duta
asked on
How to stop bogus "Critical System Error!"
Hi!
Since I downloaded (later removed) freeware online, I begn to get a bogus "critical system error!", saying
"Please read this message carefully. Your PC is infected with spyware. . . Click 'OK' to get software and special offers on
antivirus software. Once I clicked 'OK', I am directed to a website (http://www.pesttrap.com/?advid=177).
The "critical system error" pops up constantly and frequently, which is very annoying to me.
I will truly appreciate if you may kindly show me how to stop it.
Thanks a lot!
duta
Since I downloaded (later removed) freeware online, I begn to get a bogus "critical system error!", saying
"Please read this message carefully. Your PC is infected with spyware. . . Click 'OK' to get software and special offers on
antivirus software. Once I clicked 'OK', I am directed to a website (http://www.pesttrap.com/?advid=177).
The "critical system error" pops up constantly and frequently, which is very annoying to me.
I will truly appreciate if you may kindly show me how to stop it.
Thanks a lot!
duta
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Alternatively, you can try to restore your XP to a previous restore point.
I do recall that last week I had to deal with a computer with exactly the same symptoms as you describe, and there were two malware nasties that were defending each other (ending one of the processes just caused the other one to recreate it).
Restoring to a restore point a week earlier took care of the problem
Dabas
I do recall that last week I had to deal with a computer with exactly the same symptoms as you describe, and there were two malware nasties that were defending each other (ending one of the processes just caused the other one to recreate it).
Restoring to a restore point a week earlier took care of the problem
Dabas
>>Once cleaned through hijackthis, I also recommend using a spyware removal tool
You have it reversed...run anti-spy first, then Hijack This. Read what the web site says...
You have it reversed...run anti-spy first, then Hijack This. Read what the web site says...
callrs,
Different security experts have different ways of removing spyware. Just because the website say to do it one way does not mean the other way does not work. If a Security expert knows such mailware are not removed by an antispyware, then HijackThis goes first.
Different security experts have different ways of removing spyware. Just because the website say to do it one way does not mean the other way does not work. If a Security expert knows such mailware are not removed by an antispyware, then HijackThis goes first.
Who better to ask then the tool's authors? Besides, malware often disappears just through the anti-spy progs. Anti-virus Anit-spy FIRST is the ideal way to go about removing malware, and this is not just me talking, but higher experts as well. And even direct from the greater experts who made the tool:
"You should have scanned your machine with anti-spyware, virus and trojan tools before using Hijack This. We have written a tutorial that helps remove
most known spyware, trojans or viruses, so please, take a minute to read the Basic Spyware, Trojan And Virus Removal tutorial." (ref: www.majorgeeks.com/download3155.html)
>>such mailware
We do not know which. And if there's one, there may be more. So run the anti-vir anti-spy first, then we have less to analyze & worry about.
"You should have scanned your machine with anti-spyware, virus and trojan tools before using Hijack This. We have written a tutorial that helps remove
most known spyware, trojans or viruses, so please, take a minute to read the Basic Spyware, Trojan And Virus Removal tutorial." (ref: www.majorgeeks.com/download3155.html)
>>such mailware
We do not know which. And if there's one, there may be more. So run the anti-vir anti-spy first, then we have less to analyze & worry about.
callrs,
That HijackThis author has to post general fixes, not specific fixes. There is no problem for you to search the internet and post a stardard fix. There is no problem for another expert to use a different way to fix the problem.
Duta,
You like have a variant of SmitFraud infection. So SmtFradFix will remove the problem for you.
http://www.geekstogo.com/forum/index.php?showtopic=109268
OR
http://siri.geekstogo.com/SmitfraudFix.zip
That HijackThis author has to post general fixes, not specific fixes. There is no problem for you to search the internet and post a stardard fix. There is no problem for another expert to use a different way to fix the problem.
Duta,
You like have a variant of SmitFraud infection. So SmtFradFix will remove the problem for you.
http://www.geekstogo.com/forum/index.php?showtopic=109268
OR
http://siri.geekstogo.com/SmitfraudFix.zip
callrs,
I would agree with war1 here. I believe you need to read through the page you have provided yourself again. FYI, the first line of that same page says :
EditorsNote: Hijack This is for advanced users.
This is the reason why he recommends that "You should have scanned your machine with anti-spyware, virus and trojan tools before using Hijack This"
second thing for you to know is that the author of the tool is Merijn.
His own site is http://www.merijn.org/
mirrors of this site are :
http://www.spywareinfo.com/~merijn/
http://merijn.richardthelionhearted.com/
http://216.180.233.162/~merijn/index.html
Nowhere does he say that there are any pre-requisites before using this tool. That answers your point, "Who better to ask then the tool's authors?"
majorgeek.com or hijackthis.de are just sites that help you get the tool.
Lastly, if you are an expert in the registry, you do not need any anti-spyware tool for removing any spyware. these tools are designed for novice users who do not know what and where to change in the registry to correct things. these tools just automate the process.
Yes, I agree that it is adviced that we use these tools first, coz its the safest bet when the expertise of the end-user is unknown. You can recommend direct registry edits only to a person with advanced level expertise in system trouble-shooting.
Anyways, we are all here to help each other. Sharing your knowledge is always the best way to learn new things.
End objective here is that duta's problem gets resolved.
Carpe Diem.
