My PC was infected with this the other day and I'm not sure I have got rid of it or have a secondary/super infection.
I downloaded Malware bytes, saved as winlogin.exe
Started in safe mode and cleared a bunch of malware files.
The general advice feom the web was to use Regtweaker to clean the registry after running malwarebytes. I can't afford the Regtweaker licence as I'm out of work just now so used Regcleaner, Regclean, Registry Mecahnic. There are still about 2700 erroneous registry entries which I can;t fix. There seems to be a lot of errors in menu locations.
I've done this for a several iterations and eventually the last two sweeps of malwarebytes have been clean.
I still have the following problems
PC is shutting down when I try to start anythig from Start menu. Cooling is OK
Opening google hits opens spurious pages particularly when search term is anythin malware related.
IP address has been changed (can see IPconfig.exe processes running on start up
Mail clinet Turnpike V6 log saying IP address is wrong but will collect mail (incluing spam) if left running.
Unable to use mailwasher
Spurious windows opening with ad sites malware removal sites.
Windows Security Control Centre disabled.
When enabled alerts that AVG is out of date (which I don't even have installed)
Windows update will not run.
I can still use the web and access websites from favourites or by typing in URL
Is my PC still infected?
Is it safe to continue using the web? Will this malware evolve and do anything severe like wipe files from my PC?
Are there any free/ fully functional free to try registry repair apps available which could sort out about 2700 registry errors Regcleaner doesn't detect?
Are there any free tools to remove this and repair?
Any advice would be most welcome.