the reason the virus might keep coming back is it may be hiding in your system restore area.
boot into safemode (hit f8 repeatedly during windows initial startup)
login as admin
right click on your harddisk and turn system restore off under properties (this wil delete any restore points!)
reboot back into safemode again and turn it back on
start windows normally
Man alive its come back... i cant believe it. I checked the HijackThis list and found that this (below) was the only red mark that came up. so i can only assume that this is whats causing the problem. Im getting pretty cheesed off, it could be a website that im going on that is getting the trojan on my computer. Any suggestion?O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML [IMG]http://www.hijackthis.de/gfx/state/nasty.gif[/IMG] [IMG]http://www.hijackthis.de/gfx/state/rating_0.gif[/IMG]
The entry &AOL Toolbar search has been identified as nasty.
There are a couple dedicated removal tools for this.
-- A note on HJT and Online Analyzers.
Both miss a lot. An online analyzer is only as good as it's DB and there are a ton of baddies that do not show in a HJT Log in the first place.
I'd be happy to help you clean this, time permitting (I am juggling a number of threads in a number of forums at the moment).
At this point, I am not sure what you have and haven't done to your machine. So, please do the following:
Please look at the steps I have written here and obtain the three logs as directed and post them here.
2- AVG Anti-Spy
3- Fresh HJT Log
Often, there are multiple malware issues with this infection and it helps to get a good baseline from which to start. Those scans will do it and we'll go from there.
Following the recent ransomware attacks that leveraged the WannaCrypt0r malware and NSA-developed EternalBlue vulnerability exploit, there was plenty of advice that backup, backup, backup was the best mitigation. Data backups ...