Hello, if the above Trojan Remover fails then please do this.
Please download TDSSKiller.zip
and and extract it.
- Run TDSSKiller.exe.
- Click on Change Parameters
- Put a check in the box of Detect TDLFS file system
- Click Start scan.
- When it is finished the utility outputs a list of detected objects with description.
The utility automatically selects an action (Cure or Delete) for malicious objects.
The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
- Let reboot if needed and tell me if the tool needed a reboot.
- Click on Report and post the contents of the text file that will open.
Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.
>>>I'd like us to scan your machine with ESET OnlineScan
NOTE: In some instances if no malware is found there will be no log produced.EDIT:
- Hold down Control and click on the following link to open ESET OnlineScan in a new window.
- Click the button.
- For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
- Click on to download the ESET Smart Installer. Save it to your desktop.
- Double click on the icon on your desktop.
- Click the button.
- Accept any security warnings from your browser.
- Under scan settings, check and check Remove found threats
- Click Advanced settings and select the following:
- Scan potentially unwanted applications
- Scan for potentially unsafe applications
- Enable Anti-Stealth technology
- ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
- When the scan completes, push
- Push , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
- Push the button.
If you are untrained in using HijackThis then you should never run it.
IMPORTANT NOTE[/color][/b]: HijackThis is an advanced enumerator
(similar in some respects to a registry editor) that is used to display certain areas of the Windows registry where the majority of malware reside. HijackThis will scan these areas of your system and then create a log to help diagnose the presence of undetected malware in known hiding places. However, since HijackThis only scans certain areas of your system/registry, a log may not
always show all the malware on your system and other investigative tools need to be used. Most of the log entries are required
to run a computer and removing essential ones can potentially cause serious damage
such as loss of Internet connectivity or problems with your operating system which could preventing it from starting. Using HijackThis requires advanced knowledge about the Windows Operating System and relies on trained experts to interpret the log entries
and investigate them in order to determine what needs to be fixed.
And just because you "fixed
" something with HijackThis, that does not mean you have a clean system. There are specific files and folders which must be deleted afterwards. HijackThis does not
delete them. Futher, removing entries in HijackThis before the problem is properly identified can make the malware undetectable to other detection and removal tools
. Full system scanning tools like SUPERAntispywre, Malwarebytes' Anti-Malware, Spybot S&D and SpySweeper will remove the registry entries as well as the related files which results in a more complete removal process. HijackThis this should only be used to clean up the entries left behind, after you have properly removed the malware.
Since HijackThis is a powerful tool that requires advanced knowledge about the Operating System and can cause system damage if incorrect instructions are given, only designated trained experts are allowed to help people with using HijackThis. If you do not have advanced knowledge about computers or training in the use of this tool, you should NOT fix anything using HijackThis
without consulting a expert as to what to fix.
Edited by boopme, 20 August 2012 - 07:26 PM.