[Private Baldrick]

EF,

Have run the Malware removal as instructed. All seems to be well now.

I was getting Malware, Adware and Pop ups appearing which started yesterday evening.

I have attached logs as requested and look forward to any more advice.

Many thanks for your guidance.

Ian.

[evilfantasy]

Good job on working the guide! You took care of loads of problems

Just a few leftovers to fix then final cleanup steps and you should be in the clear.

Open Hijackthis and select Do a system scan only.

Place a check mark next to the following entries: (if there)

O22 - SharedTaskScheduler: endopsychic - {92050ffb-b796-4146-ae27-7e5e1d93b8a8} - (no file)
O22 - SharedTaskScheduler: auras - {f0d4f88e-e1f8-460f-a41c-6cfb7f73af79} - C:\WINDOWS\system32\xskmoqx.dll (file missing)

Important: Close all windows except for Hijackthis and then click Fix checked.

Exit Hijackthis.

Download FileASSASSIN and save to your desktop.

• Double click fa-setup and let it install to the default location.
• Open the folder and double-click on FileASSASSIN.exe.
• Copy the file path in the code box and then paste it in FileASSASSIN's window.

Code:

C:\WINDOWS\system32\xskmoqx.dll

• Start with the default removal method:
• "Attempt FileASSASSIN's method of file removal" by placing a check mark in the following boxes.
  • Unlock locked file handles
  • Unload modules
  • Terminate the file's processes
  • Delete file
• Click Execute and the removal process will begin.
• If that did not work, start the program again, select the file(s) the same way as before and this time check "Use delete on reboot function from windows."
• The file may not be found since we used HJT but this will be a "second opinion" to make sure it is gone. If it's not found then don't worry, it is a good thing.

----------

This is a good time to clear your infected system restore points and establish a new clean restore point:

• Go to Start > All Programs > Accessories > System Tools > System Restore
• Select Create a restore point, and click Next.
• Next, go to Start > Run and type in cleanmgr
• Select the More options tab
• Next to System Restore click Clean up...

This will remove all restore points except the new one you just created.

Check out Keeping Yourself safe On The Web for tips and free tools to keep you safe in the future.

Also see Slow Computer? It May Not Be Malware for free cleaning/maintenance tools to help keep your computer running smooth.

Let us know if anything else comes up.