FTO AUSTRALIA

In closing, I will post a guide for cleaning up a PC. I do this once a month whether I have an infection or not. This part get's pretty involved, and is complex in stages. Don't do any of ths if you aren't confident. I will accept no responsibility for damage or loss of data. Do this at your own risk.

Firstly, download the tools linked above

Next, get your computer into Safe Mode:

After your computer boots past the first splash screen, mash the "F8" key until you are presented with...



Select "Safe Mode"

Once in Windows, be sure to disable "Syetem Restore"

Right click "My Computer", select "Properties" then select the "System Restore" tab


Select the "Turn off System Restore" check box indicated above

Next up, install CCleaner and start it up


Select the "Cleaner" tab as indicated, then click "Run Cleaner"


Next select the "Registry" tab, click "Scan for Issues". Once that is done, click "Fix selected issues", follow all prompts to backup your registry.


Next, select the "Tools" tab, here you have "Uninstall" and "Startup" options. Remove programs that shouldn't be there using "Uninstall" (Smiley Central or similar are spyware, there are many that shouldn't be there). Disable programs from starting up on the "Startup" tab. Virus' and Spyware place entries in here, disable or delete their entries.

Next up, install HijackThis


Unzip the files to the desktop for ease of location: Start unzip process


Unzip the files to the desktop for ease of location: Select desktop


Unzip the files to the desktop for ease of location: Finally, unzip


Heed this next warning, you CAN do damage to your PC, but this tool is extremely powerful for stopping popups and browser redirects


Run the program, select "Do a system scan only", if you don't know what you are doing, use the option with a log file. That can be posted here and I can help decipher the entries (or anyone else with this sort of experience).


The next screen is everything your computer loads at boot, and at other times. This is complex, but ticking a checkbox on the left side, then selecting "fix selected" will remove them PERMANENTLY! You have another chance to save a log here too.


Here is your last warning before deleting the items you selected.

Next up, install Autoruns, then run the AutorunsSC program


Select the "Logon" tab, here is everything that your computer loads at log in time. This is the same as with CCleaner, but this is a little more in depth.

This entire guide so far has been preperatin for actual Virus removal...

Next up, install MalwareBytes Anti Malware

Run the program


Ensure you select to update the program and run immediately


Select the "Scanner" tab, click "Perform full scan"

Full scans are important if you know you are infected, or if it's the first time you have used this to scan. For preventative maintenance, just use the "Perform quick scan" option. Any other times you use the program, make sure you update it first.

Follow the prompts, you will be told if there are any infections and the rest of the options are very self explanatory.

Post questions here. I will help where I can. I can also attempt to help remotely (though if you are infected, this probably won't be possible).

Lastly, reboot the PC into normal mode and re-enable System Restore.

mr-charisma wrote:Good post though FTOEVO..


I have a different view on it though Blow it away & start from scratch!

.. if you suspect you have / or had a virus there's no way of knowing whether you've actually gotten rid of it.. rootkits / viruses etc can hook themselves in & snuggle up inside your OS nice & hidey-like..

my 2 cents;

1.) Backup to external HDD
2.) Zero the HDD or at least format & Slate all partitions
3.) Clear BIOS
4.) Install Linux & run Windows in VM, or Re-Install Windows (w/ Linux dual boot) & run Deep Freeze or Windows Steady State with user profiles stored on 2nd partition
5.) Make a Ghost image of the standard set up & apps before copying back any 'potentially infected' files / folders from backup drive
6.) Download Antivirus (if not using Linux) & update OS & apps regularly

Any drama's - call in the Pro's.

VirtualBox http://www.virtualbox.org/ is a nice little app that's good for running another OS inside your current one.. Has a nice feature so you can run it in "seamless mode" .. Use it all the time @ work to run a separate Windows VM for Domain Admin' account stuff & keep it secluded from my normal user account.

I8A4RE wrote: You lost me at "hey all"

Seriously! im lost when it comes to this sh*t.

koolio1234 wrote:haha...we are a bunch of geeks arent we....

SG wrote:I wouldn't turn off system restore in the clean up process, sometimes you get a bad windows update and you need to go back to the previous version (if theres no uninstall)

FTEvolution wrote:
Lastly, reboot the PC into normal mode and re-enable System Restore.

Comic book guy wrote:Worst Antivirus EVER