Shortcuts don't work

Hi there and welcome.

Try this (IN NORMAL MODE NOT SAFE MODE) considering you have already ran MGTools. C:\MGtools\FixFA.bat <--- Navigate to the FixFA.bat and double click it to run it.

Now see if short cuts are accessible.

Also you did not run Combofix which is part of the Read and Run Me First procedures. Please do so now and then also run the below.

I want you to run TDSSKiller so refer to the below for how to do so.

TDSSkiller - How to run

Please also download MBRCheck to your desktop

• Double click MBRCheck.exe to run (vista and Win 7 right click and select Run as Administrator)
• It will show a Black screen with some information that will contain either the below line if no problem is found:
  • Done! Press ENTER to exit...
• Or you will see more information like below if a problem is found:
  • Found non-standard or infected MBR.
  • Enter 'Y' and hit ENTER for more options, or 'N' to exit:
• Either way, just choose to exit the program at this point since we want to see only the scan results to begin with.
• MBRCheck will create a log named similar to MBRCheck_07.16.10_00.32.33.txt which is random based on date and time.
• Attach this log to your next message. (See: HOW TO: Attach Items To Your Post )

Attach all of those requested logs please.

 

try this.

http://www.dougknox.com/xp/file_assoc.htm scroll down to the 9th fix, an EXE file fix.

Are you able to uninstall these outdated java versions?

• Java(TM) 6 Update 2
• Java(TM) 6 Update 20
• Java(TM) 6 Update 3
• Java 2 Runtime Environment, SE v1.4.2_03
• J2SE Runtime Environment 5.0 Update 6

Delete this file.
C:\Documents and Settings\All Users\Application Data\wvt617p653s1oh

Reboot your machine and install the most current and up to date version of Java available here at the below link:

Java Runtime 6

Now run the C:\MGtools\GetLogs.bat file by double clicking on it. (Right click and run as admin if using Vista or Windows7) Then attach the new C:\MGlogs.zip file that will be created by running this.

Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now!

 

I don't know if it will help or not (I am thinking not) but try this anyway and see if it changes anything. I will review the logs in the mean time.

Please download and save the below to your Desktop or anywhere else you can find it ( if the Desktop is not showing )

http://download.bleepingcomputer.com/grinler/unhide.exe

Now run it. Did that help?

 

Hang in there. I will get my colleagues to take a look at this for you.

 

We will persevere don't you worry.

 

I had conferred with Chaslang and was just typing up a response to your thread. Now, are you really positive that everything is running well again? Are there no outstanding issues to be dealt with?

 

This is what I was hoping you would do, I should have been more specific.

Very well. They can follow final steps.

If you are not having any other malware problems, it is time to do our final steps:

1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
   • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
   • "%userprofile%\Desktop\combofix" /uninstall
     • Notes: The space between the combofix" and the /uninstall, it must be there.
     • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
3. Go back to step 6 of the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
5. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
6. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
7. Go to add/remove programs and uninstall HijackThis.
8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders
   related to MGtools and some other items from our cleaning procedures.
9. If you are running Win 7, Vista, Windows XP or Windows ME, do the below:
   • Refer to the cleaning procedures pointed to by step 7 of the READ ME
     for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
   • Then reboot and Enable System Restore to create a new clean Restore Point.
10. After doing the above, you should work thru the below link:
    • How to Protect yourself from malware!