Hello and Welcome to TSF.
Please
Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click
Thread Tools, then click
Subscribe to this Thread. Make sure it is set to
Instant notification by email, then click
Add Subscription.
Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.
------------------------------------------------------
Please copy this page to
Notepad and Save it to your Desktop in order to assist you when carrying out the following instructions.
Before beginning the fix,
read this post completely. If there's anything that you do not understand, kindly ask your questions before proceeding.
Ensure that there aren't any opened browsers when you are carrying out the procedures below.
It is IMPORTANT that you don't miss a step & perform everything in the correct order/sequence.
------------------------------------------------------
One or more of the identified infections is a backdoor trojan.
This type of infection allows hackers to remotely control your computer, log keystrokes, steal critical system information, and download and execute files without your knowledge.
If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known
clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.
Please read this:
How Do I Handle Possible Identify Theft, Internet Fraud, and CC Fraud?
------------------------------------------------------
Please note that these fixes are not instantaneous. Most infections require more than one round to properly eradicate.
Please stay with me until given the 'all clear' even if symptoms seemingly abate.
Kindly follow my instructions and
please do no fixing on your own or running of scanners unless requested by a helper.
------------------------------------------------------
Download
ComboFix from any of the links below. You
must rename it to
Combo-Fix before saving it. Save it to your Desktop.
If you are using Firefox, go to Tools > Options > Main and select 'Always ask me where to save files' and click OK.
Link 1
Link 2
Link 3
* IMPORTANT !!! Save Combo-Fix.exe to your Desktop
------------------------------------------------------
- Disable your AntiVirus and AntiSpyware applications, usually via a right-click on the System Tray icon. They may otherwise interfere with our tools.
- Get help here
- Double-click on Combo-Fix.exe & follow the prompts.
- As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
- Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.
Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:
Click on
Yes to continue scanning for malware.
Your desktop may go blank. This is normal. It will return when ComboFix is done. ComboFix may reboot your machine. This is normal.
When finished, it shall produce a log for you. Please include the
C:\ComboFix.txt in your next reply.
------------------------------------------------------