Jump to content

Cleaned PC of virus, now can't access internet! Please help


nomoretubesforme
 Share

Recommended Posts

Farbar Service Scanner Version: 18-01-2012 01

Ran by Matt (administrator) on 30-01-2012 at 12:07:48

Microsoft Windows XP Home Edition Service Pack 3 (X86)

Boot Mode: Normal

****************************************************************

 

Internet Services:

============

 

Connection Status:

==============

Localhost is accessible.

There is no connection to network.

Attempt to access Google IP returned error: Google IP is unreachable

Attempt to access Yahoo IP returend error: Yahoo IP is unreachable

 

 

File Check:

========

C:WINDOWSsystem32dhcpcsvc.dll => MD5 is legit

C:WINDOWSsystem32Driversafd.sys => MD5 is legit

C:WINDOWSsystem32Driversnetbt.sys => MD5 is legit

C:WINDOWSsystem32Driverstcpip.sys => MD5 is legit

C:WINDOWSsystem32Driversipsec.sys => MD5 is legit

C:WINDOWSsystem32dnsrslvr.dll => MD5 is legit

C:WINDOWSsystem32svchost.exe => MD5 is legit

C:WINDOWSsystem32rpcss.dll => MD5 is legit

C:WINDOWSsystem32services.exe => MD5 is legit

 

Extra List:

=======

Gpc(3) IPSec(5) NetBT(9) PSched(7) Tcpip(4)

0x080000000500000001000000020000000300000004000000060000000800000007000000

IpSec Tag value is correct.

 

**** End of log ****

Link to comment
Share on other sites

Here's the new FSS log. I ran WinSock XP Fix, and it seemed to run successfully. I rebooted after it completed. (Or, rather, it rebooted my computer for me.) If it is relevant, I had to do this part twice. I ran Winsock once, it tried to reboot, but my computer stalled as my external was plugged in. So I manually rebooted, ran winsock again, let it reboot on its own, then ran FSS.

 

 

Farbar Service Scanner Version: 18-01-2012 01

Ran by Matt (administrator) on 30-01-2012 at 19:49:07

Microsoft Windows XP Home Edition Service Pack 3 (X86)

Boot Mode: Normal

****************************************************************

 

Internet Services:

============

 

Connection Status:

==============

Localhost is accessible.

There is no connection to network.

Attempt to access Google IP returned error: Google IP is unreachable

Attempt to access Yahoo IP returend error: Yahoo IP is unreachable

 

 

File Check:

========

C:WINDOWSsystem32dhcpcsvc.dll => MD5 is legit

C:WINDOWSsystem32Driversafd.sys => MD5 is legit

C:WINDOWSsystem32Driversnetbt.sys => MD5 is legit

C:WINDOWSsystem32Driverstcpip.sys => MD5 is legit

C:WINDOWSsystem32Driversipsec.sys => MD5 is legit

C:WINDOWSsystem32dnsrslvr.dll => MD5 is legit

C:WINDOWSsystem32svchost.exe => MD5 is legit

C:WINDOWSsystem32rpcss.dll => MD5 is legit

C:WINDOWSsystem32services.exe => MD5 is legit

 

Extra List:

=======

Gpc(3) IPSec(5) NetBT(9) PSched(7) Tcpip(4)

0x080000000500000001000000020000000300000004000000060000000800000007000000

IpSec Tag value is correct.

 

**** End of log ****

 

The log doesn't seem to have changed, unfortunately.

Link to comment
Share on other sites

Click Start>Run and type the following bolded text into the run box and click OK:

 

services.msc

 

Check DHCP service is turned on (automatic). If not, enable it and then try this:

 

 

Renew the IP

 

Click Start>Run and type the following text into the run box and click OK:

 

cmd

 

You should see a black box with a flashing white cursor. At that cursor, type in the following:

 

ipconfig /release - note the space after "ipconfig"

 

Press Enter

 

Now type in the following:

 

ipconfig /renew

 

Press Enter

 

Let me know how it goes.

 

===================================================

 

Re-run Farbar Service Scanner

 

Thanks

 

Satchfan

Link to comment
Share on other sites

I did all the above. Unfortunately, after running FSS again, I didn't see any changes. I was in a bit of a rush, I can post the exact log when I get back, but at a quick glance it looked the same- still no connection to network and unreachable IPs.

 

ipconfig release and renew seemed to work, although only renew produced much text at all. after release, the command line mostly just reset.

