Please Read This Before Posting On The Malware Removal Forum

Bugbatter — Fri, 09 Jan 2009 16:19:32 GMT

In order for us to help you, please describe your malware problem by including as much detail as possible. Please include virus/trojan/worm names and locations if available. The more information you can give us the better we can help, and the sooner you will be helped.
The diagnostic scans that we ask you to run examine certain key areas of the Registry and Hard Drive and list their contents. These areas are used by both legitimate programmers and malware writers. Most of the items listed in the logs are legitimate.

Please Use A Descriptive Title For Your Thread

Good Titles:

"Redirected Searches", "Advertising Pop-Ups", "Fake Anti-Virus Pop-Ups", "No Internet Connection", "Virus in [filename]", “Many Adware Windows Opening”, "Unable to Update Security Software”,

Titles That Do Not Help Us:

"Help Me!", "My Log", "HijackThis Log", “Do You See Anything Wrong?”, “Clueless”, “Here’s the Log”, “Malware” and other general titles.

Required Logs for Your First Post

* NOTE: Word-wrap should be turned OFF so that your logs format correctly when posted on the forum.

Please download HJT(HiJackThis) Installer from Here to your desktop. Click the Download button.

When the Trend Micro HJT(HiJackThis) install box appears, double click on the HJTInstall.exe. Click on Install.

It will be installed by default here: C:\Program Files\Trend Micro\HijackThis A shortcut to the application will also be placed on your Desktop.

The program will open automatically after installation.

You can double-click the icon that was placed on the Desktop to run subsequent HijackThis scans or you can use the icon inside the folder. The folder HijackThis is where you will find the HJT(HiJackThis) logs that you save. When you use the application to remove anything, you will also find the backup copies made by HJT inside this folder.

Close all open windows except HijackThis. Click on "Do a system scan and save logfile" When the log pops up in Notepad copy and paste that file as a NEW THREAD on the Malware Removal Forum.

Before closing HJT(HiJackThis), please click on the Analyze This button. "Analyze This" is for Trendmicro use, and does not mean "Analyze My Log". You must post on the forum in order to receive an analysis of your log. Close the web page that appears and then close the program HJT(HiJackThis).

Posting Your Log:

1. Just click the Post a Message (upper right) here in the Malware Removal forum to start your own thread requesting assistance.

2. In the Compose window that opens, simply Right-Click and select Paste.

3. Please add text to describe your symptoms.

You will be asked to run additional diagnostic tools when a helper replies to your post.

Additional Tips:

* Please DO NOT post another program’s log, unless we specifically ask for it, but do let us know what other scans you have run. Additional logs can be helpful, but can also complicate the initial diagnosis. Please note that Combofix should NEVER be run unless requested. While it is a powerful tool useful for removing a number of infections, there can be mishaps. There are safeguards built into Combofix, but only someone trained in its use will be able to interpret the logs correctly and help you recover.

* Please include the header of any log that you post. (It contains important information for the Analysts.)

* Please do not include suspicious links. You may, however describe the type or name of sites that you are having a problem with. By using links, you would be putting other members at risk if they click on them by accident. If you need to give information about sites that you are redirected to, please disable the links by using hxxp:// instead of http://

* Please do not post a reply to your own thread until someone else has done so. The analysts look for unanswered topics. If they see 1 or more replies they may assume that you are already being helped.

Helping On This Forum

These members have graduated from well-known Malware Removal Schools and have proven their expertise and involvement in other reputable security forums. Please understand these users are not employees of Dell and are not compensated in any form. They are volunteers that give their time to help community users like you. The Dell team appreciates their expertise and assistance.

Bamajim
Bugbatter
grsamf
markamus
PCBruiser
quietman7
sjb07
sjpritch25
SpotCheckBilly
Zbestwun2001
1972vet

It is understood by the trained analysts that once a helper replies to a log, he continues working with you until the issue is resolved.

Because of the very nature of malware removal procedures, we request that anyone wishing to assist on the Malware Removal Forum use the following training resource to become qualified to give advice on diagnostic logs posted on that forum.

UNITE: Unified Network of Instructors and Trained Eliminators