This is a Do-it-yourself  Windows Virus Removal tutorial that will help you with basic infections, if this instructions are not enough to clean your PC,  you will need to reach for your pocket and pay a visit to your local PC repair shop.


Opening Windows by Name and Executing Commands the Fast Way

Instead of chasing for dialog windows, I will  tell you the direct command, so when I say “Open inetcpl.cpl” (notice the italics) – I need you to hit the keyboard combination Win-R like the picture below, then type the command inetcpl.cpl in the box and hit OK.


Let’s start!

Get the Tools

Download and Install:

Download the following:


Remove Proxy in Internet Explorer

Open inetcpl.cpl.
Click on  the Connections tab and then on the Lan Settings button.
Mark the check-box Automatically detect settings
All other check-boxes should be blank.
Click OK.



Disable System Restore and Antivirus

Open sysdm.cpl.
Click on the System Protection tab.
Click on the Configure button.
Click on the Turn off system protection bubble and then click OK.

Open your antivirus program and completely disable it so that it does not conflict with the ones we will use for this tutorial. You can re-enable it after we finish.


Login into Safe Mode with Networking

Some viruses are disabled in Safe Mode thus we will login into Safe Mode sometimes while cleaning the computer. To log in into Safe Mode, restart your computer and while it is booting up, press F8 until you get the Safe Mode menu, select Safe Mode with Networking, and log in.




Purge Your Startup Using MsConfig

Open msconfig.exe.
Click on the Startup tab.
Uncheck suspicious items in the list.
Click on the Services tab and uncheck suspicious items.
Click OK, and reboot again into Safe Mode with Networking.

Be careful with what you uncheck, if unsure, leave them alone. Use Google to research each item you find suspicious.



Do a Cleanup with CCleaner

Open CCleaner.
Use the Cleaner and Registry tabs to perform a system cleanup.There is a tutorial on how to use CCleaner here.
If asked to reboot after the cleaning, reboot again into Safe Mode With Networking.



Hunt for Infections with HijackThis

Click on the HijackThis.exe file you already downloaded.
Click on the Do a system scan and save a log file button.
A text file with the results will open:



Copy the contents of this file, open this website and paste the contents of the file inside the Log File box, then click on the Analyze button.

You will get something that looks like this:


The items marked with ? or X need your attention. Google them and if you are sure they are infections, go back in the HijackThis program and check them for removal. When you have selected all the items that need to be removed, click on the Fix Checked button.
If asked to restart, reboot again into Safe Mode with Networking.


Further Cleaning with Autoruns

Go to the folder where you previously downloaded
Extract the file.
Go inside the Autoruns folder and click on autornus.exe, you will get this window:


Skip the Everything tab, but go into any other tab one by one. Analyze each item in the lists, Google them, and if you are sure they are infections, right click and delete them.
When done, reboot into Safe Mode with Networking.


Reset All Internet Browsers

Each browser and browser version have different ways to reset them, if yours is not in this list, Google how to reset it.

For Internet Explorer:
Open inetcpl.cpl.
Click on the Advanced tab.
Click on the Reset button.

For Chrome:
How to reset google chrome:

For Firefox:
Open firefox.
Click on the Help menu.
Click on the Reset Firefox button.


Run MalwareBytes and Super Antispyware

You already installed these two programs, first run MalwareBytes, remove any infections it may find. Reboot into Safe Mode with Networking and then run Super Antispyware. When done with the two tools, reboot into normal mode.


Run Other Tools

If by this point you have not been able to get rid of a virus, you can try some of the other tools in my Windows Support Tools post, or just consider taking your computer for an annual checkup, if all is OK, let’s wrap up.


Wrapping Up

This section is meant to stabilize after the removal of infections.

1) Open cmd.exe and run sfc /scannow. This step can easily take an hour to complete and you may be asked for your Windows CD.

2) Hit the Win key, type cmd and hit the combination Ctrl-Shift-Enter.
In the window that opens type netsh winsock reset and hit enter.

3) Re-enable System Restore.
Open sysdm.cpl.
Click on the System Protection tab.
Click on the Configure button.
Click on the Restore system Settings and previous versions of files bubble and then click OK.

4) Uninstall MalwareBytes and Super Antispyware (using the control panel).

5) Re-activate your antivirus and update it.