Jump to content
Due to inclement weather in Southwest Florida, our Clearwater support team is offline. Our other offices are available to assist you, however their responses may be delayed. We appreciate your patience and understanding during this time. ×

Help, no internet after downloading Malwarebytes


Recommended Posts

We had a Google redirect virus. Our anti-virus software was not detecting it. So, I downloaded Malwarebytes. It detected numerous problems, but now we are not able to connect to the internet. Our connection states it is working properly, but we are unable to access the internet via Internet Explorer. Please help!! Here is our antimalware log.

Malwarebytes' Anti-Malware 1.50.1.1100

www.malwarebytes.org

Database version: 5363

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

1/8/2011 9:46:31 AM

mbam-log-2011-01-08 (09-46-31).txt

Scan type: Quick scan

Objects scanned: 145194

Time elapsed: 9 minute(s), 29 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 67

Registry Values Infected: 0

Registry Data Items Infected: 2

Folders Infected: 17

Files Infected: 115

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_CLASSES_ROOT\CLSID\{062EFA85-8BBB-11D3-80D0-00500487B1C5} (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\TypeLib\{062EFA78-8BBB-11D3-80D0-00500487B1C5} (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{012B0571-2CD6-11D4-810D-00500487B1C5} (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.BHO1.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.BHO1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\BHO.CSBHO (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\BHO.CSBHO.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CometAppUtil.CometUIEvents (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CometAppUtil.CometUIEvents.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CometIEToolbar.CometToolbar (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CometIEToolbar.CometToolbar.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\ComUtil.FCParam (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\ComUtil.FCParam.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\ComUtil.FctCall (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\ComUtil.FctCall.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\ContextParser.ContextProxy (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\ContextParser.ContextProxy.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\ContextParser.ContextProxyMgr (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\ContextParser.ContextProxyMgr.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\ContextParser.CSRegExp (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\ContextParser.CSRegExp.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\ContextParser.URLContextParser (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\ContextParser.URLContextParser.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.BrowserAppProxy (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.BrowserAppProxy.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.CometFrame (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.CometFrame.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.CometWindow (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.CometWindow.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.FileInfo (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.FileInfo.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.HttpComm (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.HttpComm.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.MyBrowser1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.MyBrowser1.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.SelfUpdater (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.SelfUpdater.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.System (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.System.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.WindowProxy (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Core.WindowProxy.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSBand.HorizontalIEBand (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSBand.HorizontalIEBand.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSBand.VerticalIEBand (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSBand.VerticalIEBand.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSEng.CSEngine (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSEng.CSEngine.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSEng.CSHost (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSEng.CSHost.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSEng.EvHandler (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSEng.EvHandler.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSIP.CSCollection (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSIP.CSCollection.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSIP.CSIPDispatch (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSIP.CSIPDispatch.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSIP.CSIPPacket (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CSIP.CSIPPacket.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Puk.PukBHO (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Puk.PukBHO.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\SkinUI.ActiveWindow (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\SkinUI.ActiveWindow.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\SkinUI.CSkinUI (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\SkinUI.CSkinUI.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\SkinUI.WebBrowserSink (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\SkinUI.WebBrowserSink.1 (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\SkinUI.WindowsHelper (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\SkinUI.WindowsHelper.1 (Adware.Comet) -> Quarantined and deleted successfully.

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\NameServer (Trojan.DNSChanger) -> Bad: (93.188.162.88,93.188.161.228) Good: () -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{52B7ABBA-E607-44E5-85AE-87B3FA75AB2E}\NameServer (Trojan.DNSChanger) -> Bad: (93.188.162.88,93.188.161.228) Good: () -> Quarantined and deleted successfully.

Folders Infected:

c:\documents and settings\localservice\application data\Hotbar (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\IESkins (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0 (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\HostOI (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\HostOI\dynamic (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\HostOI\static (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\HostOL (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\HostOL\dynamic (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\HostOL\static (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic\tooltipxml (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic\ustat (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1 (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\program files\winfixer 2005 (Rogue.WinFixer) -> Quarantined and deleted successfully.

Files Infected:

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic\789954.sdf (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic\ASPL1.dat (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic\domains.txt (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic\tooltipxml\20517 (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic\tooltipxml\25047 (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic\tooltipxml\49512 (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic\tooltipxml\67357 (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic\tooltipxml\79805 (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic\tooltipxml\82292 (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\dynamic\ustat\30db.dat (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_hide.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar12.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\ads.cdf (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\business_promo.htm (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\buttondir.txt (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\components.cdf (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default.cdf (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_categorize.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_comparison.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_explorer-mails.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_favorites.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_games.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_hotbarcom.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_hotmail.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_hsskin.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_mails.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_new.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_premium.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_searchfor.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_searchgo.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_weather.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\default_yellowpages.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_1000.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_2000.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_3000.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bar.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar1.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar10.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar11.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar13.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar14.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar2.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar3.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar4.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar5.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar6.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar7.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar8.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar9.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_logos.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_other.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_x.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\d_icons_weather.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\email-def-511724-9595.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\email-t1-bg.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\hotbar-premium-hotbar-premium.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\hotbar-premium.cdf (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\hotbarcom.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\hotbar_promo.htm (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\icons2.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\keywords.idx (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\keywords1.dat (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\keywords_idx.idx (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\keywords_sdf.sdf (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\layout.cdf (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\linkpathlegal.txt (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\s_icons_buttons.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\t2_bg.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\theweb.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\top7.cdf (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\top7_theweb.mnu (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\1\tsd_bg.res (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\ads.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\business_promo.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\buttondir.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\email-t1-bg.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\hotbar-premium.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\hotbar_promo.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\linkpathlegal.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\samplegroups2.txt (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\samplegroups2.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\s_icons_buttons.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\t2_bg.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\top7.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\tsd_bg.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bar.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar1.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar10.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar11.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar12.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar13.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar14.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar2.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar3.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar4.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar5.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar7.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar8.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar9.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_logos.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_other.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_x.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_weather.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_3000.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar6.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\layout.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_1000.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_2000.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\default.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\icons2.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords1.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords_idx.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\documents and settings\localservice\application data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords_sdf.xip (Adware.Hotbar) -> Quarantined and deleted successfully.

