neidorff
2005-12-27, 01:36
SpyBot reports that I have SmitFraud-C. SB1.4 20051209 tried to delete 5 entries, but could only delete 4. The last one claims to be in memory. I tried rebooting and running SB1.4 again automatically. Same result. I tried rebooting in safe mode and manually running SB1.4 in safe mode, same result.
The undeleted entry reports:
Smitfraud-C.: User settings (Registry change, fixing failed)
HKEY_USERS\S-1-5-21-1630988464-3171484984-2295317795-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-spy-cam.net\*!=W=4
This malware also seems to be running c:\windows\system32\ioctrl.dll which Symantec Antivirus interrupts and quarantines repeatedly, so it seems to be a serious issue.
How can I address this?
Thank you for any advice that you can offer.
Bob
The undeleted entry reports:
Smitfraud-C.: User settings (Registry change, fixing failed)
HKEY_USERS\S-1-5-21-1630988464-3171484984-2295317795-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-spy-cam.net\*!=W=4
This malware also seems to be running c:\windows\system32\ioctrl.dll which Symantec Antivirus interrupts and quarantines repeatedly, so it seems to be a serious issue.
How can I address this?
Thank you for any advice that you can offer.
Bob