Browser Problems enlarged font and still win fixer 2005

Please print these instructions out for use in Safe Mode.

Please download VundoFix.exe to your desktop.

• Double-click VundoFix.exe to extract the files
• This will create a VundoFix folder on your desktop.
• After the files are extracted, please reboot your computer into Safe Mode. You can do this by restarting your computer and continually tapping the F8 key until a menu appears. Use your up arrow key to highlight Safe Mode then hit enter.
• Once in safe mode open the VundoFix folder and doubleclick on KillVundo.bat
• You will first be presented with a warning and a list of forums to seek help at. Iit should look like this

• At this point press enter one time.
• Next you will see:

• At this point please type the following file path (make sure to enter it exactly as below!):

C:\WINDOWS\svrinet.dll​

• Press Enter, then press the F6 key, then press Enter one more time to continue with the fix.

• Next you will see:

• At this point please type the following file path (make sure to enter it exactly as below!):

C:\WINDOWS\tenirvs.*​

• Press Enter, then press the F6 key, then press Enter one more time to continue with the fix.
• The fix will run then HijackThis will open.
• In HiJackThis, please place a check next to the following items and click FIX CHECKED:
  

O2 - BHO: (no name) - {B8B55274-0F9A-41E5-9067-A3539BD9E860} - C:\WINDOWS\svrinet.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O20 - Winlogon Notify: svrinet - C:\WINDOWS\svrinet.dll​

​

• After you have fixed these items, close Hijackthis and Press any key to Force a reboot of your computer.
• Pressing any key will cause a "Blue Screen of Death" this is normal, do not worry!
• Once your machine reboots please attach a new HJT log from normal mode.

 

Please translate the above into English.

You need to install HJT properly as given in the HJT sticky thread. You are running it directly from the ZIP file using WinRAR:
C:\DOCUME~1\GARRYM~1\LOCALS~1\Temp\Rar$EX00.656\HijackThis.exe

You will not get any backups of changes this way.

 

The below may not work with Spybot's Teatimer running and also note your Spybot installation is broken anyway because the O2 line below with the missing file is for Spybot. You should probably uninstall Spybot make these fixes and then reinstall it. I personally do not use Spybot's Teatimer.

If you are using WinXP or WinMe, make sure you have system restore disabled (per the tutorial).
For all OS types, make sure viewing of hidden files is enabled (per the tutorial).

Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
O2 - BHO: C:\WINDOWS\system32\ssf.dll - {04FEB29F-9D60-4E28-AF29-5AF89C44EFF6} - C:\WINDOWS\system32\ssf.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - (no file)

After clicking Fix, exit HJT.
Boot into safe mode and use Windows Explorer to delete:
C:\WINDOWS\system32\ssf.dll

Now run Ccleaner (installed while running the READ ME FIRST). Now if running Win XP goto c:\windows\Prefetch and delete all files in this folder.

Now reboot in normal mode and post a new HJT log. And tell us how things are working.

 

Complete the rest of my previous message and if Microsoft is still picking up something, run a full scan with it in safe mode and then post the log. Also if it gives you info on finding anything always post exact messages, exact filenames and paths etc (if given).

 

The file may have been removed by HJT while fixing the O4 entry.

You log is clean. Are you having any other malware problems?

 

Try this:



Download HOSTER and then follow the below steps.

• Unzip Hoster to a convenient folder such as C:\Hoster
• Run Hoster.exe, click Restore Original Hosts and then click OK.
• Click the X to exit the program

Now you should also check out the below to help keep you clean:

How to Protect yourself from malware!