i asked the other night about a website that comes up when i log on to the net?

Question

i have tried all of the suggestions but i cant get rid of it . its called a safety page thats telling me some sort of error and to download this, and i think the other one underneath it is called malware wipe can you please help me to get rid of it

Answer 1

Hello dizzydi,

I saw your question the other night and wanted to answer but you had resolved it before I could.
The answer you selected as best, while correct for amending a homepage, is not the solution to your problem.

This problem you are having sounds to be like a Hijack and changing your homepage will not do a thing.
A Hijack is a crafty virus that settles into your computer, tells you that you have a virus and opens web pages for "anti-viruses" promising that if you download them (and therefore pay), then the virus will be removed. It is a scam, and you should not pay or attempt to download anything.

A Hijack is usually something that normal Spyware/Antivirus tools cannot remove, but please try the following so we can get your system virus free:

IMPORTANT - Do not attempt to do what Burnemwill suggests. Yes, you do have a Hijack, so yes you probably will need to download the Hijackthis program, but to delete all items as he suggests will render your computer useless because Hijackthis is a program that follows all running processes on your computer, hence if you delete, you delete all running processes, ie the basic core of your operating system.
You have been warned!

You do not say what Operating System you are using. These instructions are mainly for Windows XP but you should be able to follow them, as most of the Windows systems are similiar.

You may want to print out or copy these instructions before you begin because some of these tasks require you to be off-line.

The first thing you should do is make back up copies of all your important files - photos, financial data etc; things you could not get again if lost. Use a CD burner if you have one. If not, buy a removable USB memory stick.

Clean up your computer: click on Start, then All Programs, then Accessories, then System Tools, then Disk Cleanup; click Ok when the list appears and this will clean up some of your system.

Next Click on Start, then All Programs, then Accessories, then System Tools, then Disk Defragmenter. Click on Analyze and you will get either a message saying you do not need to defragment in which case Click on Close, or you do need to defragment in which case Click Ok/Defragment. This sorts all the computer's files and may take some time.

Do you have an antivirus?
If not, download AVG antivirus from Grisoft:

http://free.grisoft.com/doc/5390/lng/us/...

Click file avg75free then save. Once downloaded open program and install and then run a full scan to check for viruses.

Do you have a firewall?
If not, download Zone Alarm from here:

http://www.zonelabs.com/store/content/company/products/znalm/freeDownload.jsp?dc=12bms&ctry=GB&lang=en

There is no need to Click on the freescan because it doesn't remove viruses, just informs of them and you already know your computer is infected so ignore this and Click on Download FREE Zonealarm. This will make your computer virtually invisible to potential hackers and stop your personal details being stolen.

Please download Spybot - Search and Destroy from Here:

http://www.spybot.com/

And do a full system scan. This will find and delete any infections on your computer.

If you are still infected, it means we're getting to the serious stuff, so download Ewido from here:

http://www.ewido.net/en/download/

Click on Download Now. Important - Save it to your desktop.
Open the program. Top left of the screen is the Resident Shield option with a tick and "active". Click on Change State. The tick should change to a red exclamation mark with the word "Inactive". This is to stop problems with the registry when scanning. Do not run the scan yet.

Close Ewido and reboot (restart) your system, and boot up in Safe Mode. To do this, keep tapping F8 as your system is starting. You should get a black menu screen with several options. If not, restart your computer and try again. Select Safe Mode and press enter.

If you have a Login, then Login as normal.
Windows will open but will look very different as you know it, your desktop background will have disappeared, many functions will not be accessable, including the internet, and your desktop icons will have been moved or look different. THIS IS NORMAL.

Click on the Ewido icon on your desktop and run a full scan.
At the end of the scan, follow the instructions and save the scan report to your desktop. Reboot your computer and start in normal mode (restart computer as normal).

Now, go here:

http://www.kaspersky.com/virusscanner

Click on Kapersky Online Scanner and follow the instructions. This scan will not delete infections but will inform you if you have them. Make sure you save the scan report.

Your system should be a lot cleaner after running the AVG, Spybot and Ewido scans, but if the Kaspersky scan indicates something then it will most likely be a Hijack, which can be a serious threat.

