Hi jagguy,
1. Download SmitfraudFix (from here
http://siri.urz.free.fr/Fix/SmitfraudFix.zip S!Ri-latest version). Put it on the desktop and unzip the files.
2. Start up your comp in safe mode.
3. Open the file smitfraudfix, and doubleclick smitfraudfix.cmd.
Choose option 2 - Clean by giving in 2, then click Enter to delete the infected files.
The next question will be: Registry cleaning - Do you want to clean the registry ?
Give in Yes by giving in y ,then click Enter.
The tool will now check of wininet.dll has been infected.You can expect a question like you want to replace the infected file.
*Answer yes by giving in y ,then cl;ick Enter.
It is possible the tool asks you to restart to finish its job.
* If not you have retart your pc manually in normale mode.
A textfile will appear with the results of this fix.
* Post the contents of this log txt in your next reply together with a HJT log.
(You can also find this txt in c:\rapport.txt)
4. * Clean up the Cache and Cookies in IE: Using ATF Cleaner from here:
http://www.atribune.org/ccount/click.php?id=1 * Clean de Cache and Cookies in Firefox (In when Firefox is installed: also with
ATF Cleaner, tick Firefox.
* Clean other Temporary files + Bin
* Go to Start > Command prompt and give in cleanmgr and click ok.
* Let your system scan for files that should be deleted
* Take care to only delete "Temporary Files, and "Recycle Bin", by ticking these.
* Then click OK.
5. Restart your computer in normal mode.
All's fine that ends fine,
polonus