Link to comment
Share on other sites

Run MiniToolBox

 

Please download MiniToolBox, save it to your desktop and run it.

 

Place a checkmark in the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

 

Note: When using the "Reset FF Proxy Settings" option, Firefox should be closed.

Link to comment
Share on other sites

Here's the result post-

 

MiniToolBox by Farbar Version: 18-01-2012

Ran by Matt (administrator) on 31-01-2012 at 19:56:57

Microsoft Windows XP Home Edition Service Pack 3 (X86)

Boot Mode: Normal

***************************************************************************

 

========================= Flush DNS: ===================================

 

 

Windows IP Configuration

 

 

 

 

========================= IE Proxy Settings: ==============================

 

Proxy is not enabled.

No Proxy Server is set.

 

"Reset IE Proxy Settings": IE Proxy Settings were reset.

 

========================= FF Proxy Settings: ==============================

 

"network.proxy.type", 4

 

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

 

========================= Hosts content: =================================

 

 

127.0.0.1 localhost

 

========================= IP Configuration: ================================

 

Marvell Yukon 88E8053 PCI-E Gigabit Ethernet Controller = Local Area Connection 4 (Connected)

 

 

# ----------------------------------

# Interface IP Configuration

# ----------------------------------

pushd interface ip

 

 

 

popd

# End of interface IP configuration

 

 

 

 

Windows IP Configuration

 

 

 

Server: UnKnown

Address: 127.0.0.1

 

Ping request could not find host google.com. Please check the name and try again.

 

Server: UnKnown

Address: 127.0.0.1

 

Ping request could not find host yahoo.com. Please check the name and try again.

 

Server: UnKnown

Address: 127.0.0.1

 

Ping request could not find host bleepingcomputer.com. Please check the name and try again.

 

 

 

Pinging 127.0.0.1 with 32 bytes of data:

 

 

 

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

 

 

Ping statistics for 127.0.0.1:

 

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

 

Approximate round trip times in milli-seconds:

 

Minimum = 0ms, Maximum = 0ms, Average = 0ms

 

===========================================================================

Interface List

0x1 ........................... MS TCP Loopback interface

===========================================================================

===========================================================================

Active Routes:

Network Destination Netmask Gateway Interface Metric

127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1

===========================================================================

Persistent Routes:

None

 

========================= Event log errors: ===============================

 

Application errors:

==================

Error: (01/27/2012 04:00:01 PM) (Source: Application Hang) (User: )

Description: Hanging application explorer.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

 

Error: (01/27/2012 04:00:01 PM) (Source: Application Hang) (User: )

Description: Hanging application explorer.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

 

Error: (01/27/2012 04:00:00 PM) (Source: Application Hang) (User: )

Description: Hanging application explorer.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

 

Error: (01/26/2012 00:05:10 PM) (Source: Microsoft Security Client) (User: )

Description: Microsoft Security ClientFEP clean-up policy0x80040154

 

Error: (01/26/2012 01:48:27 AM) (Source: MPSampleSubmission) (User: )

Description: mptelemetry8024402cendsearchsearch3.0.8402.0mpsigdwn.dll3.0.8402.0microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094)NILNILNIL

 

Error: (01/25/2012 00:13:55 PM) (Source: Application Error) (User: )

Description: Faulting application skype.exe, version 5.5.0.124, faulting module skype.exe, version 5.5.0.124, fault address 0x001dae87.

Processing media-specific event for [skype.exe!ws!]

 

Error: (01/25/2012 00:08:04 PM) (Source: Microsoft Security Client) (User: )

Description: mssecurityclientmsseces.exe2.1.1116.00x80501001applyactionscmainwindow__onblockingthreatsactioncomplete0security essentialsNILNILNIL

 

Error: (01/25/2012 08:19:48 AM) (Source: Microsoft Security Client) (User: )

Description: mssecurityclientmsseces.exe2.1.1116.00x80501001applyactionscthreatdialog__onallactionscomplete0security essentialsNILNILNIL

 

Error: (01/25/2012 02:51:54 AM) (Source: MPSampleSubmission) (User: )

Description: mptelemetrymicrosoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094)3.0.8402.0timeout1.1.8001.0fixed2 _ 20485 _ not bootNILNILNIL

 

Error: (01/25/2012 02:47:54 AM) (Source: MPSampleSubmission) (User: )

Description: mptelemetrymicrosoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094)3.0.8402.0timeout1.1.8001.0fixed2 _ 20485 _ not bootNILNILNIL

 

 

System errors:

=============

Error: (01/31/2012 05:20:36 PM) (Source: Windows Update Agent) (User: )

Description: Unable to Connect: Windows is unable to connect to the automatic updates service and therefore cannot download and install updates according to the set schedule. Windows will continue to try to establish a connection.

