Please note that all instructions given are customised for this computer only, the tools used may cause damage if used on a computer with different infections.
If you think you have similar problems, please post a log in the "Infected? Virus, malware, adware, ransomware, oh my!" forum and wait for help.
Unless informed of in advance, failure to post replies within 3 days will result in this thread being closed.
I'm Gary R
, Before we start:
Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.Because of this, I advise you to backup any personal files and folders before you start.
As an added safety precaution, before we start removing anything, I'd like you to make a backup of your Registry, which we can restore to if necessary.
Please click on THIS
link, and follow the instructions for installing TCRB
and creating a backup of your Registry.
Please observe these rules while we work:
- Do not edit your logs in any way whatsoever.
- Perform all actions in the order given.
- If you don't know, stop and ask! Don't keep going on.
- Please reply to this thread. Do not start a new topic.
- Stick with it till you're given the all clear.
- Remember, absence of symptoms does not mean the infection is all gone.
- Don't attempt to install any new software (other than those I ask you to) until we've got your computer clean.
- Don't attempt to clean your computer with any tools other than the ones I ask you to use during the cleanup process. If your defensive programmes warn you about any of those tools, be assured that they are not infected, and are safe to use.
If you can do these things, everything should go smoothly.
It may be helpful to you to print out or take a copy of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.
For the duration of this "fix", I need you to remove Avast, and use Windows Defender (or whatever they're calling it these days) as your defensive program.
So please uninstall the following programs ....
Avast Premium Security
Avast SecureLine VPN
... and reboot your computer afterwards to complete the uninstall.
You can re-install Avast once we've finished, but to be honest personally I would recommend you do not.
Once that's done, I'd like you to run a new scan with FRST, and post me the new FRST.txt