Malware And Trojan Horse Found

Sorry about the delay in a response. Please run the below:

Please download the latest version of Farbar Recovery Scan Tool and save it to your desktop.

Note: Make sure you download the correct version for your PC. Only the correct version will work.

• Double-click to run it. When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your next reply.
• The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

 

Re run Malware Bytes and let it quarantine/remove what it finds.


Copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

Make sure that you tell me if you receive a success message about adding the above
to the registry. If you do not get a success message, it definitely did not work.



Please give Ccleaner a run, not the reg scanner, just the cleaner itself to be rid of a chunk of temp files/folders...

Re scan now with Malware Bytes and upload a hopefully clean log.
Rescan with Hitman, and upload latest log for me to see.

 

Download OTL to your desktop.


We need to run an OTL Fix

• Right-click OTL.exe And select " Run as administrator " to run it. If Windows UAC prompts you, please allow it.
• Copy and Paste the following code into the Image textbox. Do not include the word Code

Code:

:Reg
[-HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}\]
[-HKLM\SOFTWARE\Classes\s\ (Softonic)
[-HKLM\SOFTWARE\Classes\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}\]
[-HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}\]
[-HKLM\SOFTWARE\Classes\Wow6432Node\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}\]
[-HKLM\SOFTWARE\SpeedBit\]
[-HKLM\SOFTWARE\Wow6432Node\SpeedBit\]
[-HKU\S-1-5-21-2699240120-1088738073-1567625944-1002\Software\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458e-AE16-1C1D8255C28A}\]

:commands
[EMPTYTEMP]
[RESETHOSTS]
[REBOOT]

• Then click the Run Fix button at the top.
• Click Image.
• OTL may ask to reboot the machine. Please do so if asked.
• The report should appear in Notepad after the reboot. ATTACH that report in your next reply.

Now rerun Hitman again and upload the latest log.

 

A few remain, would you be comfortable going into the Windows Registry to delete them?

• HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
• HKLM\SOFTWARE\Classes\s
• HKLM\SOFTWARE\SpeedBit
• HKU\S-1-5-21-2699240120-1088738073-1567625944-1002\Software\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458e-AE16-1C1D8255C28A}

 

https://support.microsoft.com/en-gb/kb/322756 <<< Check this link