 

Error: (01/30/2012 07:48:53 PM) (Source: 0) (User: )

Description:

 

Error: (01/30/2012 07:48:25 PM) (Source: Service Control Manager) (User: )

Description: The following boot-start or system-start driver(s) failed to load:

sptd

 

Error: (01/30/2012 07:48:25 PM) (Source: Service Control Manager) (User: )

Description: The Machine Debug Manager service failed to start due to the following error:

%%2

 

Error: (01/30/2012 07:48:25 PM) (Source: Service Control Manager) (User: )

Description: The Apple Mobile Device service failed to start due to the following error:

%%2

 

Error: (01/30/2012 07:48:25 PM) (Source: Service Control Manager) (User: )

Description: The Zune Bus Enumerator Driver service failed to start due to the following error:

%%1058

 

Error: (01/30/2012 07:46:41 PM) (Source: 0) (User: )

Description:

 

Error: (01/30/2012 07:46:23 PM) (Source: Service Control Manager) (User: )

Description: The following boot-start or system-start driver(s) failed to load:

sptd

 

Error: (01/30/2012 07:46:21 PM) (Source: Service Control Manager) (User: )

Description: The Machine Debug Manager service failed to start due to the following error:

%%2

 

Error: (01/30/2012 07:46:21 PM) (Source: Service Control Manager) (User: )

Description: The Apple Mobile Device service failed to start due to the following error:

%%2

 

 

Microsoft Office Sessions:

=========================

 

=========================== Installed Programs ============================

 

32 Bit HP CIO Components Installer (Version: 6.1.2)

Adobe AIR 1.0 Beta 1 (Version: 1.0.4.42320)

Adobe Anchor Service CS3 (Version: 1.0)

Adobe Anchor Service CS4 (Version: 2.0)

Adobe Asset Services CS3 (Version: 3)

Adobe CMaps CS4 (Version: 2.0)

Adobe Color Common Settings (Version: 1.0.1)

Adobe Color EU Extra Settings CS4 (Version: 2.0)

Adobe Color JA Extra Settings CS4 (Version: 2.0)

Adobe Color NA Recommended Settings CS4 (Version: 2.0)

Adobe CSI CS4 (Version: 1)

Adobe Default Language CS4 (Version: 2.0)

Adobe Dynamiclink Support (Version: 1)

Adobe ExtendScript Toolkit 2 (Version: 2.0.2)

Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)

Adobe Flash CS4 (Version: 10.0)

Adobe Flash CS4 Extension - Flash Lite STI en (Version: 3.0)

Adobe Flash CS4 Professional (Version: 10.0)

Adobe Flash CS4 STI-en (Version: 10.0)

Adobe Flash Player 10 ActiveX (Version: 10.0.22.87)

Adobe Flash Player 11 Plugin (Version: 11.1.102.55)

Adobe Illustrator CS (Version: 11)

Adobe Illustrator CS3 (Version: 13.0)

Adobe Linguistics CS4 (Version: 4.0.0)

Adobe Output Module (Version: 2.0)

Adobe PDF Library Files CS4 (Version: 9.0)

Adobe Photoshop CS (Version: CS)

Adobe Reader 8.1.5 (Version: 8.1.5)

Adobe Reader 8.2.0 (Version: 8.2.0)

Adobe Search for Help (Version: 1.0)

Adobe Service Manager Extension (Version: 1.0)

Adobe Setup (Version: 1.0)

Adobe Setup (Version: 2.0)

Adobe Shockwave Player 11.5 (Version: 11.5.9.620)

Adobe Type Support CS4 (Version: 9.0)

Adobe Update Manager CS4 (Version: 6.0.0)

Adobe WinSoft Linguistics Plugin (Version: 1.1)

Adobe XMP Panels CS4 (Version: 2.0)

AdobeColorCommonSetCMYK (Version: 2.0)

AdobeColorCommonSetRGB (Version: 2.0)

AoA Audio Extractor 1.0

Apple Application Support (Version: 1.5.1)

Apple Mobile Device Support (Version: 3.4.0.25)

Apple Software Update (Version: 2.0.2.92)

