Here we go again

Discussion in 'Malware Help (A Specialist Will Reply)' started by FED UP, Feb 6, 2008.

  1. FED UP

    FED UP MajorGeek

    XoftSpySE tells me i have smitfraud . Everytime I run Ccleaner i have IEtemp files of varying sizes. I NEVER use IE i use firefox. I am also getting the following message when i do a google search :
    Google
    Error

    We're sorry...

    ... but your query looks similar to automated requests from a computer virus or spyware application. To protect our users, we can't process your request right now.

    We'll restore your access as quickly as possible, so try again soon. In the meantime, if you suspect that your computer or network has been infected, you might want to run a virus checker or spyware remover to make sure that your systems are free of viruses and other spurious software.

    If you're continually receiving this error, you may be able to resolve the problem by deleting your Google cookie and revisiting Google. For browser-specific instructions, please consult your browser's online support center.

    We apologize for the inconvenience, and hope we'll see you again on Google.
    To continue searching, please type the characters you see below:

    I have followed the RUNMEFIRST , i was not able to find the AVG spyware log dated for today, as i have just finished running it - AVG found nothing but 4 tracking cookies. If it is essential, i can try it again or post the log dated from yesterday that i WAS able to find in the log listing .
    Spybot finds nothing. Adaware finds nothing . Avast finds nothing. SmitfruadFix does not fix the problem . Trojan remover doesnt fix the problem .
    im at a loss , here .
     

    Attached Files:

    FED UP, Feb 6, 2008
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Did you purchase XoftSpy? If not, I suggest that you uninstall it as it is frequent source of false positives. You can attach a log from XoftSpy first if you wish but there is no sense having this on your PC if it is a free version because it will not help you fix any problems and as I said, it is a frequent source of misinformation.

    Your logs show no signs of an active SmitFraud infection. It is possible that stray registry keys could be left over from a previous infection but you do not have an active infection showing. You should however delete the below folders:

    C:\Program Files\Enigma Software Group
    C:\Program Files\iWin

    And you should uninstall Java(TM) 6 Update 3 which is out of date and update to the below:

    Sun Java Runtime Environment
     
    chaslang, Feb 7, 2008
    #2
  3. FED UP

    FED UP MajorGeek

    Files deleted and Java updated as recommended . I am still getting IE temp files every time i run Ccleaner. If i run Ccleaner 10 times in 30 seconds, every time it runs it deletes something like this : IE Temporary Internet Files (6 files) 53.49KB
    The longer in between cleanings, the more IE temp files , and the larger the overall size of the files. I never use IE. I am certain this is not normal , something is going on that concerns me .
    What could the source of these files be ?
     
    FED UP, Feb 7, 2008
    #3
  4. FED UP

    FED UP MajorGeek

    Can anyone help me with this issue ? - - Abri - any suggestions ?
     
    FED UP, Feb 9, 2008
    #4
  5. FED UP

    FED UP MajorGeek

    Would somebody please help me firgure out this problem ?
     
    FED UP, Feb 10, 2008
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    This cost you a day or more of waiting time!


    And this post cost you another day of waiting time. You need to read the stickies that are posted in the forum for a reason. See: Don't Bump! It Only Hurts You!!!


    If you open up a browser, you have temp files. Anytime you surf you will get temp files and cookies this is normal. Even if you do not open IE, it is possible that your system is using it to get updates. Windows requires IE to properly stay updated. And other programs that you may be getting updates for could be using IE too. You even have WinAMP set to the below:

    C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html

    which means WinAmp has added a toolbar to IE too.

    You could go to your TIF folder and delete everything in it yourself. It is possible that for some reason CCleaner is unable to delete certain files but this does not mean it is malware.

    Instead of just trying to clean or delete the files in the TIF, why don't you try looking at them to see what they are. Perhaps it will shed some light on where they are coming from.
     
    chaslang, Feb 11, 2008
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds