STOP Spysheriff Trojans
How to STOP Spysheriff and never comeback to user's PC?
After we delete the spysheriff trojans using Spybot S&D, the icons are already cleaned. But after couple of weeks, the shadow of icons will comeback & if you scan it again using that program, it'll be detected again you need to delete it again.
So the question is, how to STOP that Trojan for coming back?
After we delete the spysheriff trojans using Spybot S&D, the icons are already cleaned. But after couple of weeks, the shadow of icons will comeback & if you scan it again using that program, it'll be detected again you need to delete it again.
So the question is, how to STOP that Trojan for coming back?
Hello stiebel,
Please Download MalwareBytes, update it and try to run a full system scan in safe mode.
Best Regards,
Mohamed Allam
Senior Software Developer
Please Download MalwareBytes, update it and try to run a full system scan in safe mode.
Best Regards,
Mohamed Allam
Senior Software Developer
ASKER
My response to David-Howard & Allamz,
I'll test first both your advise & get back to you soon for the result.
Thanks a lot!
Regards,
Dan
I'll test first both your advise & get back to you soon for the result.
Thanks a lot!
Regards,
Dan
ASKER
My response for David-Howard:
- I've test it already, scan in Safe Mode, but didn't help to fix/delete the malwares, spies, & other Trojans.
My response for Allamz:
- I've test it as well, found some Object Infected, around 1-3 items only, mostly in registry values. But didn't help fix/delete the other malwares, spywares, specially the spysheriff trojan.
Both suggestions, I've tested it on PC's that are infected with Malwares, Spywares, & other Trojans.
Any other suggestions?
Regards,
- I've test it already, scan in Safe Mode, but didn't help to fix/delete the malwares, spies, & other Trojans.
My response for Allamz:
- I've test it as well, found some Object Infected, around 1-3 items only, mostly in registry values. But didn't help fix/delete the other malwares, spywares, specially the spysheriff trojan.
Both suggestions, I've tested it on PC's that are infected with Malwares, Spywares, & other Trojans.
Any other suggestions?
Regards,
Smtfraudfix should have taken care of it, wonder why it didn't.
Try Combofix, we need to see the log afterwards to make sure it's clean.
Please download ComboFix by sUBs:
http://download.bleepingco
You must download it to and run it from your Desktop
Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
Double click combofix.exe & follow the prompts.
When finished, it will produce a log. Please save that log and attach it in your next reply by pasting it in the "Code Snippet" or "Attach File" window.
Re-enable all the programs that were disabled during the running of ComboFix..
Note:
Do not mouse-click combofix's window while it is running. That may cause it to stall.
CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
If needed, here's the Combofix tutorial which includes the installation of the Recovery Console:
http://www.bleepingcomputer.com/combofix/how-to-use-combofix
Try Combofix, we need to see the log afterwards to make sure it's clean.
Please download ComboFix by sUBs:
http://download.bleepingco
You must download it to and run it from your Desktop
Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
Double click combofix.exe & follow the prompts.
When finished, it will produce a log. Please save that log and attach it in your next reply by pasting it in the "Code Snippet" or "Attach File" window.
Re-enable all the programs that were disabled during the running of ComboFix..
Note:
Do not mouse-click combofix's window while it is running. That may cause it to stall.
CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
If needed, here's the Combofix tutorial which includes the installation of the Recovery Console:
http://www.bleepingcomputer.com/combofix/how-to-use-combofix
ASKER
My response to rpggamergirl:
Kindly check the attached file for the logfile of my PC after scanning ComboFix program.
I scan it already using Smitfraud & Malwarebytes as well.
So let me know for you feedback.
Regards,
log.txt
Kindly check the attached file for the logfile of my PC after scanning ComboFix program.
I scan it already using Smitfraud & Malwarebytes as well.
So let me know for you feedback.
Regards,
log.txt
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
http://www.bleepingcomputer.com/forums/topic22402.html