Audacity 1.2.6

Auto Gordian Knot 2.55 (Version: 2.55)

Autodesk 3ds Max 2010 32-bit (Version: 12.0)

Autodesk Backburner 2008.1 (Version: 2008.1.1)

Autodesk FBX Plug-in 2011.2 - 3ds Max 2010

Autodesk FBX Plugin 2009.4 - 3ds Max 2010

AviSynth 2.5

BitTorrent

Bonjour (Version: 2.0.5.0)

BugOff 1.10 (Version: 1.10)

CamStudio

CCleaner (Version: 2.27)

COLLADAMax (1.2.5) (Version: 1.2.5.673)

Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)

Connect (Version: 1.0.0.1)

Connection Extension for Autodesk 3ds Max 2010 32-bit (Version: 1)

Defraggler

DivX Setup (Version: 2.4.0.6)

Download Updater (AOL LLC)

DVD Decrypter (Remove Only)

Dynex Wireless G USB Network Adapter Setup (Version: 2.20)

EPSON Print CD (Version: 1.50.000)

EPSON Printer Software

EPSON SP1400 Reference Guide

Facebook Plug-In

ffdshow [rev 2527] [2008-12-19] (Version: 1.0)

Glary Utilities 2.33.0.1158 (Version: 2.33.0.1158)

HijackThis 1.99.1 (Version: 1.99.1)

HP Photosmart C4500 All-In-One Driver 12.0 Rel .4 (Version: 12.0)

HP Photosmart Plus B209a-m All-in-One Driver 14.0 Rel. 6 (Version: 14.0)

HxD Hex Editor version 1.7.7.0 (Version: 1.7.7.0)

ImgBurn (Version: 2.4.2.0)

Interlok driver setup x32 (Version: 5.8.10)

iTunes (Version: 10.2.2.14)

Japanese Language Support

Java Auto Updater (Version: 2.0.5.1)

Java 6 Update 2 (Version: 1.6.0.20)

Java 6 Update 26 (Version: 6.0.260)

Java 6 Update 3 (Version: 1.6.0.30)

Java 6 Update 5 (Version: 1.6.0.50)

Java 6 Update 7 (Version: 1.6.0.70)

Java SE Runtime Environment 6 Update 1 (Version: 1.6.0.10)

KB408682

KompoZer 0.8b3

kuler (Version: 2.0)

LAME v3.98.3 for Audacity

League of Legends (Version: 1.3)

Live 8.2.2

Malwarebytes' Anti-Malware

MangaBrowser for SHONEN JUMP 40th (Version: 1.1.0)

Marvell Miniport Driver (Version: 8.27.4.3)

Microsoft .NET Framework 1.1 (Version: 1.1.4322)

Microsoft .NET Framework 1.1 Security Update (KB2656353)

Microsoft .NET Framework 1.1 Security Update (KB979906)

Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)

Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)

Microsoft .NET Framework 3.5 SP1

Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)

Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)

Microsoft .NET Framework 4 Extended (Version: 4.0.30319)

Microsoft Application Error Reporting (Version: 12.0.6012.5000)

Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)

Microsoft Flight Simulator 2004 A Century of Flight (Version: 9.0)

Microsoft Kernel-Mode Driver Framework Feature Pack 1.9

Microsoft Office XP Standard for Students and Teachers (Version: 10.0.6626.0)

Microsoft User-Mode Driver Framework Feature Pack 1.9

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Windows Media Video 9 VCM

Microsoft WinUsb 1.0

Mozilla Firefox 9.0.1 (x86 en-US) (Version: 9.0.1)

MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)

MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)

MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)

MSXML 6.0 Parser (KB933579) (Version: 6.10.1200.0)

Nero 7 Ultra Edition (Version: 7.02.9888)

neroxml (Version: 1.0.0)

Network (Version: 140.0.215.000)

Nintendo Wi-Fi USB Connector Registration Tool

NVIDIA Drivers

ObjectDock

OGPlanet Game Launcher (Version: 1.0.0)

OneTouch Version 3.0 (Version: Version 3.0)

Pando Media Booster (Version: 2.3.5.9)

PaperPort 7.02

PDF Settings CS4 (Version: 9.0)

Pepakura Animation 2

Pepakura Designer 3

Pepakura Designer2

Pepakura Viewer 3

Pepakura Viewer2

Photoshop Camera Raw (Version: 5.0)

Pixel Bender Toolkit (Version: 1.0)

