hello today accidently i opened a pendrive when virus notification showed.then i checked virus using avast.Then i saw many virus available in pc.I removed them using avast and malwarebye. I need to know
1.im safe or I should format whole the pc and re install to get rid of that virus or any help to do?
2 Do avast able to completely remove all Thoses viruses ?
attachments
Hi I will need to do several checks as some anomalies are present
CAUTION : This fix is only valid for this specific machine, using it on another may break your computer
Open notepad and copy/paste the text in the quotebox below into it:
CreateRestorePoint: HKU\S-1-5-21-4248456161-169696266-4104534752-1000\...\MountPoints2: H - H:\AutoRun.exe HKU\S-1-5-21-4248456161-169696266-4104534752-1000\...\MountPoints2: I - I:\.\ShowModem.exe HKU\S-1-5-21-4248456161-169696266-4104534752-1000\...\MountPoints2: {1345be03-302e-11e1-baae-402cf41f8e57} - H:\AutoRun.exe HKU\S-1-5-21-4248456161-169696266-4104534752-1000\...\MountPoints2: {1345bf66-302e-11e1-baae-402cf41f8e57} - I:\AutoRun.exe HKU\S-1-5-21-4248456161-169696266-4104534752-1000\...\MountPoints2: {5fc9507b-3226-11e1-bfca-402cf41f8e57} - I:\AutoRun.exe HKU\S-1-5-21-4248456161-169696266-4104534752-1000\...\MountPoints2: {8420691e-3480-11e1-a792-402cf41f8e57} - I:\AutoRun.exe HKU\S-1-5-21-4248456161-169696266-4104534752-1000\...\MountPoints2: {b22480ed-338c-11e1-9fdc-402cf41f8e57} - I:\.\ShowModem.exe AppInit_DLLs: C:\Users\HP\AppData\Local\Linkey\IEEXTE~1\iedll.dll => C:\Users\HP\AppData\Local\Linkey\IEEXTE~1\iedll.dll File Not Found HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = SearchScopes: HKU\S-1-5-21-4248456161-169696266-4104534752-1000 -> {399DBF2C-B781-4A62-B40F-8F65E55047E3} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282698&CUI=UN87330541814207171&UM=2 SearchScopes: HKU\S-1-5-21-4248456161-169696266-4104534752-1000 -> {9BC65623-AFEA-4D2F-8890-2273E7483746} URL = http://www.mysearchresults.com/search?c=2402&t=01&q={searchTerms} BHO: No Name -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> No File BHO: No Name -> {7825CFB6-490A-436B-9F26-4A7B5CFC01A9} -> No File BHO: No Name -> {C35B7206-62EB-F808-5475-18A6FDE7DD94} -> No File Toolbar: HKLM - No Name - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - No File Toolbar: HKU\S-1-5-21-4248456161-169696266-4104534752-1000 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File CHR HKLM\...\Chrome\Extension: [ckiffeoeeefajohcpadlcdnkiahkmdfp] - C:\Users\HP\AppData\Local\CRE\ckiffeoeeefajohcpadlcdnkiahkmdfp.crx [2012-10-10] CHR HKLM\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\HP\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx [2013-09-23] CHR HKU\S-1-5-21-4248456161-169696266-4104534752-1000\...\Chrome\Extension: [ckiffeoeeefajohcpadlcdnkiahkmdfp] - C:\Users\HP\AppData\Local\CRE\ckiffeoeeefajohcpadlcdnkiahkmdfp.crx [2012-10-10] CHR HKU\S-1-5-21-4248456161-169696266-4104534752-1000\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\HP\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx [2013-09-23] Task: {2EDE8B64-0780-45D2-9D64-CE114B4C18EF} - \YourFile DownloaderUpdate No Task File <==== ATTENTION Task: {795090FC-CCB2-4A97-B33B-1F5BC680E656} - System32\Tasks\DefaultCheck => c:\Users\All Users\dtdata\R002.exe <==== ATTENTION Task: {847638AF-C247-4F9A-AC59-6A89C682A1BB} - System32\Tasks\Default2Check => c:\Users\All Users\dtdata\R003.exe [2014-12-03] () <==== ATTENTION c:\Users\All Users\dtdata C:\ProgramData\ChgService.exe EmptyTemp: CMD: bitsadmin /reset /allusers
Save this as fixlist.txt, in the same location as FRST.exe
https://dl.dropboxusercontent.com/u/73555776/FRSTfix.JPG
Run FRST and press Fix
On completion a log will be generated please post that
THEN
Please download AdwCleaner by Xplode onto your desktop.
