smitfraud problems

Hey, I thank you for all your help in the past. I have been diligent in protecting against malware, and I have kept it away pretty good. At least keeping it at bay. Now, it seems I have one of these smitfraud deals, and it will not leave me alone at all. It keeps reinstalling spyaxe3.0. I have attached my HJT log and smit log. Can you tell me how to fix this one? Also, what can I do to prevent it? Switching to Mozilla has really helped in not getting infections, but spyware software still gets detected, just not nearly as much. Thanks again for your help. Scott

 

Spyaxe problem

Hey chaslang,

Sorry I didn't relist before. I had bookmarked that page from my previous problem. I can't believe these malware people actually think they can infect our computers with something just so we will buy their protection. What is that? Isn't that extortion or something? Anyways, this one has to be the most annoying. It "pop"s about every ten seconds with a text bubble coming up from my active programs toolbar. It tells me how my computer is infected and to click on it to get the fix. It is an arrow to their website. Also, it does uninstall with it's own uninstaller, and it stays gone as long as I am not connected to the internet. As soon as I am connected to the internet again, the spyaxe program reinstalls itself again. I ran through the first sticky steps with no real affects. Actually, I have run through that page, the smitfraud... page you sent me, and the smitrem.exe program with no visible results whatsoever. None of the registry keys were in my scan that you had flagged. I wish there was something I could get that would keep this stuff away. I hate to bother someone about my problems, when I should be able to fix them myself. Anyways, I am attaching the smit file and the panda log. The fix did not affect the pop-up text bubble from the active toolbar or the installation of the spyaxe program. Please help. Sincerely, Scott

 

Hi Chaslang,

I deleted all things that were on my Panda log. One .dll file, wbeconm.dll, would not delete, but I remembered from a previous fix that I can rename these .dll files to get rid of them. Sure enough, I renamed it wbeconm.not, and then rebooted, then brought it back up and deleted it. That, finally, rid me of the spyaxe bug. Interesting about this one, it always started with windows no matter in regular mode or safe mode. Also, if I deleted, or uninstalled the spyaxe software, it would reinstall itself within five minutes. But it would not reinstall itself when I wasn't connected to the internet. So the fix above was done when I had broken off my internet connection. I appreciate your help and patience. It is a bummer that there isn't a good spyware cleaner that can clean these types of problems yet, but one will be out soon. Thanks for your time! Sincerely,
Scott