panel > Display. Click on the "Desktop" tab then click the "Customize Desktop" button. Click on the "Web" tab. Under "Web Pages" you should see an entry checked called something like "Security info" or similar. If it is there, select that entry and click the "Delete" button. Click OK then Apply and OK.
* Restart back into Windows normally now.
* Run ActiveScan online virus scan here
When the scan is finished, anything that it cannot clean have it delete it. Make a note of the file location of anything that cannot be deleted so you can delete it yourself.
- Save the results from the scan!
Post a new HiJackThis log along with the results from ActiveScan
http://forums.techguy.org/showthread.php?t=376692&page=1
This is an update for smitfraud C. This canned fix put together by flrman from the TSG forum based on Noadhfear's work. This is good for not only Smitfraud C, but also Spysheriff and antivirusgold!
here's the canned fix in full for all.
Note: for those running Win 98 and ME you should substitute Ewido with Adaware!
New canned fix for SpySherrif, Smitfraud & AntivirusGold
AntiVirusGold
Smitfraud
SpySheriff
* Click here to download smitRem.zip.
for W2k & XP
http://noahdfear.geekstogo.com/click%20counter/click.php?id=1
* Save the file to your desktop.
* Unzip smitRem.zip to extract the two files it contains.
* Do not do anything with it yet. You will run the RunThis.bat file later in safe mode.
* Go here to download CCleaner.
http://www.ccleaner.com/
* Install CCleaner
* Launch CCleaner and look in the upper right corner and click on the "Options" button.
* Click "Advanced" and remove the check by "Only delete files in Windows temp folders older than 48 hours".
* Click OK
* Do not run CCleaner yet. You will run it later in safe mode.
* Download the trial version of Ewido Security Suite.
http://www.ewido.net/en/
* Install ewido.
* During the installation, under "Additional Options" uncheck "Install background guard" and "Install scan via context menu".
* Launch ewido
* It will prompt you to update click the OK button and it will go to the main screen
* On the left side of the main screen click update
* Click on Start and let it update.
* DO NOT run a scan yet. You will do that later in safe mode.
* Click here for info on how to boot to safe mode if you don't already know how.
http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001052409420406?OpenDocument&src=sec_doc_nam
* Now copy these instructions to notepad and save them to your desktop. You will need them to refer to in safe mode.
* Restart your computer into safe mode now. Perform the following steps in safe mode:
* Run Hijack This again and put a check by these. Close ALL windows except HijackThis and click "Fix checked"
Add entries from the HJT log to be fixed here
* Open the smitRem folder, then double click the RunThis.bat file to start the tool. Follow the prompts on screen.
Wait for the tool to complete and disk cleanup to finish.
* Run Ewido:
* Click on scanner
* Click Complete System Scan and the scan will begin.
* During the scan it will prompt you to clean files, click OK
* When the scan is finished, look at the bottom of the screen and click the Save report button.
* Save the report to your desktop
* Start Ccleaner and click Run Cleaner
* Go to Control Panel > Internet Options. Click on the Programs tab then
click the "Reset Web Settings" button. Click Apply then OK.
* Next go to Control Panel > Display. Click on the "Desktop" tab then click the "Customize Desktop" button. Click on the "Web" tab. Under "Web Pages" you should see an entry checked called something like "Security info" or similar.
If it is there, select that entry and click the "Delete" button. Click OK then Apply and OK.
* Restart back into Windows normally now.
* Run ActiveScan online virus scan here
http://www.pandasoftware.com/activescan/
When the scan is finished, anything that it cannot clean have it delete it. Make a note of the file location of anything that cannot be deleted so you can delete it yourself.
- Save the results from the scan!
post another hijack this log, the ewido and active scan logs
For 98/ME systems:
http://noahdfear.geekstogo.com/click%20counter/click.php?id=1
* Click here to download smitRem.zip.
* Save the file to your desktop.
* Unzip smitRem.zip to extract the two files it contains.
* Do not do anything with it yet. You will run the RunThis.bat file later in safe mode.
* Go here to download CCleaner.
* Install CCleaner
* Launch CCleaner and look in the upper right corner and click on the "Options" button.
* Click "Advanced" and remove the check by "Only delete files in Windows temp folders older than 48 hours".
* Click OK
* Do not run CCleaner yet. You will run it later in safe mode.
* Go here and download Ad-Aware SE.
* Install the program and launch it.
* First in the main window look in the bottom right corner and click on Check for updates now
* Click Connect and download the latest reference files.
* Do not run Adaware yet. Just download the updates and have it ready to run later in safe mode.
* Click here for info on how to boot to safe mode if you don't already know how.
* Now copy these instructions to notepad and save them to your desktop. You will need them to refer to in safe mode.
* Restart your computer into safe mode now. Perform the following steps in safe mode:
* Run Hijack This again and put a check by these. Close ALL windows except HijackThis and click "Fix checked"
Add entries from the HJT log to be fixed here
* Open the smitRem folder, then double click the RunThis.bat file to start the tool. Follow the prompts on screen.
Wait for the tool to complete and disk cleanup to finish.
* Now launch Adaware:
* From main window click Start then under Select a scan Mode tick Perform full system scan.
* Next deselect Search for negligible risk entries.
* Now to scan just click the Next button.
* When the scan is finished mark everything for removal and get rid of it.
* Right-click the window and choose select all from the drop down menu and click Next
* Start Ccleaner and click Run Cleaner
* Go to Control Panel > Internet Options. Click on the Programs tab then click the "Reset Web Settings" button. Click Apply then OK.
* Next go to Control Panel > Display. Click on the "Desktop" tab then click the "Customize Desktop" button. Click on the "Web" tab. Under "Web Pages" you should see an entry checked called something like "Security info" or similar. If it is there, select that entry and click the "Delete" button. Click OK then Apply and OK.
* Restart back into Windows normally now.
* Run ActiveScan online virus scan here
When the scan is finished, anything that it cannot clean have it delete it. Make a note of the file location of anything that cannot be deleted so you can delete it yourself.
- Save the results from the scan!
Post a new HiJackThis log along with the results from ActiveScan
Please Note: 1 is Bad, 10 is Good :-)
Part and Inventory Search
-
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.