[*]Close all open programs and internet browsers.
[*]Double click on AdwCleaner.exe to run the tool.
[*]Click on Scan.
[*]After the scan is complete click on “Clean”
[*]Confirm each time with Ok.
[*]Your computer will be rebooted automatically. A text file will open after the restart.
[*]Please post the content of that logfile with your next answer.
[*]You can find the logfile at C:\AdwCleaner[S1].txt as well.
FINALLY
Download the latest version of TDSSKiller from here and save it to your Desktop.
[*]Doubleclick on TDSSKiller.exe to run the application
https://dl.dropbox.com/u/73555776/tdss%20start.JPG
[*]Then click on Change parameters.
https://dl.dropbox.com/u/73555776/tdss%20Change%20param.JPG
[*]Check the boxes beside Verify Driver Digital Signature, Detect TDLFS file system and Use KSN to scan objects , then click OK.
[*]Click the Start Scan button.
[*]If a suspicious object is detected, the default action will be Skip, click on Continue.
https://dl.dropbox.com/u/73555776/tdss%20threat.JPG
[*]If malicious objects are found, they will show in the Scan results and offer three (3) options.
[*]Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
[*]Get the report by selecting Reports
https://dl.dropbox.com/u/73555776/tdss%20report.JPG
[*]Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
Please copy and paste its contents on your next reply.
@essexboy … topic started her https://forum.avast.com/index.php?topic=164494
Ta
today i was going to run FRST.exe but avast doesnt allow to open FRST.exe it showed warning.So i checked whole the pc using malwarebyte and avast for malicious items.But malwarebyte/avast didnt find any virus.So my pc is clean? so idont need to do above fixes given by essexboy.TY
new attachment for malwarebyte is given below
right click avast tray icon and pause shields … then run FRST fix
@essexboy
On completion a log will be generated please post that
What problems are you experiencing ?
for AdwCleaner logs are attached below
no problem found when TDSSkiller used(as below pic)
How is the computer behaving now ?
it behave as normal for me.So my computer is clear from all the viruses and harmfull treates?
As far as I can see from the logs it looks clean
kk thx for help
Subject to no further problems 
I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems
Now the best part of the day ----- Your log now appears clean 
A good workman always cleans up after himself so…The following will implement some cleanup procedures as well as reset System Restore points:
Remove tools
Download and run Delfix
https://dl.dropboxusercontent.com/u/73555776/delfix.JPG
: Keep Java Updated :
WARNING: Java is the #1 exploited program at this time. The Department of Homeland Security recommends that computer users disable Java
See this article
I would recommend that you completely uninstall Java unless you need it to run an important software.
In that instance I would recommend that you disable Java in your browsers until you need it for that software and then enable it. (See How to diasble Java in your web browser and How to unplug Java from the browser)
If you do need to keep Java then download JavaRa
Run the programme and select Remove Java Runtime. Uninstall all versions of Java present
Once done then run it again and select Update Java runtime > Download and install Latest version
https://dl.dropboxusercontent.com/u/73555776/javara.JPG
Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:
CryptoPrevent install this programme to lock down and prevent crypto ransome ware
https://dl.dropboxusercontent.com/u/73555776/CryptoPrevent.JPG
Update and run weekly to keep your system clean
Click on the link above to be taken to Unchecky.com
click the very large Download button.
click Save
Click Open folder
Right click on the Unchecky_setup and choose to Run as Administrator
Once open click the Install button.
Then click on Finish
Unchecky is now installed and will help you keep unwanted check boxes unchecked, this is a fire and forget programme 
It is critical to have both a firewall and anti virus to protect your system and to keep them updated.
To learn more about how to protect yourself while on the internet read this little guide Best security practices Keep safe 