I tried different programs to remove it, but had no success. Tdsskiller and MBAM quick scan doesn’t detect it. It is only detected by MBAM full scan - i got 3 infected files in that directory - C:\Users\Filkam\AppData\Local\Temp\iswizard\ Deleting the directory didn’t do any good either. My screen goes black every 5 minutes for 2-3 seconds and I continue to receive a message that my NVidia display driver stopped responding and recovered.
I enclose the logs from OTL and aswMBR.exe. I will be very glad if you can give me some solution how to remove the trojan.
[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
Everything is fine now, no more black screens, no sign of malicious activity, computer runs as it should be. The only detection now is in the “moved files” directory in _OTL folder, which is normal, I suppose.
I attach the latest log from MBAM scan. Let me know how to remove the tools and the remains of the trojan.
I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems
Now the best part of the day ----- Your log now appears clean
A good workman always cleans up after himself so…The following will implement some cleanup procedures as well as reset System Restore points:
Run AdwCleaner and select Uninstall
Delete AswMBR from the desktop
Run OTL and hit the cleanup button. It will remove all the programmes we have used plus itself.
Clear Restore Points
Go Start > All Programmes > Accessories > System tools
Right click Disc Cleanup and select run as administrator
When it pops up at the first prompt select OK after it has done some calculations the tabs will appear
Select More Options tab
Press Sytem Restore and Shadow Copies Cleanup button
Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:
Download and install FileHippo update checker and run it monthly it will show you which programmes on your system need updating and give a download link
If you use on-line banking then as an added layer of protection install Trusteer Rapport
It is critical to have both a firewall and anti virus to protect your system and to keep them updated. To keep your operating system up to date visit
[*]Microsoft Windows Update
Everything is fine now, I ran some tests from MBAM and Avast, no infection, computer is clean. Thanks for all your recommendations, I downloaded the programs, they look very useful indeed.
Still can’t believe it - after I tried for a whole day to remove the trojan, you did it for 5 minutes. You are a real magician. Many thanks again!