Bleeping computer is a treasure trove of good advice and software. This is where we will be grabbing one of the programs, rkill from. JRT, adwcleaner and malwarbytes are all free software from Malwarebytes.
SuperAntiSpyware I had read about on some site years ago, tried it and found it to be an excellent tool in the fight against the digital germs and pathogens that exist online and added it to my lineup of tools!
NOTE: If your computer is kaboodled to the point where you can't even get online but you can boot into windows, then you will need another PC (desktop/laptop) to download these and put them on a USB stick. NOT one that's ever been used on the infected machine.
If your computer won't start up and you don't know how to figure out what's happening, you should probably consider consulting a computer repair service.
Download all of these by clicking each and accepting the download; don't just trust my links though, you can google these yourself. These downloads are for 64 bit Operating Systems. If you require 32 bit, you will have to google for those. Some of these aren't available for that architecture (good article explaining the difference, WARNING there's no TL;DR - too long didn't read version).
Save to downloads first, then copy to a clean stick after if you need:
3. NEXT: Run Adware Cleaner by hitting the SCAN button, then press CLEAN after the scan process is complete. This one is pretty quick at scanning so don't go too far ;)
It will ask you to reboot after, you can go ahead at this point and allow it to.
Allow MBAM to finish each step and if there are any threats, like mine, hit Quarantine Selected
1. Run rkill.exe
This little gem kills (stops) ghosted and malicious processes, takes out registry policies that can prevent normal operating system (OS) processes and it repairs file extension hijacks. Rkill What it does and doesn't is a good explanation of what this software does!
It will open one of those black magic DOS looking window, don't be alarmed, this is how it works. It will pop up a text window after telling you what actions it took. Read if you want, then close it. DO NOT REBOOT AFTER COMPLETING THIS STEP.
Immediately follow step 2.
2. Run malwarebytes and follow the steps in the images below; to make sure to turn on the scan for rootkits option.
Depending on infection levels, you may or may not have time to read reddit, in the only acceptable place a nerd like me considers, the crapper :p
4. NOW: Run Junkware Removal Tool, also now from malwarebytes! This, like Rkill will open and run in a DOS box (where the black magic happens ;) If you had any program open, this one will probably close them on you, just part of h ow it works.
Allow JRT to finish and reboot the machine again.
5. LAST: Run Super Anti-Spyware. This one will look for unwanted programs and will take out many, many cookies. Based on roughly 500 systems, this can catch some things the others don't; I added this into mix for my own process from the very start.
You can run through the defaults for the install, but I suggest to save some time you UNCHECK both the check for recent definitions and the submit a system diagnostic, then continue the install normally.
Now just follow the screens:
Click on the things to make SAS look like the image below, scroll down for exactly what things!
Click on the things below to look like the above:
Allow SAS scan your system, if it finds more unwanted software, make sure you select it to remove and get rid of it, before you continue!
And there you go, reboot your machine. If you had an infection, this method will more than likely have removed it.
Please if you found this useful, follow me on social media and share with your friends!