Two affirmations to start: 1) Do not reformat or use system restore to start from new as it is too harsh and you should do it only as a last resort.
2) Do not copy your documents elsewhere as this will only spread the Malware and do NOT use your Email until this is cleaned.
Now for the main part: This is Malware, deeply rooting itself in your system (some even hide in your router's firmware). Virus scanners and the Restore Point Utility are not good things to use against such invasion for this reason alone.
Get the programs I listed from another computer (Internet Café, Public Library or friend's computer) onto a USB stick as Malware blocks you from downloading protection. A word of caution, be sure to read all programs help files completely before using them. If you still cannot use MBAM, rename it Alteregobytes to confuse the Malware (but be sure to keep the .exe extension on it) and use it as alternative for part A of the following solution.
TRYING MBAM ALONE IS NOT ENOUGH AS YOU NEED A COMPLETE SOLUTION, here is one (use programs in the order stated):
A) Download MBAM (MalwareBytes' Anti-Malware): http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?part=dl-10804572&subj=dl&tag=button - Install the application and make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish ( If an update is found, it will download and install the latest version ).
Once the program has loaded, select "Perform Quick Scan", then click Scan ( The scan may take some time,so please be patient ). When the scan is complete, click OK, then Show Results to view the results. Make sure that everything is checked, and click Remove Selected ( When disinfection is completed, a log will open in Notepad and you may be prompted to Restart ).
B) Try the tricks and free programs I use: 1) Clean browsers junk.
Method One (now): In Internet Explorer (IE), click the Tools menu, then Delete Browsing History and in the box, click the Delete all button (bottom left) and Yes.
In Firefox (FF), go to tools, clear private data, make sure all boxes are checked and then click on the clear private data now button.
Method Two (Normal use: Every 14 days - Heavy use: Every 7 days): In IE, click the Tools menu, Delete Browsing History and in the box that opens, do these: a) click the button near Temporary Internet Files, click Yes and wait for the box that opens to close.
b) click the button near History, click Yes and wait for the box that opens to close and finally, click the close button (bottom right) to finish.
In FF, Go to tools, clear private data and uncheck all except Browsing History, Cache and Authenticated Sessions boxes then click on the clear private data now button.
Note: Close browser when done to clear cookies still in memory. For other browsers or versions of the programs, check help files for guidance on doing cleanup.
2) Turn off the restore point utility ( Guide for XP: http://support.microsoft.com/kb/310405 and Vista: http://windowshelp.microsoft.com/Windows/en-US/Help/9f6d755a-74bb-4a7d-a625-d762dd8e79e51033.mspx )
3) Use this free cleaner: http://www.glaryutilities.com/gu.html to remove junk and remnants files.
4) Use a "Disk defragmenter".
5) Turn restore point utility back on. (see part 2)
6) Do not use toolbars (spyware).
7) Persisting problem after this, get Avira: http://www.download.com/Avira-AntiVir-Personal-Free-Antivirus/3000-2239_4-10322935.html?cdlPid=10901492 plus an Email scanner ( http://www.spamdel.com/ OR http://www.glenn.delahoy.com/software/files/Inbox.htm ). Already have a scanner, make sure your virus database is updated BUT do not use AVG free (Too many false positives).
8) If the problem is very stubborn and you have a router, visit its web site and check for firmware that is more recent than your version. If FOUND, download and install, if NOT, use the router's reset switch, both methods return it to factory settings. "WARNING": Gather router install CDs, guides, passwords before doing this as you will need to do all connections again.
By doing so, you are on your way to being well protected BUT never relax your guard !
Links listed, experience in buying (3 years for the Government before retirement) and computing (26 years including 9 years for internet)
· 1 decade ago