SHeur2.ARUD

I got this nasty little trojan a week or so ago and it's been a bugger up until I found this forum. At least I hope so. But I just wanted to hopefully list an FYI and hopefully some good tips. I followed your Malware removal guide to the letter.

Renaming SuperAntiSpyware to SAS.exe got it to install, but would not run after install.

I downloaded and installed Malwarebytes as instructed but after install it also would not run.

I downloaded and installed Combofix. At first the install wouldn't run, so I tried your trick of renaming the exe to CF.exe and then it installed. Upon the initial run through it found 3 rootkit files it asked to write down (long *** names!) and ask me to reboot. Upon reboot it started automatically. It rebooted again on it's own, why I'm no sure as I had stepped away from the computer. But it started automatically again once I logged back in and finished. I can't stress enough the meaning of the word patience!! This step can take time and there are no status bars. The program finished just as the instructions said it would.

After the completion of ComboFix, SAS did launch and I ran a complete scan to which it did find 6 threats. I took the defaults and let it quarantine the items, then immediately rebooted. Malwarebytes also now launched properly, and I ran a complete scan. While was running, and finding threats, my AVG kicked in and started finding trojans as well. Most likely the previous steps got the infections on the run and are now easier to detect.

I'm hoping this resolves my issue. If you want me to post a logfile I will. Thanks for supporting this forum!!

 

Just a follow up, the RunMe First procedures appears to have resolved my issue. Thanks a bunch for posting those procedures! :highfive