How do I get rid of trojan-spy.html.smitfraud.c

Posted on 2005-04-15
Last Modified: 2010-08-05
My laptop got hit by this trojan last night. I've run Norton AV twice & Webroot Spy sweeper  & although it has removed malware - I still have theproblem. My wallpaper has been removed & repalced with a blue screen with the follwing message. My desktop settings are now disabled & I am unable to get rid of the blue screen.

" A fatal error occured at 0028:COO11E36 in VXD VMM (01)+ OOO10E36. Error was caused by trojan -spy. html.smitfraud.c

System cannot function in normal mode. Please check your settings.

Is there a step by step fix for this that somebody can pass on?


Question by:wisemat
    LVL 12

    Expert Comment


    Try running this EScan-MWAV toolkit (free)
    (free version finds things - paid also fixes)
    See what it turns up.

    Good luck!
    LVL 13

    Expert Comment

    Try to remove  trojan -spy. html.smitfraud.c in the safe mode in case it is in memory.

    LVL 12

    Expert Comment


    Any progress with this?

    LVL 13

    Expert Comment


    It would be wonderful if you establish a dialog with us so that we can narrow down the problem and hopefully provide a solution. Be sure your comments are detailed with the exact dialog that you see on your screen.

    I can provide you with a list of online virus detectors, but this may not help you. Meanwhile I will do some research on your problem. After using the online virus detectors, please provide your observations.

    Panda ActiveScan


    McAfee FreeScan

    Symantec Security Check

    Pc-Cillin (Trend Micro Housecall)



    As I said this is a shotgun approach

    LVL 13

    Accepted Solution

    Evidently this has been around since 2001. There are many Aliases for this Trojan. It seems that the basic recommendation is to run all the anti-malware programs and and antivirus programs that you have.

    Here is what I found out:

    Trojan-Spy.HTML.Smitfraud.c (Kaspersky Lab)
    is also known as:
    Phish-BankFraud.eml.a (McAfee), Trojan Horse (Symantec), Trojan.Bankfraud (Doctor Web), HTML.Phishing.Bank-1 (ClamAV), Trj/Citifraud.A (Panda), HTML/Smithfraud.gen (Eset)

    I placed in symantec’s search engine the Trojan-Spy HTML Smitfraud.c and it came up with another name.

    Joke Program
    Programs that alter or interrupt the normal behavior of your computer, creating a general distraction or nuisance. Joke programs generally do not themselves engage in the practice of gathering or distributing information from the user's computer

    Evidently the program is also called SpSehjfix109 It has be around since about 2001
    LVL 13

    Expert Comment


    I spent about two hours researching this 'malware' I was surprised as to the various names that it came under and the difficulty of removing it. I never did find a solution on how to remove it.

    What action did you take to solve the problem. Did the shot gun approach work?

    Thanks for the points. Actually the points are not as important as being able to help someone. That gives me allot of satisfaction.


    Featured Post

    IT, Stop Being Called Into Every Meeting

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Join & Write a Comment

    PREFACE The purpose of this guide is to provide information to successfully install the MS SQL client tools for the Symantec Endpoint Protection Manager (SEPM) to function properly when installed on Windows 2008. AUDIENCE Information Technology…
    By the time you finish reading this article, you may have already lost all your money because you don't know the simple steps to securing your BitCoin wallet. BitCoin is an incredible invention. It is a decentralized currency system, which is the…
    Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…
    In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…

    728 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now