I would agree with war1 here. I believe you need to read through the page you have provided yourself again. FYI, the first line of that same page says :
EditorsNote: Hijack This is for advanced users.
This is the reason why he recommends that "You should have scanned your machine with anti-spyware, virus and trojan tools before using Hijack This"
second thing for you to know is that the author of the tool is Merijn.
His own site is http://www.merijn.org/
mirrors of this site are :
http://www.spywareinfo.com/~merijn/
http://merijn.richardthelionhearted.com/
http://216.180.233.162/~merijn/index.html
Nowhere does he say that there are any pre-requisites before using this tool. That answers your point, "Who better to ask then the tool's authors?"
majorgeek.com or hijackthis.de are just sites that help you get the tool.
Lastly, if you are an expert in the registry, you do not need any anti-spyware tool for removing any spyware. these tools are designed for novice users who do not know what and where to change in the registry to correct things. these tools just automate the process.
Yes, I agree that it is adviced that we use these tools first, coz its the safest bet when the expertise of the end-user is unknown. You can recommend direct registry edits only to a person with advanced level expertise in system trouble-shooting.
Anyways, we are all here to help each other. Sharing your knowledge is always the best way to learn new things.
End objective here is that duta's problem gets resolved.
Carpe Diem.
duta,
"SmitRem" is a tool created by an MVP (Microsoft Most Valuable Professional) to remove the Trojan-Spy.HTML.Smitfraud.
Its currently at version 2.9 and can be downloaded here :
http://noahdfear.geekstogo.com/
Hope this works for you!
Do let me know the results or if you need further assistance...
Carpe Diem!
"SmitRem" is a tool created by an MVP (Microsoft Most Valuable Professional) to remove the Trojan-Spy.HTML.Smitfraud.
Its currently at version 2.9 and can be downloaded here :
http://noahdfear.geekstogo.com/
Hope this works for you!
Do let me know the results or if you need further assistance...
Carpe Diem!
>>There is no problem for another expert to use a different way
Actually, there is a problem when a certain way can work faster and/or better and/or with greater results...Good service comes from analysis toward the best methods, even if it means shattering our ingrained beliefs.
Hmm. Initially you say to do HijachThis first.
Now in a turn around you seem to have agreed with the makers of HT....to the point of recommending one of the same tools I've already advised on.
Well at least you've agreed in practice :)
Actually, there is a problem when a certain way can work faster and/or better and/or with greater results...Good service comes from analysis toward the best methods, even if it means shattering our ingrained beliefs.
Hmm. Initially you say to do HijachThis first.
Now in a turn around you seem to have agreed with the makers of HT....to the point of recommending one of the same tools I've already advised on.
Well at least you've agreed in practice :)
ASKER
TO: all:
Thank you so much for your very kind, prompt response.
I downloaded and tried hijcthis.exe. It detected several unnecessary files, which I removed.
Before that, I ran Acronis True Image to restore image.
I would like to accept the first three tips to my question as acceptable tip, if you do not mind.
Thanks again!
duta
July 2, 2006
Thank you so much for your very kind, prompt response.
I downloaded and tried hijcthis.exe. It detected several unnecessary files, which I removed.
Before that, I ran Acronis True Image to restore image.
I would like to accept the first three tips to my question as acceptable tip, if you do not mind.
Thanks again!
duta
July 2, 2006
ASKER
TO: all:
I intended to accept Dabas' as accepted answer because he/she responded ahead of others. But for some reason, it was chosen (against my will) as assisted answer. I clicked split points and checked Dabas first, then war1 and callrs. I guess that the person who was checked last became the provider of accepted answer (am I right?).
Hope that Dabas may kindly understand.
Thanks all!
duta
I intended to accept Dabas' as accepted answer because he/she responded ahead of others. But for some reason, it was chosen (against my will) as assisted answer. I clicked split points and checked Dabas first, then war1 and callrs. I guess that the person who was checked last became the provider of accepted answer (am I right?).
Hope that Dabas may kindly understand.
Thanks all!
duta
duta:
No worries!
Anyhow I only beat war1 by a few seconds, and maybe their answers were a little better than mine
Dabas
No worries!
Anyhow I only beat war1 by a few seconds, and maybe their answers were a little better than mine
Dabas
Duta. Do you have anti-virus (e.g. AVG) & anti-malware (e.g. Ewido or Adaware) running? That can prevent future problems...
Look on Google for these.
Look on Google for these.
ASKER
TO: callrs:
Thank you so much for your kind advice.
Yes, I am running Symantec anti-virus, and I make sure to update virus definition to the most current and to run virus-scan daily. On malware, I use ad-aware.
Thanks again!
Thank you so much for your kind advice.
Yes, I am running Symantec anti-virus, and I make sure to update virus definition to the most current and to run virus-scan daily. On malware, I use ad-aware.
Thanks again!
you have residues of possible malware/spyware on your system. As suggested by others here, Hijackthis is a good tool to identify infections in IE like unwanted BHO etc, registry errors and general system setting changes. http://www.hijackthis.de will help you download the tool, post the log online and check against their automatic recommendations how to correct. Remove all "nasties" reported online. Once cleaned through hijackthis, I also recommend using a spyware removal tool like spyware doctor or ad-aware and running a full scan of system. clean all reported problems through these tools. The registered versions of both these tools provide an active background protection against such spyware attacks. get one for yourself, its worth the money.
Carpe Diem.