Lost internet after running ccleaner

CCleaner only removes temporary non-required and non-useful files and will not impact the ability to connect to the internet. That is unless more than just what was specified in the READ ME was run. What options of CCleaner were run? Did you use the Issues tab an perform registry cleaning?

You can try giving the below a run and see what happens:

XP TCP/IP Repair

 

Potentially yes!

Did you try the link I gave you? If so, did it help?


Have you been able to run ComboFix and MGtools?

 

Okay! Even if you do not get the internet connection working, try to download ComboFix and MGtools.exe onto another PC and transfer to the problems PC somehow (USB drive, CD....etc) then get the logs from the infected PC posted here in the reverse manner if possible.

 

But this is more than likely the critical one to run since a broken LSP chain is often (but not always) the reason for not internet access.



You have no protection software installed!!! No wonder you are infected.

Once you get your internet connection working you need to uninstall J2SE Runtime Environment 5.0 Update 6 and then install the current version of Sun Java from the below link:
Sun Java Runtime Environment

Run C:\MGtools\analyse.exe by double clicking on it. This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [1sr48] C:\WINDOWS\system32\1sr48.exe
O4 - HKCU\..\Run: [1sr48] C:\WINDOWS\system32\1sr48.exe

After clicking Fix, exit HJT.

Now download The Avenger by Swandog46, and save it to your Desktop.

• Extract avenger.exe from the Zip file and save it to your desktop
• Run avenger.exe by double-clicking on it.
• Check the 'Input script manually' box.
• Click on the magnifying glass icon.
• Copy everything in the Quote box below, and paste it in the box that opens:

• Now click the 'Done' button.
• Click on the traffic light icon and OK the prompt.
• You will be prompted to restart, OK the prompt and your PC should reboot, if not, reboot it yourself.
• A log file from Avenger will be produced at C:\avenger.txt

Now run Ccleaner!

Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created by running this and also attach the log from Avenger.

Make sure you tell me how things are working now!

 

Not really a valid assumption! The tools do not just protect you while connected. They are meant to protect you anytime your PC is running. Also note AVG Antispyware only provides protection during a 15 day trial period. After that, it is only a scanner and offers no protection. You need a realtime antispyware blocking tool, an antivirus, and a real bidirectional firewall installed at all times.

Did you run the Winsock fix part of XP TCP/IP Repair yet? If not, you should run it.

 

Your logs are clean! Your problem appears to be related to other issues that you may wish to work thru in the Software Forum. Your tcpip.sys file could be corrupted and so may other files. You should run sfc /scannow from the Start, Run, box. If could ask for your Windows CD if it finds problems and cannot find appropriate files on your PC to fix the problems. Be prepared to give it your CD if it asks for it.

Those other files are for your Nvidia graphics controller.

 

No that is not what you had. As soon as you renamed tcpip.sys, the Windows OS replace it with a backup copy from the dllcache folder. That is why you could not copy another one in.

This is a quarantine folder created you ran ComboFix. Things in this folder are not issues since they are quarantined. You can delete the whole C:\Qoobox folder though since we do not need it.

NOTE: Other user accounts on your PC could also be infected which may be why you said AVG found things in a user account.


Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created.

 

You still have some problems.

Run this procedure: Trojan.Win32.Agent.akk (aka IEDefender) Removal Procedure
Attach the requested log later.

Run C:\MGtools\analyse.exe by double clicking on it. This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

O2 - BHO: Rates - {04B0AACB-ADE6-45C7-9989-7836E8DC8C3D} - C:\WINDOWS\toprates.dll (file missing)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

After clicking Fix, exit HJT.

Now download the current version of MGtools.exe to C:\
Then double click on C:\MGtools.exe to run the new version and create a new C:\MGlogs.zip file.

Attach the new MGlogs.zip file and also the FixIEDef.log