no internet after scans

Discussion in 'Malware Help (A Specialist Will Reply)' started by kimsman00, Nov 13, 2008.

  1. kimsman00

    kimsman00 Private E-2

    I am working on a friends Dell laptop w/ XP pro sp2. They brought it to me with issues with limewire. I installed ccleaner and used all utilities. Then installed and ran superantispyware and updated without issue. Installed and updated malwarebytes. Scanned w/o issue. Friend got impatient and before I could start spybot, he wanted to look something up online. We lost connection. No problem, went back to superantispyware and reset win sock.Still nothing. Tried all solutions offered on this site and microsoft. still nothing. Finished all scans,but still no internet. shows sent packets but none received. tried repair thru windows still nothing. logs are attached
     

    Attached Files:

    kimsman00, Nov 13, 2008
    #1
  2. kimsman00

    kimsman00 Private E-2

    last log
     

    Attached Files:

    kimsman00, Nov 13, 2008
    #2
  3. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Not sure what happened to your connection...but let's do this:

    Please use add/remove programs to uninstall:
    Viewpoint Manager (Remove Only)"
    Viewpoint Media Player

    Please disable all anti-virus and anti-spyware programs while we do the following ( be sure to re-enable when we are finished):


    Run C:\MGtools\analyse.exe by double clicking on it. (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
    After clicking Fix, exit HJT.

    Now we need to use ComboFix to remove a bunch of malware files.

    * Make sure that combofix.exe that you downloaded while doing the READ & RUN ME is on your Desktop but Do not run it!
    o If it is not on your Desktop, the below will not work.
    * Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
    * Open Notepad and copy/paste the text in the below code box into it (make sure you scroll all the way down in the code box to get all lines selected ):
    Code:
    KILLALL::

File::
c:\windows\Tmp.0.nt5.cat
c:\documents and settings\Emily\Application Data\internaldb41.dat
c:\documents and settings\LocalService\Application Data\internaldb6245.dat
c:\documents and settings\Emily\Application Data\internaldb1942.dat
c:\documents and settings\Emily\Application Data\internaldb5436.dat
c:\documents and settings\Emily\Application Data\internaldb4604.dat
c:\documents and settings\Emily\Application Data\internaldb4827.dat
c:\documents and settings\Emily\Application Data\internaldb8253.dat
c:\documents and settings\Emily\Application Data\internaldb3902.dat
c:\documents and settings\Emily\Application Data\internaldb153.dat
c:\documents and settings\Emily\Application Data\internaldb2391.dat
c:\documents and settings\Emily\Application Data\internaldb8467.dat
c:\documents and settings\Emily\Application Data\internaldb6334.dat
C:\WINDOWS\System32\toolbar.dll
    * Save the above as CFscript.txt and make sure you save it to the same location (should be on your Desktop) as ComboFix.exe
    * At this point, you MUST EXIT ALL BROWSERS NOW before continuing!
    * You should have both the ComboFix.exe and CFScript.txt icons on your Desktop.
    If it asks you to overide the prvevious file with the same name, click YES.
    * Now use your mouse to drag CFscript.txt on top of ComboFix.exe
    http://img.photobucket.com/albums/v666/sUBs/CFScriptB-4.gif
    * Follow the prompts.
    * When it finishes, a log will be produced named c:\combofix.txt
    * I will ask for this log below

    Note:

    Do not mouseclick combofix's window while it is running. That may cause it to stall.

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created by running this and also attach the log from Combo.
     
    TimW, Nov 14, 2008
    #3
  4. kimsman00

    kimsman00 Private E-2

    Here are the new logs. Thanks for your help
     

    Attached Files:

    kimsman00, Nov 14, 2008
    #4
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    I am not seeing any malware in your logs....I suggest that you post in software and have someone check your ip config.

     
    TimW, Nov 14, 2008
    #5
  6. kimsman00

    kimsman00 Private E-2

    Thanks TimW for your help. At least now I know it's clean.
     
    kimsman00, Nov 15, 2008
    #6
  7. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You are welcome.....good luck. :)
     
    TimW, Nov 15, 2008
    #7

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds