#0 - Aug. 20, 2008, 2:50 p.m.
Hi all, this guide will help you clean up your PC. Not just keyloggers, but also other malicious software.
Last update: August 4, 2010
Screenshots have now been added!!!
Please also take a look at the Unofficial Helper's Forum (with IRC!)
> http://www.bamboobix.info < (Thanks to Anayra for running this!)
First of all, a note: Hijackthis is a tool, used for finding infections in your computer. Please note: THIS IS NOT A SCANNER. It shows both malicious rules, but also LEGIT rules. Do not fix rules in Hijackthis yourself!
You can find a list of forums that are qualified to look at your Hijackthis log here: http://asap.maddoktor2.com
In addition, here’s a list of forums where you can post your hijackthis logfile. – If you know any others, please let me know in a comment/reply!
Dutch/Belgium:
www.hijackthis.nl/forum
www.minatica.be/forum.php
http://www.antispywareoffensief.nl/forum/
English:
http://www.spywareinfoforum.com/
http://forums.techguy.org/
http://www.techsupportforum.com/
You are also permitted to post your logfile in this thread. Please not that whatever you choose to do, please post your logfile at only one place. Posting it on multiple places is a waste of time for the helpers.
Before posting a Hijackthis log, please do the following steps upfront. I know this is a lot of work, but that way most malware is already deleted and your logfile can be looked at faster.
Please remember: Follow ALL steps, including step 7
Note: Vista/Win. 7 users must run installations and the downloaded programs as Administrator. You can do this by right-clicking the program and select Run as Administrator (The screenshot shows it for Hijackthis, You must use this for every program we use here)
http://img408.imageshack.us/img408/6665/guide1bb5.jpg <-- Screenshot
1.
Note: CCleaner can ask you to install Yahoo Toolbar during the installation. Uncheck this option if you do not want the toolbar!
Screenshot: http://www.plaatjesupload.nl/bekijk/2010/02/08/1265647242-080.jpg
2. Download SUPERAntiSpyware (http://downloads.superantispyware.com/downloads/SUPERAntiSpyware.exe )and install it.
Afterwards, open the scanner and make sure it’s up-to-date. Press Scan Your Computer and then select Perform Complete Scan. Wait until the scan is complete. Once done, make sure everything is checked and press Next until everything is deleted/fixed. If it asks you to reboot, do so.
Screenshot: http://www.plaatjesupload.nl/bekijk/2010/08/04/1280913154-790.jpg
3.
Screenshot: http://www.plaatjesupload.nl/bekijk/2010/02/08/1265650645-650.jpg
4.
The Logfile will automatically be saved at the Logs tab in MBAM.
If MBAM found objects that can't be deleted, it will ask to reboot your computer. Allow this and restart your computer.
Screenshot: http://www.plaatjesupload.nl/bekijk/2010/02/08/1265650977-740.jpg
5. Do a full system scan with your virusscanner and remove all found infections.
If you do not have a virusscanner – GET ONE ASAP!!- , you can scan online with one of these scanners. (Use Internet Explorer to scan)
BitDefender: http://www.bitdefender.com/scan8/ie.html
Panda: http://www.pandasoftware.com/activescan/com/activescan_principal.htm
Kaspersky: http://www.kaspersky.nl/scanner
Remove all infections found.
6. Restart your computer.
7.
A notepad file will open. In the Notepad file, press CTRL + A to select everything, CTRL + C to Copy everything. Then press CTRL + V in a new topic at the forum you want to post the log.
Screenshot: http://www.plaatjesupload.nl/bekijk/2010/02/08/1265651202-490.jpg
Also paste the MBAM log on the forum you place the Hijackthis logfile.
Many thanks for reading, if you have questions or problems, please ask :)
Also: Please note: Doing this all, is NOT A GUARANTEE your computer is not infected. There is no scanner that has a 100% detection rate.
- Logicaly
PS. Logicaly is my new main. The old one was MagekÃd. It’s still me :D
PS2. To that sneaky person posting in the US forums: WTB credits-link!
PS3. Last update: Removed Ad-Aware, added SUPERAntiSpyware, changed a few lines :)