In that case: I use a site called xpforum, which helps with problems like this. Everything I have told you, I learnt from the people at this site. They are very helpful and efficient.
I suggest you post your question there and let the experts help you.

Go here:

http://www.xpforum.co.uk/forums/

Don't forget to give as much information as possible ie what windows you are using (98, ME, XP), Service Pack etc. Give all the details as you have written them in your original question, and also give the results of your Ewido and Kaspersky scans. The experts there will help you, as they have me. Your system should be bug free within a few days.

Feel free to email me if you are having problems (Click on my avatar, send email).

Good luck with it, and don't forget to back-up your files first ;)

Answer 2

Here is another free removal tool and procedure, just in case the excellent advice and link given to you by rainy-h doesn't work for you.

http://www.internetinspiration.co.uk/roguefix.htm

By the way, the name of the virus you have is called Smitfraud and most general-purpose anti-virus programs will not get rid of this pest.

Answer 3

Did you turn off System Restore?
And did you run an anti spyware in Safe Mode?
If that really didn't work, you need to use Hijack This and post the log on their forum - but its very technical and not for novice users.

Before attempting to remove malware you must switch off System Restore as back up files will be hiding in there, and it will just restore itself. Go to Start - programs - accessories - system tools - system restore.
Run your anti virus and AVG Anti spyware in Safe Mode. To get into Safe Mode repeatedly press the F8 key after the bios screen loads but before Windows loads. You'll know if you made it because the screen will be at 800 x 600 and your pc will be slow.

Then beef up your security. Its easier to prevent malware getting on to your sytem in the first place rather than trying to remove it.

The Windows firewall doesn't stop malware on your pc from dialling out. Zone Alarm firewall is free for personal use and stops unwanted incoming and outgoing traffic. You choose which programs are allowed to access the internet. It's fairly easy to use and updated regularly.
http://www.zonelabs.com Zone Alarm firewall

Shields Up security site;
https://www.grc.com - check your firewall works
http://www.grc.com/optout.htm - grc anti spyware program and info.

http://www.mozilla.com/ Firefox web browser
http://www.opera.com/ Opera web browser
Instal both these web browsers, turn off javascript on one and use that browser for vising unknown websites. They don't support Active X so thats one less way for problems to get on your pc.

Winpatrol is a handy utility that tracks cookies on your pc and stops unwanted changes to your startup folder.
http://www.winpatrol.com

Spywareblaster works with Internet Explorer and Firefox. It won't uninstall spyware that is already on your pc, but it will prevent hijacks and other malicious changes to your browser.
http://www.javacoolsoftware.com

http://www.siteadvisor.com -Site Advisor warns about malware on sites you are about to visit.

http://www.avast.com - Avast Antivirus

http://www.ewido.net - AVG(Ewido) anti trojan

http://www.lavasoft.com - Ad-Aware SE Personal anti adware

http://www.safer-networking.org - Spybot Search and Destroy anti spyware

http://spywarewarrior.com/rogue_anti-spyware.htm - The Spyware Warrior site identifies fake anti spyware programs.

http://www.bitdefender.com -BitDefender can be used as a second, on demand anti virus.

http://www.ccleaner.com Cr*pcleaner Registry cleaner and privacy tool

You can also download Microsofts free Windows Defender from the official Microsoft site, and the Malicious Software Removal Tool.

Remember to update and run all of you anti malware programs at least once a week.

Answer 4

The info on this website will tell you how to get rid of this rogue program, you'll need to print them out and read it through, coz you will have to shut down your computer half way through the process:

http://www.bleepingcomputer.com/forums/topic58401.html

Answer 5

Do what jibber told you. Follow the instructions at the site and it will be removed.

Answer 6

Try running your anti spyware in safe mode.
You may want to look here.
http://vil.nai.com/vil/pups/configuration.aspx

Answer 7

this is the best process for any adware:

Download hijackthis for free from: http://www.majorgeeks.com/download3155.html

Scan

Then remove all items, it is effective, finds all items that that others do not, and does not come with any enclosed spyware.

Good luck

Answer 8

install hijackthis from (http://www.spywareinfo.com/~merijn/programs.php#hijackthis)
save log file and send it to me.(kashiwale100@yahoo.com)