Pop-Up Card Designer

Portal

PowerDVD

PS_AIO_04_C4580_Software_Min (Version: 120.0.209.000)

PS_AIO_06_B209a-m_SW_Min (Version: 140.0.690.000)

QuickTime (Version: 7.69.80.9)

Realtek High Definition Audio Driver (Version: 5.10.0.5345)

RebirthRO (Version: 20101008)

Rumble Fighter

Scan (Version: 140.0.80.000)

Shared Add-in Extensibility Update for Microsoft .NET Framework 2.0 (KB908002) (Version: 1.0.0)

Shared Add-in Support Update for Microsoft .NET Framework 2.0 (KB908002) (Version: 1.0.0)

Sketch2Photo (Version: 1.0.0)

Skype™ 5.5 (Version: 5.5.124)

Spiral Knights

Spybot - Search & Destroy (Version: 1.6.2)

StarCraft II (Version: 1.4.1.19776)

StarCraft II Beta (Version: 0.10.0.14803)

Steam (Version: 1.0.0.0)

Suite Shared Configuration CS4 (Version: 1.0)

Team Fortress 2

Toolbox (Version: 140.0.428.000)

Uninstall Dual Mode Camera (DT01)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)

VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)

VLC media player 1.0.5 (Version: 1.0.5)

Wacom Tablet (Version: 6.1.7-3)

WavePad Uninstall

WebFldrs XP (Version: 9.50.7523)

WebTablet IE Plugin (Version: 1.1.0.12)

WebTablet Netscape Plugin (Version: 1.1.0.10)

Windows Defender (Version: 1.1.1593.14)

Windows Genuine Advantage Notifications (KB905474) (Version: 1.7.0018.5)

Windows Genuine Advantage Validation Tool (KB892130)

Windows Installer Clean Up (Version: 3.00.00.0000)

Windows Media Format 11 runtime

Windows Media Player 11

Windows Presentation Foundation (Version: 3.0.6920.0)

WinRAR archiver

XML Paper Specification Shared Components Pack 1.0

XPS Annotator 1.22

Xvid 1.2.2 final uninstall (Version: 1.2)

XviD MPEG4 Video Codec (remove only)

Yu-Gi-Oh! ONLINE 3 (Version: 1.00.3000)

Zune (Version: 04.02.0202.00)

Zune Language Pack (DE) (Version: 04.02.0202.00)

Zune Language Pack (ES) (Version: 04.02.0202.00)

Zune Language Pack (FR) (Version: 04.02.0202.00)

Zune Language Pack (IT) (Version: 04.02.0202.00)

 

========================= Memory info: ===================================

 

Percentage of memory in use: 23%

Total physical RAM: 2047.11 MB

Available physical RAM: 1569.97 MB

Total Pagefile: 3942.97 MB

Available Pagefile: 3695.5 MB

Total Virtual: 2047.88 MB

Available Virtual: 1978.24 MB

 

========================= Partitions: =====================================

 

2 Drive c: (Windows XP) (Fixed) (Total:232.88 GB) (Free:41.64 GB) NTFS

5 Drive f: (WD SmartWare) (CDROM) (Total:0.6 GB) (Free:0 GB) UDF

6 Drive g: (My Passport) (Fixed) (Total:930.86 GB) (Free:631.92 GB) NTFS

 

========================= Users: ========================================

 

User accounts for :filtered:

 

Administrator ASPNET Guest

HelpAssistant Matt SUPPORT_388945a0

 

========================= Minidump Files ==================================

 

No minidump file found

 

**** End of log ****

 

 

I notice my computer still can't seem to ping google. Any ideas as to what the issue with the connection is?

Link to comment
Share on other sites

Apologies for not replying but work etc has been mad today.

 

Will review and reply tomorrow (GMT).

 

Meanwhile, can you tell me if there are any problems remaining apart from the Internet connection.

 

Thanks

 

Satchfan

Link to comment
Share on other sites

Glad all else is well. Unfortunately, when Internet access has been corrupted by malware and the connection issue is not fixed with the usual commands, it’s a matter of trying to find exactly where the problem lies so please be patient – thanks.

 

You didn’t tell me if you checked the services to see if Dhcp Service was running, (set to automatic or enabled). I’d also like you to make sure that the same applies to NetBt Service if it is listed.

 

Could you also run Farbar Service Scanner again and put a check mark next to Internet Services only.