c:\program files\winfixer 2005\lock.dat (Rogue.WinFixer) -> Quarantined and deleted successfully.

Link to post
Share on other sites

post-32477-1261866970.gif

Please don't attach the scans / logs, use "copy/paste".

DO NOT use any TOOLS such as Combofix or HijackThis fixes without supervision.

Doing so could make your pc inoperatible and could require a full reinstall of your OS, losing all your programs and data.

Vista and Windows 7 users:

1. These tools MUST be run from the executable. (.exe) every time you run them

2. With Admin Rights (Right click, choose "Run as Administrator")

Stay with this topic until I give you the all clean post.

You might want to print these instructions out.

I suggest you do this:

Open Notepad, click on Format and uncheck Word Wrap.

Internet Explorer (Windows)

1. Click "Tools", then click "Internet Options". This will bring up the Internet Options window.

2. Click the "Connections" tab, then click the "LAN Settings" button.

3. Uncheck the box labeled "Use a proxy server for your LAN". Click "OK", and click "OK" in the previous window. This will remove the proxy server settings in Internet Explorer.

Firefox (Windows)

1. Click "Tools", then click "Options" to bring up the Options window.

2. Click the "Advanced" button, then click the "Network" tab.

3. Click the "Settings" button, located next to "Configure how Firefox connects to the Internet".

4. Click the radio button labeled "No proxy". Click "OK" twice. This will remove the proxy server settings in Firefox.

Next:

Disable Internet Explorer Proxy Settings and Reset TCP/IP and Winsock

Disable Internet Explorer Proxy Settings and Reset TCP/IP

It is very important that these steps be carried out exactly as shown otherwise the fix will not work.

If you have any questions please ask before moving on.

  • Please start Notepad and using your mouse make sure you select and copy all the information below in the Code box into your new document.
  • Then save the file as "fixme.bat" to your Desktop
  • In the drop down box for Save as type: make sure you select All Files (*.*) and keep the quotes on the name as well. Then close the new file.
    @ECHO OFF
    reg delete "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyServer /f
    reg delete "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyOverride /f
    reg add "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyEnable /t REG_DWORD /d 0 /f
    reg add "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v GlobalUserOffline /t REG_DWORD /d 0 /f
    netsh int ip reset resetlog.txt
    netsh winsock reset catalog


  • On Windows XP you can double-click the file to run it.
  • On Vista/Win7 you need to Right click the file and choose Run as administrator to run it. With User Account Control on it should ask permission to run it. Click Yes
  • This will flash a black DOS box very quickly and go away, this is normal.
  • Restart your computer now.
  • Launch Internet Explorer and see if you can connect to the Internet.
  • Launch MBAM and check for Updates

Link to post
Share on other sites

Were NOT finished.

We just started.

I will be offline for the next 3 hrs., but will have more for you to do.

Please don't attach the scans / logs, use "copy/paste".

DO NOT use any TOOLS such as Combofix or HijackThis fixes without supervision.

Doing so could make your pc inoperatible and could require a full reinstall of your OS, losing all your programs and data.

Vista and Windows 7 users:

1. These tools MUST be run from the executable. (.exe) every time you run them

2. With Admin Rights (Right click, choose "Run as Administrator")

Stay with this topic until I give you the all clean post.

You might want to print these instructions out.

I suggest you do this:

XP Users

Double-click My Computer.

Click the Tools menu, and then click Folder Options.

Click the View tab.

Uncheck "Hide file extensions for known file types."

Under the "Hidden files" folder, select "Show hidden files and folders."

Uncheck "Hide protected operating system files."

Click Apply, and then click OK.

Vista Users

To enable the viewing of hidden and protected system files in Windows Vista please follow these steps:

Close all programs so that you are at your desktop.

Click on the Start button. This is the small round button with the Windows flag in the lower left corner.

Click on the Control Panel menu option.

When the control panel opens you can either be in Classic View or Control Panel Home view:

If you are in the Classic View do the following:

Double-click on the Folder Options icon.

Click on the View tab.

If you are in the Control Panel Home view do the following:

Click on the Appearance and Personalization link.

Click on Show Hidden Files or Folders.

Under the Hidden files and folders section select the radio button labeled Show hidden files and folders.

Remove the checkmark from the checkbox labeled Hide extensions for known file types.

Remove the checkmark from the checkbox labeled Hide protected operating system files.

Please do not delete anything unless instructed to.

I've been seeing some Java infections lately.

Go here and follow the instructions to clear your Java Cache

http://www.java.com/en/download/help/plugin_cache.xml

Next:

Please download ATF Cleaner by Atribune.

Download - ATF Cleaner

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.