My browser is hijacked by aartemis virus. I have removed it from register and deleted browser history, but it is still there. I have windows 7 and avast internet security. what to do?
Follow this guide and attach requested logs: http://forum.avast.com/index.php?topic=53253.0
Needed are OTL,aswMBR and Malwarebytes.
When done a malware expert will help you. 
Monitoring…
hi. here comes OTL.Txt there was no extras.txt
You still need report from MalwareBytes and Aswmbr
there seem to be some problem with attachments. message 413 Request entity too large. will be back tomorrow 
How big is the attachment? ?.. max size is 512kb
If to big upload to a fileshare site and give download link here
mbam-log
aswMBR
that should be all. the bug is still up there in my browser. anything to be done?
Please download AdwCleaner by Xplode and save to your Desktop.
Double click on AdwCleaner.exe to run the tool.
[*]Click on the Scan button.
[*]After the scan has finished click on the Clean button.
Press OK when asked to close all programs and follow the onscreen prompts.
Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
[*]After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
[*]Post logfile will also be saved in the C:\AdwCleaner folder.
Then…
Please download Farbar Recovery Scan Tool by Farbar and save it to your desktop.
Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them.
Only one of them will run on your system, that will be the right version.
[*]Double-click to run it. When the tool opens click Yes to disclaimer.
[*]Under Optional Scan ensure “List BCD” and “Driver MD5” are ticked.
[*]Press Scan button.
[*]It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply.
[*]The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
done… should I push fix on the farbar scan tool?
wow… it’s gone… awesome… thanks for all your help…I learned a lot from this…if there isn’t anything more that needs to be done… happy new year… ;D
1. Open notepad and copy/paste the text present inside the code box below.
To do this highlight the contents of the box and right click on it. Paste this into the open notepad.
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to the operating system
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S2 vToolbarUpdater15.3.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\ToolbarUpdater.exe [x]
C:\Program Files (x86)\Skype\Toolbars
C:\Program Files (x86)\Common Files\AVG Secure Search
cmd: ipconfig /flushdns
Task: {D6CC3CD6-5D8D-43D7-977A-AB04AD7CB917} - System32\Tasks\4411 => Wscript.exe C:\Users\POG\AppData\Local\Temp\launchie.vbs //B <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe <==== ATTENTION
Task: {A63FA2E9-8B54-4477-ABFF-31027B2C77DF} - System32\Tasks\0 => Iexplore.exe <==== ATTENTION
Task: {C0999CFB-F160-4468-987D-EE8AE6B2AC24} - \NCH Software\VideoPadDowngrade No Task File
AlternateDataStreams: C:\Users\POG\Cookies:3baK4b3F0M33ooA0B
AlternateDataStreams: C:\Users\POG\AppData\Local\m3U8KNhIWJohEXW:8gjvszVmn01GpxzxOQ2WoVVFOkp
C:\Users\POG\AppData\Local\Temp\launchie.vbs
2. Save notepad as fixlist.txt to your Desktop.
NOTE: => It’s important that both files, FRST and fixlist.txt are in the same location or the fix will not work.
3. Run FRST/FRST64 and press the Fix button just once and wait.
If the tool needed a restart please make sure you let the system to restart normally and let the tool completes its run after restart.
The tool will make a log on the Desktop (Fixlog.txt). Please attach it to your reply.
Note: If the tool warned you about the outdated version please download and run the updated version.
here is the fixlog
Good, re-run FRST, check Addition.txt , press Scan and attach both reports…
addition and frst
PC is clean, how are the things now?
it seems fine. the pc has not been this fast for å long time. think I will install google chrome. is that a problem? the whole thing started when I tried to install google earth.
do you advice against it?
You can install it, but always download program from official site. Other important thing is to follow every step of installation carefully, and to un-check everything except main program.
We will now remove used tools, and perform some house cleaning.
==================================================================
Please download TFC by OldTimer to your desktop
[*]Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
[*]It will close all programs when run, so make sure you have saved all your work before you begin.
[*]Click the Start button to begin the process. Depending on how often you clean temp
files, execution time should be anywhere from a few seconds to a minute
or two. Let it run uninterrupted to completion.
[*]Once it’s finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.
==================================================================
Please download DelFix by “Xplode” to your Desktop.
Run the tool and check the following boxes below;
[] Remove disinfection tools
[] Create registry backup
[*] Purge System Restore
Now click on “Run” button. Wait for the programme completes his work.
All the tools we used should be gone.
Tool will create and open an log report (DelFix.txt)
Note: The report will also be stored on C:\DelFix.txt
I don’t need DelFix log report.
==================================================================
Cheers 