 

Satchfan

Link to comment
Share on other sites

There are quite a few suggestions that I can give but if none of these work, I may have to give you a link to another forum that specialises in these kinds of problem.

 

Have you tried resetting your Router?

 

This can be done by inserting something tiny like a paper clip end or pencil tip into a small hole labelled "reset" located on the back of the router.

  • press and hold down the small button inside until the lights on the front of the router blink off and then on again (usually about 10 seconds).
  • if you don’t know the router's default password, you can look it up. HERE
  • you also need to reconfigure any security settings you had in place prior to the reset.
  • you may also need to consult with your Internet service provider to find out which DNS servers your network should be using.

==========================================

 

If that hasn’t worked, try looking here:

 

http://support.microsoft.com/kb/811259/en-us

 

Try the suggestion including downloading and applying Fixit.

 

Let me know how it goes.

 

Satchfan

Edited by Satchfan
Link to comment
Share on other sites

It seems to work now?!

Good news!

 

 

Thanks so much! I appreciate all the time you spent helping me!

You are welcome.

 

Good work, your computer appears to be clean.

 

Now that you’re free from malware, as long as your computer seems to be running well, please follow these simple steps to tidy up you computer and decrease the likelihood of getting infected again:

 

Uninstall Combofix

 

Follow these steps to uninstall Combofix

  • click START then RUN
  • now type Combofix /uninstall in the runbox and click OK.
Note the space between the X and the /, it needs to be there.

Posted Image

  • please follow the prompts to uninstall Combofix.
  • once it's finished uninstalling itself you will receive a message saying Combofix was uninstalled successfully.
===================================================

 

Uninstall OTL

  • Double-click OTL.exe
  • Click the CleanUp! button.
  • Select Yes when the Begin cleanup Process? prompt appears.
  • If you are prompted to reboot during the cleanup, select Yes.
  • The tool will delete itself once it finishes, if not delete it by yourself.
NOTE: If you receive a warning from your firewall or other security programs regarding OTL attempting to contact the internet, please allow it to do so.

 

===================================================

 

Update installed programs

 

Your version of Java is out-of-date and therefore vulnerable to infections

 

Remove all versions of Java or JRE environment

 

1. From the Start menu, select Control Panel.

2. In Classic View, double-click Programs and Features. In Control Panel Home view, under "Programs", click Uninstall a program.

3. Select the program you want to remove, and click Uninstall. Alternatively, right-click the program and select Uninstall.

Install the latest version of Java from here

 

NEXT

 

Visit ADOBE and download the latest version of Acrobat Reader (version X)

Having the latest updates ensures there are no security vulnerabilities in your system.

 

===================================================

 

Firewall

 

You're using the Windows Firewall which is not adequate protection. The main reason you should use a third-party firewall over the Windows XP Firewall is because Windows Firewall only stops incoming signals from accessing your computer. However, it will not stop Outgoing signals (possibly ones that could intrude your privacy) from sending information to the Internet or to other networks. That means if malware happens to compromise your PC again, it will be able to SEND OUT out your credit card data and any other personal information.

 

I suggest you install a more robust third party firewall that filters both incoming and outgoing traffic.

 

Download and install one of the following freeware firewalls from below:

 

Sygate Personal Firewall Free Edition:

Zone Alarm Free:

Comodo Personal Firewall:

 

NOTEonly install one firewall. Having more than one could cause many programs to stop working altogether. Also, the firewalls may get in each others' way and cause some security holes that would not be there with just one firewall.

 

When you have done that:

 

Disable Windows firewall:

  • Click on Start, Settings and then Control Panel
  • Click on the Security Center icon.
  • Click on the Windows Firewall icon
  • Click Off (not recommended) and then click OK.
You should take the time to read Understanding and Using Firewalls

 

===================================================

 

Recommended programs

 

Update and run Malwarebytes. This really is an excellent program that you should also update and run on a regular basis, probably weekly.

 

===================================================

 

It’s important to keep programs up to date so that malware doesn't exploit any old security flaws.

 

FileHippo Update Checker is an extremely helpful program that will tell you which of your programs need to be updated.

 

===================================================

 

MVPS Hosts file replaces your current HOSTS file with one containing well known ad sites and other bad sites. Basically, this prevents your computer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer, meaning it will be difficult to infect yourself in the future.

 

===================================================

 

I also recommend that you read the following:

 

How to prevent malware by miekiemoes

 

Safe computing

 

Satchfan

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
 Share

×
×
  • Create New...