Please note that all instructions given are customised for this computer only, the tools used may cause damage if used on a computer with different infections.
If you think you have similar problems, please post a log in the "Infected? Virus, malware, adware, ransomware, oh my!" forum and wait for help.
Unless informed of in advance, failure to post replies within 3 days will result in this thread being closed.
Hi
I'm
Gary R,
Before we start: Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.
Because of this, I advise you to backup any personal files and folders before you start.As an added safety precaution, before we start removing anything, I'd like you to make a backup of your Registry, which we can restore to if necessary.
Please click on
THIS link, and follow the instructions for installing
TCRB and creating a backup of your Registry.
Please observe these rules while we work:
- Do not edit your logs in any way whatsoever.
- Perform all actions in the order given.
- If you don't know, stop and ask! Don't keep going on.
- Please reply to this thread. Do not start a new topic.
- Stick with it till you're given the all clear.
- Remember, absence of symptoms does not mean the infection is all gone.
- Don't attempt to install any new software (other than those I ask you to) until we've got your computer clean.
- Don't attempt to clean your computer with any tools other than the ones I ask you to use during the cleanup process. If your defensive programmes warn you about any of those tools, be assured that they are not infected, and are safe to use.
If you can do these things, everything should go smoothly.
- As you're using Windows 8.1, it may be necessary to right click some of the tools we use and select ----> Run as Administrator
It may be helpful to you to print out or take a copy of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.
There's certainly a number of things showing in your FRST logs that need attending to, but before we do that I'd like you to run a further couple of scans for me, to give me a more complete picture of what needs to be removed.
Once I've got that, we can set about cleaning your machine.
First ....Please download
AdwCleaner and save it to your desktop.
- Double click AdwCleaner.exe to run it.
- Click Scan.
- A logfile will automatically open after the scan has finished.
- Close the adwCleaner window, click ok to the prompt.
- Please post the contents of that logfile with your next reply.
- You can also find the logfile at C:\AdwCleaner[R1].txt.
AT THIS POINT, DO NOT ATTEMPT TO CLEAN ANYTHING THAT MAY BE FOUNDNext ...I'd like you to run a search for me using FRST ...
- Double click Frst64.exe to launch it.
- FRST will start to run.
- When the tool opens click Yes to the disclaimer.
- Copy/Paste or Type the following line into the Search: box.
Fun4IM;Bandoo;Searchnu;Searchqu;iLivid;whitesmoke;datamngr;kelkoopartners;trolltech;babylon;conduit;trovi;clientconnect;DNS Unlocker
- Press the Search Registry button.
- When finished searching a log will open on your Desktop ... Search.txt
- Please post it in your next reply.
Summary of the logs I need from you in your next post:Please post each log separately to prevent it being cut off by the forum post size limiter. Check each after you've posted it to make sure it's all present, if any log is cut off you'll have to post it in sections.