Before you begin the SDFix instructions you should copy these instructions in a Notepad file and save them to your desktop or print them for easy reference. Much of SDFix will be done in Safe mode and you will be unable to access this web page after booting into Safe mode.Download
SDFix by AndyManchesta and save it to your desktop.
When using this tool, you must use the Administrator's account or an account with Administrative rights* Now, double-click on the SDFix icon that should now be residing on your desktop. If a
Open File - Security Warning box opens, click on the
Run button.
* A window will now open showing SDFix being extracted into the C:\
SDFix folder.
* Once the installation program has finished extracting SDFix, it will open a Notepad with further instructions.
* DO NOT use it just yet.
Reboot your computer in
Safe Mode using the
F8 method. To do this, restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode".
When your computer has started in safe mode, and you see the desktop, close all open Windows.
* Click on the
Start button, click on the
Run menu option, and type the following text from the Code Box into the
Open: field then click the
OK button.
C:\SDFix\RunThis.bat
* SDFix window will open containing some brief info and a disclaimer on the use of the tool.
* Type
Y on your keyboard and then press Enter to begin the cleanup process.
* It will remove any Trojan Services or Registry Entries found then prompt you to press any key to Reboot.
*
Press any Key and it will restart the PC.
* When the PC restarts, the Fixtool will run again and complete the removal process then display
Finished, press any key to end the script and load your desktop icons.
* Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as
Report.txt.
* Copy and paste the contents of the results file
Report.txt in your next reply along with a new
HijackThis log (from normal boot mode).