Ried

Hello,

Move dss.exe out of your temp directory and to your desktop as the instructions stated. We'll be cleaning the temp directory and you'll lose the program.

You also did not allow dss.exe to download the HijackThis program when you were prompted, so all we have is the clone version which cannot be used to fix any entries.

It's very important that you follow all instructions in their entirety, and as given.


Please copy this page to Notepad and save to your desktop for reference as you will not have any browsers open while you are carrying out portions of these instructions.

Also be sure to carry out the instructions in the sequence listed below.

***************************************************


*Download MsnCleaner_eng.zip to your desktop, but don't use it yet.
(Copy/Paste the download link in the url window or use "Save Target As")


*Download Combofix and save it to your desktop.

**Note: It is important that it is saved directly to your desktop**

--------------------------------------------------------------------

Please reboot your computer in Safe Mode by doing the following:
1) Restart your computer
2) After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
3) Instead of Windows loading as normal, a menu should appear
4) Use the up arrow key to highlight Safe Mode and press Enter.
5) Login with your usual account. Make sure to close any open browsers.

--------------------------------------------------------------------

Double-click MsnCleaner_eng.exe to run it.

• Click the Analyze button.
• A report will be created once after you finish scan.
• If it finds an infection, click the Deleted button.
• Now, please reboot back to normal mode.
• I'll need the contents of C:\MsnCleaner.txt in your next reply.

--------------------------------------------------------------------

From Normal Mode:

Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

--------------------------------------------------------------------

Double click on combofix.exe & follow the prompts.

• When finished, it will produce a report for you.
• Please post the C:\ComboFix.txt along with a new HijackThis log so we can continue cleaning the system.

Note:
Do not mouseclick combofix's window while it's running. That may cause it to stall

--------------------------------------------------------------------

*Please download HijackThis to your desktop.

Double-click on the file you just downloaded.
Click on the "Install" button to install. It will by default install to the directory - C:\Program Files\Trend Micro\HijackThis

Upon install, HijackThis should open for you.

Should it not open, navigate to C:\Program Files\Trend Micro\HijackThis and double click on HijackThis.exe

• If it gives you an intro screen, just choose 'Do a system scan and save a log file'.
• If not, run a scan and save the log file.

--------------------------------------------------------------------

Please copy/paste the following into your next reply, in the order listed:

MsnCleaner.txt
C:\ComboFix.txt
HijackThis log

**Do not attach any logs unless requested to do so.