Very Important: Malware infections can possibly lead to identity theft, stolen bank funds, misuse of credit card information etc. Therefore I strongly encourage you to please read this thread HERE before deciding what course of action to take regarding your infection.

If after reading the above, you wish to clean your system, do the following.

=========================================================

PLEASE DO NOT USE THIS GUIDE AS A ONE-STOP-FIX-ALL.
It only serves to help you produce some logs for us so we can see if your system needs further attention and cleaning.
Please also ensure you complete ALL steps in this thread, BEFORE you post the requested log files.

DO NOT SKIP ANY OF THE INSTRUCTIONS

If you have any problems following any of the instructions, please ask for assistance.

=========================================================

Step 1

Antivirus scanning

If you're NOT running any antivirus or firewall software, you should install one ASAP If you already have an Anti-virus program - please be sure to check for updates and run a full scan of your system - Please note anything that it finds in your thread.

Recommended Free Anti Virus:
Avira Free
Avast Free

Recommended Free Firewall:
Comodo
Zonealarm

=========================================================

Step 2


CCleaner

• Please download from HERE
• Close all browsers.
• Run the program and make sure all the boxes are ticked under the Windows and Applications tabs, including "Advanced" tabs(except for the Old prefetch Data option, this should be unticked)
• Click the run cleaner button.
• Do this at least twice.

=======================================================

Step 3

Temporarily Disable Real Time Monitoring Programs

This is because some real time protection programs can interfere with any fixes we are trying to run.

See these instructions on how to disable some of the more common real time monitoring programs.

If you have other protection that may need disabled feel free to ask in your thread in the security section.

Once your system is clean, you are advised to turn the protection back on.


Uninstall File Sharing/P2P Programs

During the cleaning process all File Sharing Programs should be uninstalled
This is to avoid any possible reinfection of any malwares through file sharing

We reserve the right to withdraw our support:

• If such programs are found in your logs
• Should you not agree to their removal.

As they are normally set to bypass your Firewall and Anti-Virus software
Filesharing/P2P Programs serves as a constant threat to your computer


=======================================================

Step 4


Malwarebytes' Anti-Malware

• Please download Malwarebytes' Anti-Malware from from HERE
  
• Double-click mbam-setup.exe and follow the prompts to install the program.
• At the end, be sure a checkmark is placed next to
  • Update Malwarebytes' Anti-Malware
  • and Launch Malwarebytes' Anti-Malware
• then click Finish.
• If an update is found, it will download and install the latest version.
• Once the program has loaded, select Perform Quick scan, then click Scan.
• When the scan is complete, click OK, then Show Results to view the results.
• Be sure that everything is checked, and click Remove Selected.
• When completed, a log will open in Notepad. please attach this log with your reply
  • If you accidently close it, the log file is saved here and will be named like this:
  • C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt

======================================================

Step 5


SuperAntiSpyware Home Edition Free Version

• Please download SuperAntiSpyware from HERE
• Launch SuperAntiSpyware and click on 'Check for updates'.
• Wait for the updates to be installed
• On the main screen click on 'Scan your computer'.
• Check: 'Perform Complete Scan then Click 'Next' to start the scan.
• Superantispyware will now scan your computer,when it's finished it will list all/any infections found.
• Make sure everything found has a checkmark next to it,then press 'Next'.
• Click on 'Finish' when you've done.
  
  It's possible that the program will ask you to reboot in order to delete some files.
  
  Obtain the SuperAntiSpyware log as follows:
  Click on 'Preferences'.
  Click on the 'Statistics/Logs' tab.
  Under 'Scanner Logs' double click on 'SuperAntiSpyware Scan Log'.
  It will then open in your default text editor,such as Notepad.
  Attach the notepad file here on your reply

=======================================================

Step 6


Update your Java Runtime Environment

Many types of malware like to exploit out of date Java versions!

First, please go HERE to verify that your version is up to date. Click on the "Verify Java Version" link button.

If your versions are not updated, that link button will change to one that allows you to update directly by clicking on it, in which case please do so.

After you have installed the newest version,
Go to Start -> Control Panel -> Add/remove programs (programs and features in vista)
Uninstall any older versions of Java except the most current update that you just installed

=======================================================

Step 7


Hijackthis Instructions

• Only do this step after completing the previous steps
• Make sure you have the LATEST version of HJT (currently v2.0.2) it can be downloaded from HERE
• Run the HijackThis Installer and it will automatically place HJT in C:\Program Files\TrendMicro\HijackThis\HijackThis.exe. Please don't change the directory.
• After installing, the program launches automatically, select Scan now and save a log
• After the scan is complete please attach your logs onto the forums

==========================================================

Step 8

Attach the requested logs
1) Malwarebytes Anti Malware log
2) SuperAntiSpyware log
3) Hijackthis log

Attachment Instructions

• ONLY attach .txt or .log files; we will NOT read other files (such as .doc) due to the risk of viruses etc.
• We strongly discourage you from copying and pasting the logs in your posts, unless if you have trouble with attaching them.
• To attach a log click on New Thread (or use Post Reply in your existing thread).
• Scroll down until you see a button Manage Attachments. Click on that and a popup-window opens.
• Click on the Browse button, find the requested log file, and doubleclick on it.
• Now click on the Upload button in the popup. When done, click on the Close this window button.
• Please Note: you can attach more than one file to a post by repeating the above steps.

At this point, you can turn back on the disabled programs from step 3.
Remember to tell us any symptoms that you may be having

New members coming for support will want to know that moderators have their usernames highlighted GREEN, while known malware helpers are highlighted in PURPLE.

Read the complete Virus & Malware removal forum rules here.

Changelog:

* Many, many changes before writing this.
* Step 6, contributed by Blind Dragon. Updated AVG AS for SuperAntiSpyware OR Malwarebytes' Anti-Malware.
* Most installers available straight from TechSpot Downloads section.
* Added disclaimer/special rules for the malware board.

Instructions have been shortened and updated for future convenience towards users as well as helpers.
Credits to originator, Blind Dragon, and a few others, namely - kimsland, xxdanielxx, CCT, and Bobbye for their input.