NH wrote:The only issue that comes up is the occasional pop up "AVG has detected high memory usage by Firefox." Do you think this is normal and that the memory sizes I mentioned in my last post are normal?
I use Firefox as my primary browser. The memory usage that you reported seems normal for Firefox.
NH wrote:Let me know when I can download the latest AVG virus updates and Windows Updates? I have not downloaded anything and I am waiting until we are done.
You can go ahead and perform those updates after executing the steps below.While you're doing that, please also bring both Internet Explorer and Firefox up to date as well.
NH wrote:I am ready to make a monetary donation to this Malware Removal site because of how happy I am with your help, so can I do that?
Yes you can and thank you for the kind words. ------------------------------
Your computer appears to be clear of malware. Good job.
Please stay with me a bit longer because there are a few important things
that we still need to do to cleanup and make sure that you don't get infected again.Please print these instructions because you will need to close this browser window in a step below.
I would be grateful if you could reply to this post so that I know you have read it and, if you've no other questions, the thread can be closed.Safe surfing!
- Create a System Restore Point
- Go to Start, right-click on Computer and select Properties.
- In the left pane under Tasks, click System protection.
- If UAC prompts for an administrator password or approval, type the password or give your "permission to continue".
- Select System Protection ...then choose Create.
- In the System Restore dialog box, type a description for the restore point (e.g., All Clean) and click Create again.
- A window should pop up with "The Restore Point was created successfully" message.
- Click OK and close the System Restore dialog.
Note: If the message window was not displayed stating that the system restore point was created successfully then STOP - Do not continue with the steps below but rather reply to let me know what happened.
- Delete old System Restore Points
We can now remove any old System Restore Points that may be infected.
Note: This step should not be done regularly but rather only as a Special Case after the removal of malware or changes in the Restore settings.
- Click Start > All Programs > Accessories > System Tools > Disk Cleanup.
- If provided with the option, select the appropriate drive letter (usually C:).
- A progress window will be displayed while the program scans files. Please be patient because this can take a few minutes.
- Click the Clean up system files button. Another progress window will be displayed while the program scans files.
- If provided with the option, again select the appropriate drive letter (usually C:).
- Click the More Options tab.
- In the System Restore and Shadow Copies section click the Clean up button.
- Click Delete when asked Are you sure you want to delete all but the most recent restore point?
- Click the OK button in the Disk Cleanup window and then click the Delete Files button in the confirmation window.
- Reboot your computer after the files have been deleted.
- Cleanup with OTL
- Close all windows/applications.
- Right-click the OTL icon on your Desktop and select Run As Administrator.
- Click the CleanUp button in the OTL window. The cleanup will begin after which a dialog will be displayed indicating that a reboot is required.
- Click the OK button in the message window. The system will reboot.
- Stay clean
The important thing now is to actively do things that will help keep you from getting infected in the future.
- Keep Antivirus and applications updated
This is the MOST IMPORTANT thing that you can do to keep from becoming infected.
- Keep Microsoft products up-to-date with the latest security patches. Either
- Enable some level of Automatic Updates
- Click Start > Control Panel. The Control Panel window will be displayed.
- Click the Windows Update entry. The Windows Update frame will be displayed.
- Click the Change setting link in the left column of the window. The Choose how Windows can install updates frame will be displayed.
- Select the option which best fits your needs.
- Or click Start > All Programs > Windows Update on a regular basis and follow the instructions to install all important updates.
- I personally use and recommend the free Secunia Personal Software Inspector (PSI). This program will keep you aware of software that is installed on your computer that contains security vulnerabilities for which security patches exist. I have mine set to automatically scan my computer weekly.
- All updates are important but pay particular attention to updates for all browsers as well as Microsoft, Java and Adobe products. These are widely-used products that Malware writers frequently target.
- There are a number of free programs that you can install to improve your computer's security: Many people feel that having a "layered" protection scheme is beneficial. You will have to decide what works best for your situation. Here are a few you may want to look into.
Malwarebytes is free for non-business use and can be download from Malewarebytes © Malwarebytes Corporation. . Malwarebytes can thoroughly remove even advanced malware. Run scans at least weekly and always allow the databases to be updated if asked. It's powerful, easy to use and free. For real-time protection you will have to purchase the product. Tutorials are available for installing and running , Malwarebytes' Anti-Malware.
SiteAdvisor is a toolbar for Microsoft Internet Explorer and Mozilla Firefox which alerts you if you're about to enter a potentially dangerous website.
You can find more information and download it from here
As a robust security monitor, WinPatrol will alert you to hijackings, malware attacks and critical changes made to your computer without your permission. WinPatrol takes snapshot of your critical system resources and alerts you to any changes that may occur without your knowledge.
For more information, please visit here
You can learn about and download the MVPS Hosts File here
The MVPS Hosts file replaces your current HOSTS file with one containing well know ad sites etc. Basically, this prevents your computer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer.
You can Find the Tutorial here
- Read and stay informed!
To help minimize the chances of becoming re-infected, please read.
Computer Security - a short guide to staying safer online
If your computer is running slowly after your clean up, please read.
What to do if your Computer is running slowly