http://www.bleepingcomputer.com/virus-removal/remove-antivirus-action that is if you have that malware.. Note DO NOT click on ads top of page just read further down.
Below from a post by Ex_brit
If it is another malware best to follow this
Before doing anything else please read this McAfee article.
If possible is to locate removal tools on the web and that is where Google can be your friend. Be careful what you pick though!
Here are some FREE programs that you can download to get adware/spyware removed from the machine (keep them AND your computer updated!):
NOTE: I have noticed a lot of posters with adware/spyware issues. These products are owned by other companies and aren't something we support. However, they are excellent programs that I would recommend to remove this stuff. If you are having problems removing the adware/spyware from the machine or problems with the product, you need to go to the company that corresponds with the product that you have installed for support.
- we are not responsible for any problems caused by these programs. Most have their own support. Also note that anti-spyware software will often remove all your good cookies (along with any bad ones of course) - so you have to be careful what you delete when the scan finishes.
Users will have to check each website for compatibility. Remember to keep them updated!!
Support Forum: http://forums.superantispyware.com/
Download the free version here:
Rename the setup file and the default folder it creates when you install the program to something new. Do the same with the exe file. Some malware look for know Anti Malware programs and their folders.
I just finished running everthing and the Malwarebytes caught several items. The systems has been runnning fine. I ran it a few extra times and it came up clean. Thank you so much - this was a major headache.
I had a little trouble deleting and replacing the hosts file. I did it via the Explore function. The Hosts Perm file did not seem to do antything. I am not sure if that is correct (to delete). The file was only 1 kb . If I did anything incorrectly or need to review anything please advise.
I am not sure how important replacing theHosts files is.
Can I delete the RKill, Maleware, and Hosts-Perm files from my destops?
THank you - The following is how the host file looks under drivers\etc:
name Date Modified Type Size
hosts 12/11/2010 9:52 AM File 1KB
When I open the file in Noterpad it look like this:
# Copyright (c) 1993-2006 Microsoft Corp.
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
# For example:
# 126.96.36.199 rhino.acme.com # source server
# 188.8.131.52 x.acme.com # x client host