Sign in
Microsoft.com
 
Microsoft
 
 
 

locked
I keep getting a system alert about this Spyware, i.e.trojan-spy.win32@mx. How do I get rid of it? RRS feed

 > 

All replies

  • Question
    Sign in to vote
    0
    Sign in to vote
    Trojan-Spy.Win32@mx is considered to be one of a rogue antispyware. It displays false security pop-up warnings and icons on taskbar.

    MANUAL REMOVAL:

    1. Temporarily disable System Restore (Windows Me/XP). [how to]

    2. Download Free Ewido Antispyware and save it to a desired location.

    3. After downloading, browse where the file was saved and double click to install it.

    4. After installation, connect to internet and download all necessary updates.



    5. Download SmitfraudFix (by S!Ri) and save it to a desired location. This will be in ZIP File.

    6. Extract all the files to your Desktop, it will create a folder SmitfraudFix

    Note: When extracting or executing, some files might be detected as Potential Threat or Harmful Script. Please disable AntiVirus or Any Script Blocking Software temporarily. It may harm or make the Fix incomplete.



    7. Reboot your computer in SafeMode [how to]

    8. Run Ewido and do a thorough scan. Delete all infected files.

    9. Close Ewido and other open Applications.

    10. Browse the folder SmitfraudFix on your Desktop and double-click on smitfraudfix.cmd

    11. "Enter your Choice: (1,2,3,4,L,Q):" Press no. 2 on your keyboard to select Option 2

    12. Wait for the process to finish.

    13. If prompted for: Registry cleaning - Do you want to clean the registry? Press Y, as Yes

    14. It will check if your wininet.dll file is damaged, if so it will ask you to Replace Infected File? Press Y as Yes and hit Enter


    15. If it prompts you to Reboot your computer, Please do so.

    16. In order to make sure that Trojan-Spy.Win32@mx is completely eliminated from your computer, carry out a full scan of your computer using Online Virus Scanner. Scan at least on three different scanner.
    Tuesday, March 11, 2008 7:47 AM
  • Question
    Sign in to vote
    0
    Sign in to vote

    I will be glad if you tell me step by step what to do including how to go to disable sysyem restore etc. from where it is to be done.

    Regards,

    pakmenon

    Tuesday, April 8, 2008 5:41 AM
  • Question
    Sign in to vote
    0
    Sign in to vote
    Hello friend, most of the steps are self explanatory and the rest things I am telling u..

    Ok to disable system restore, go to system properties (by right clicking the My Computer icon at desktop and then click properties or press the shortcut "Window + Pause/Break") and then go to "System Restore" Tab and then check the box "Turn Off System Restore in all drives" or type services.msc in run and disable the service named "System Restore".

    Secondly, you can find Ewido Antispyware at http://www.ewido.net/en/download

    Thirdly you can find     SmitfraudFix at many download sites. Here are two links from where you can download it..
    http://www.afterdawn.com/software/desktop_software/desktop_security/smitfraudfix.cfm
    http://www.bleepingcomputer.com/files/smitfraudfix.php

    And finally to go into the safemode press the F8 button when the pc starts (and keep pressing till the options of how to start the windows comes into the screen) but after the POST (Power On Self Test) or if you dont know about POST then no problem on pressing the F8 from starting will bring some other menu (of BIOS) then press "Escape" key (to escape from that menu) and then again press F8 key.

    I think that will remove all your doubts...

    Thanks & Regards
    Saket
    (pls mark the post as answer if it is)
    Tuesday, April 8, 2008 1:57 PM