I'm 23red, and it'll be my pleasure to assist you with your problem.
I'd be grateful if you would note the following:
As I am currently in training, I will be helping you under the supervision of our Expert Teachers. As such, there will be a delay between posts.
. Please make sure to carefully read every post completely before doing anything.
If you're not sure, or if something unexpected happens, do NOT continue!
Stop and ask!
Please do not run any other scans or other software on your computer unless asked as it may make this repair more difficult.
Please stick with me until all
malware is gone from your system. This is not an instant process, the logs do take time to go thru. Just because you no longer see any symptoms it does not necessarily mean your system is clear of malware.
Please save my instructions as a text file on your desktop, or print them out, as you may not be able to access this thread at times.
Thanks for your understanding and patience
Let's get started!
Please download OTL
to your desktop.
If it saves to another location, right click the OTL icon and select Cut
then right click on Desktop and select Paste
Please right click on
on your Desktop and Run as Administrator
, then accept UAC prompts to start the program.
Please make sure the following boxes are checked:
Scan All Users
In the Extra Registry
box select Use Safe List
Copy the lines from the quote box(do not copy the word quote) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click on the blue highlighted part and choose Copy)
dir C:\ /S /A:L /C
in the textbox at the bottom, right click and paste
the text there. Or click in the window to get the cursor there and press CTRL + V.
Let the program run unhindered. Do not change any settings unless otherwise told to do so. The scan wont take long.
When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL ~ Desktop
Please copy (Edit ~> Select All, Edit ~> Copy) the logs it produces in your next reply.