In Post #4 you mention:
"I seem to have got rid on most of it..."
What steps did you take to do so? It would be helpful to know.
To remove what is left, try the following:
Please start the the computer and tap the F8
key before Windows starts.
When you see the Windows Advanced Options Menu
, using the arrow keys, select the Safe Mode with Networking
The ransomware may change Windows settings to use a proxy server that will not allow you to browse any pages on the Internet, so we need to check this out.
Please press the Windows
key, and then press the R
The Run dialog box appears.
in the Open area, and click OK.
When Internet Explorer appears, on the top navigation bar, click: Tools
Under the sub-menu of Tools select: Internet Options
Find the Connections
tab, and click on it.
Next, click: LAN Settings
Under the Proxy Server
section, if there is a check-mark in the box named: "Use a proxy server for your LAN", uncheck the box.
If not, move on to next step...
Press the OK button to close the Local Area Network dialog box.
Then, press the OK button to close the Internet Options dialog box.
Next, we need to download RogueKiller
Please hold the Windows
key and the R
key simultaneously to once again open the Run
In it, type: iexplore.exe http://tigzy.geekstogo.com/Tools/RogueKiller.exe
Press the OK
Save to the Desktop.
Windows Seven/Vista: Right-click and select 'Run as Administrator'
At the program console, press: SCAN
A report opens in Notepd: RKreport.txt
Please copy/paste the RKreport.txt
, and provide it in your reply.
If RogueKiller fails to run, right-click on the downloaded icon and select: Rename
Then, rename it to winlogon.exe
and try again.