pg
New Helpee
Posts: 21
|
Post by pg on Feb 3, 2015 0:37:11 GMT -8
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Feb 3, 2015 10:05:28 GMT -8
On with step 4, Complete system check for any file and cleanup of items and tools used. Special attention to the different settings I have asked for below You can leave Norton Enabled even though ESET may warn about it. just makes the scan take longer. The pictures below showing what to click may be blue instead of green on the ESET website now, but the procedure is still the same Please read carefully and Slowly, Notice all the settings listed below to check before starting the scan. Take note of the NO tick in the Remove found threats setting below at it needs to have the tick removed.
Please download Online Scanner and save it to your Desktop. Start with administartor privileges. Select the option Yes, and click on . Choose the following settings: NO!! for Remove found threats (reason for this is we don't want something deleted and then Windows won't load). Click on Start. The virus signature database will begin to download. This may take some time. When completed the Online Scan will begin automatically. Note: This scan might take a long time! Please be patient.When completed select Uninstall application on close if you so wish, but make sure you copy the logfile first! (List found Threats)Now click on Finish Quads
|
|
pg
New Helpee
Posts: 21
|
Post by pg on Feb 3, 2015 22:09:30 GMT -8
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Feb 3, 2015 22:24:28 GMT -8
TDSSkiller did manager to get the injector and I had FRST delete the registry key after (which Roguekiller couldn't deal with). The system should have settled down with the Injector moved and not running.
Quads
|
|
pg
New Helpee
Posts: 21
|
Post by pg on Feb 4, 2015 16:24:06 GMT -8
i do not see anything obvious going on, task manager activity seems normal.
do i need to rerun anything to delete this file or manual delete?
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Feb 4, 2015 16:58:03 GMT -8
We will clear the TEMP and Caches for a final time before removing Quarantines and tools The TEMP folders and caches. (use the program below to do so) Download TFC www.bleepingcomputer.com/download/tfc/ the instrctions are on that page below the blue download button and screenshots. Quads
|
|
pg
New Helpee
Posts: 21
|
Post by pg on Feb 5, 2015 20:07:02 GMT -8
ran the tfc file cleanup utility.
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Feb 5, 2015 20:18:42 GMT -8
Tools and Quarantines we used to be removed Please download DelFix by Xplode to your Desktop. toolslib.net/downloads/viewdownload/2-delfix/Double-click to run the program; Note: Windows Vista/7/8 users right-click and choose Run as administratorMake sure the Remove Disinfection tools is ticked / selected in the list Click RunA log will be opened after the operation is finished Copy and Paste it in your next reply Quads
|
|
pg
New Helpee
Posts: 21
|
Post by pg on Feb 7, 2015 0:52:18 GMT -8
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Feb 7, 2015 13:59:40 GMT -8
You are free to go on your merry way. You are now fixed / Solved.
Quads
|
|