Just posting this for my self:
Malwarebytes' Anti-Malware (MBAM)
Download Malwarebytes Anti-Malware and save it to your desktop. Alternate download link (.exe)
* Double-click mbam-setup.exe and follow the prompts to install the program.
* Be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform Quick Scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad. Save it to a convenient location like the Desktop.
* The log is also automatically saved and can be viewed later by clicking the Logs tab in MBAM.
* Copy and Paste the contents of the report in your reply.
* Exit MBAM.
.
Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.
HijackThis
Please run HijackThis only after the above steps have been completed
Download and rename HijackThis.exe (HJT)
* Double-click on HJTInstall.
* Click on the Install button.
* It will automatically place HJT in C:\Program Files\TrendMicro\HijackThis\HijackThis.exe.
* Upon install, HijackThis should open for you.
* Close HijackThis and rename it.
* Go to C:\Program Files\Trend Micro\HijackThis.exe
* Right click on HijackThis.exe and select Rename.
* Type in sniper.exe and press Enter.
* Right-click on sniper.exe and select Send To > Desktop (create shortcut)
.
* From the desktop open HijackThis.
* If using Windows Vista, Right-click and Run As Administrator.
* Click on the Do a system scan and save a log file button
* HijackThis will scan and then a log will open in notepad.
* Copy and Paste the entire contents of the log in your post.
.
Do not have HijackThis fix anything yet. Most of what it finds will be harmless or even required.
.
Although we have renamed HijackThis to sniper, we will still refer to it as HijackThis or HJT.
Some more self-serve links:
http://www.free-av.com/http://www.personalfirewall.comodo.com/
