First off ... if you think you may have keyloggers and are using the computer online for sensitive data (bank passwords, other financial transactions and so on) then STOP.
I suggest you print this out to help you follow my advice.
The problem with infections nowadays is they cause a lot of damage. Even if we clean the malware off your system I can't guarantee that your system will be clean afterwards because these infections/bundles leave a lot of leftovers behind that most scanners won't even recognise and logs won't show.
Also I can't promise you we can repair all the damage it caused. Even after cleaning the malware, you can still get errors afterwards because of the damage. Solving these is not always possible since it will be searching for a needle in a haystack to find the right cause and solution.
So we can try to clean this up, and do what we can, but keep in mind that we probably can't solve ALL problems the malware already caused.
In light of this it would be wise for you to back up any files and folders that you don't want to lose before we start. The reason I am suggesting this is because, when a system is so terribly infected and we try to clean this up manually, the damage that is already present may interfere with our removal attempts.
If we fix the machine of apparent malware there could be bad stuff hidden deep in the system.
Your two options are ... either save data, as suggested above, then reformat the hard drive/reinstall everything OR try to fix it.
If you want to try the fix I suggest you run some first line (free) removal programs. These four ...
1. Superantispyware >
http://www.superantispyware.com/
2. AVG Anti Spyware >
http://free.grisoft.com/doc/5390/us/frt/0?prd=asf
3. TrojanHunter >
http://www.misec.net/
Download each, update them to the latest definitions, and have them run full scans on your entire systems on their default settings.
Let them fix whatever they find.
4. ComboFix >
http://download.bleepingcomputer.com...a/ComboFix.exe
Double click combofix.exe & follow the prompts.
Note >> Do not mouseclick combofix's window while it's running. That may cause it to stall.
When finished, it will produce a log for you. The report is called
ComboFix.txt.
Post that log in your next reply along with a HjackThis** log AND an update on how the computer is operating now.
**Download Trend Micro HijackThis 2.0.2 here ……
http://www.trendsecure.com/portal/en...HJTInstall.exe
- Save HJTInstall.exe to your desktop.
- Doubleclick on the HJTInstall.exe icon on your desktop.
- By default it will install to C:\Program Files\Trend Micro\HijackThis .
- Click on Install.
- It will create a HijackThis icon on the desktop.
- Once installed, it will launch Hijackthis.
- Click on the Do a system scan and save a logfile button. It will scan and the log should open in notepad.
- Click on "Edit > Select All" then click on "Edit > Copy" and Paste the entire contents of the log (no attachments) into your next post.
DO NOT use the
”AnalyseThis” button. Its findings are dangerous if misinterpreted.
DO NOT have Hijackthis fix anything yet. Most of what HJT lists will be harmless or even required by your Operating System.
OJ
Linear Mode
