Question by Matt E: pop ups, like by no means just before “registry fix” “patchupdate” “regproscan”, how do I get RID OF THEM? Please?
I don’t even feel I have to be logged on, I get these pop ups saying I have to log onto registryfix.com, or patchupdate.com.
I even paid to download from registryfix.com and I’m still obtaining the pop ups. They are so annoying. I’ll walk away from the computer and have 20 by the time I get back. I’m not very educated about this stuff, so if someone could aid me in idiot proof directions, I would value it. It really is really driving me crazy.
Greatest answer:
Answer by Interested Dude
Take a appear at some of the anti spyware items I describe at http://weblog.360.yahoo.com/wektech and try a couple of them. Most will work finest in safe mode on your Pc. If you nevertheless have troubles, try out posting a hijackthis! log at bleepingcomputer.com.
Know far better? Leave your personal answer in the comments!
Download AdAware SE and update it. Run it and the ewido in the procedure.
http://www.filehippo.com/download_ad-aware/
Trojan Removal Procedure.
Removing infections from your computer is never as easy as aquiring them. Malware infections are not meant to be removed so it takes TIME and PATIENCE to get rid of them. If you do not have T & P then you can always do a Reformat.
Malware is a general word for all form of Viruses, Spyware etc. This procedure works for all Malware. Replace the Ewido program with the appropriate program.
You might be unable to access the Internet after removing the Malware so you will need to run LSPfix or Winsockxpfix (as appropriate). Download one and save to desktop, run it later.
LSPfix: all Windows OS except 95.
http://www.cexx.org/lspfix.htm
Winsock XP Fix: Windows XP only.
http://www.spychecker.com/program/winsoc...
Download and Update Ewido (now called the AVG Antispyware):
http://www.ewido.net/en/download/...
– If you have problems updating see here:
http://www.ewido.net/en/download/updates...
Once the updates are installed do the following:
Let’s get cleaning
Part 1
• Temporarily show hidden files.
For Windows XP:
1.
Click Start, and then click Control Panel.
2.
Click Appearance and Themes, and then click Folder Options.
3.
On the View tab, under Hidden files and folders, click “Show hidden files and folders”, and clear(uncheck) the “Hide protected operating system files” check box.
For older systems:
1.
Double-click My Computer, click View, and then click Folder Options.
2.
On the View tab, under “Hidden files and folders”, click “Show hidden files and folders”, and clear (uncheck) the “Hide protected operating system files” check box.
IMPORTANT: Files are hidden by Windows for a very good reason. It is not wise to experiment with these files. Unfortunately, to successfully remove modern spyware we must turn this protection off temporarily. Please turn the protection back on when you have finished cleaning your system.
Empty your Internet Explorer cache and your other temporary file folders:
1.
On the Internet Explorer Tools menu, click Internet Options.
2.
On the General tab, in the Temporary Internet Files section, click the Delete Files button. This will delete all the files that are currently stored in your cache.
3.
Select the Delete all offline content check box in the confirmation dialogue box that appears, click OK.
4.
Click OK again.
Restart in Safe Mode:
To do this you need to hold down or repeatedly tap the F8 key while the computer is booting (when the computer is displaying a black screen with white text). When the boot menu appears, use your keyboard arrows to select “Safe Mode.”
Safe Mode can look quite ugly. The color may look bad, and all of your desktop icons will be very large. This is normal.
Start Scan and let Ewido scan the PC
When the scan and removal are completed REBOOT COMPUTER. This will restart you in normal mode.
If you are unable to access the Internet after removing Malware you will need to run LSPfix or Winsockxpfix (as appropriate).
If you are using Windows XP Service Pack 2 (SP2) and are unable to access the Internet after removing Malware, there is a command that may fix the problem, removing the need to run Winsockxpfix. It works by resetting the winsock catalogue. Click on Start, then Run and type CMD in the dialogue box that appears. Click OK. Type “netsh winsock reset” (no quotes)into the DOS window that appears.
The last steps
If you are running Windows XP or Windows ME, and your computer has been successfully cleaned of Malware, there is one more thing that needs to be done.
Delete any old restore points and then create a new restore one. The old ones may, of course, be infected with the Malware and cannot be used.
First, start and then stop the Restore Service. This is done differently depending on what operating system you are running.
Windows XP:
1.
Click Start, and then click Control Panel.
2.
Click Performance and Maintenance, click System, and then click on the System Restore tab.
3.
Select the Turn Off System Restore check box, click Apply, then restart your computer.
4.
Return to the System Restore Tab and turn System Restore back on.
Windows ME:
1.
Click Start, click Control Panel, click System.
2.
Click Performance, click File System, and then click Troubleshooting.
3.
Enable the option Disable System Restore, click Apply then restart your computer.
4.
Return to the Troubleshooting tab and turn System Restore back on.
To set a manual restore point complete the following steps:
1.
Click the Start button.
2.
Point to Programs, then navigate to Accessories, then System Tools, then click System Restore.
3.
Choose Create a restore point, and then click Next.
4.
In the Restore point description box, type a name for your restore point, and then click Next.
5.
Click OK.
There are Trojans that fall into the Smitfraud family. These require the use of a specialized program for removal. Here are two sites that specialize in removing these:
http://www.internetinspiration.co.uk/rog...
http://siri.urz.free.fr/fix/smitfraudfix...
I’d do both an antivirus and antispyware scan with your current software (make sure you do a manual update before doing the scan)…
After you do that go to this site:
http://housecall.trendmicro.com
Do an online scan there and it’ll let you know what threats you have and give you details on riding any it cannot remove.
Also, microsoft launced a safety beta tool that can help remove common spyware/viruses and clean out your regestry. You can do a scan at:
http://safety.live.com
Hope this helps… Good luck…
http://www.castlecops.com/postp589600.html
check this out…from a microsoft mvp
if that dont work…do this
http://www.superantispyware.com/superant…now that u have what u need….lets clean the pc first
go to start..run..type in msconfig…..press ok…new window…press start up..select disable all.press apply..press ok
go to start..run..type in prefetch in new window in top left corner..select edit..select all..press delete…….yes..delete all…
go to start..all programs..system tools..disc clean up..select c drive..after it has finished analyzing..check all the boxes..press ok..when it has finished cleaning..it will disappear…
now go to start..control panel…folder options…..view…u will see a option that says “show all hidden files and folders”..check that..press apply..press ok…..
ok….now we need to go into safe mode….turn off ur computer…..as soon as u turn it back on…u have to press f8 repeatedly until u see a screen that shows u several different options…..u need to enter the option ” safe mode” use the arrow keys on keyboard to scrool to it..then press enter…after u afew moments..u will see log on as…..admin or user….select user….after that u will see ur desktop……now open antispyware..( please update this b4 going into safe mode)..click scan my computer….select full or complete system scan…..then press next..it might take ahour or so..after it has finished..remove what ever it finds…now close superantispyware….
go to start.run..type in…%temp%…press ok..new window..go to edit.select all..press delete..tes..delete all….
go to start..control panel…folder options…..view…click reset to default..press apply..press ok…
now restart your computer…u will see a pop up from system configuration…put a check mark in the little box..press ok
I cannot thank you enough for the blog.Really thank you! Fantastic.