Virus that doesn't allow internet access?

[Sarita]

As I can't access the internet I couldn't download the above programs to run the scan log.

 

[TwinHeadedEagle]

Hi,


Do you have other computer, so you can download requested tools on it, and then transfer it on infected one.

 

[Sarita]

Yes, I do have another computer. How can I transfer them to the infected one?

 

[TwinHeadedEagle]

Transfer it any way you can. USB Flash is the easiest way. Follow the instruction below on infected computer.


Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them.
Only one of them will run on your system, that will be the right version.

• Double-click to run it. When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply.
• The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

 

[Sarita]

Hi, I have followed your instructions and I have attached the two reports.

 

[TwinHeadedEagle]

Great


First, go to Control Panel and uninstall following:
- Snap.Do

***** NEXT *****​

Please download TFC by OldTimer to your desktop

• Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
• It will close all programs when run, so make sure you have saved all your work before you begin.
• Click the Start button to begin the process. Depending on how often you clean temp
  files, execution time should be anywhere from a few seconds to a minute
  or two. Let it run uninterrupted to completion.
• Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.

***** NEXT *****​

Please download Malwarebytes AntiRootkit (MBAR) and save it to your desktop.
For full instructions how MBAR works, read this article

> Doubleclick on the MBAR file

and allow it to run.
• Click OK on the next screen, to allow the package to extract the contents of the file to its own folder named mbar.
• mbar.exe will launch automatically. On some systems, this may take a few extra seconds. Please be patient and wait for the program to open.
• After reading the Introduction, click Next if you agree.

• On the Update Database screen, click on the Update button. Once you see 'Success: Database was successfully updated' click on Next
• Under Scan Targets ensure all boxes are ticked. Then click the Scan button.

Notice: with some infections, you may see two messages boxes:
- 'Could not load protection driver'. Click 'OK'.
- 'Could not load DDA driver'. Click 'Yes' to this message, to allow the driver to load after a restart. Allow the computer to restart. Continue with the rest of these instructions.

>> If malware is not detected, click the Exit button to close the program and post the mbar-log-year-month-day.txt and system-log.txt reports.

>> If an infection/s are found ensure Create Restore Point are ticked. Then select the "Cleanup! button to remove threats.
• The clean up procedure will be scheduled for process, pop-up will be shown.
Select the Yes button and the system should re-boot to complete the cleaning process.

>> Notice: only if an RootKit are detected, ensure to run fixdamage.exe tool located in mbar folder, \Plugins\fixdamage.exe
- Run fixdamage.exe, at the black window to continue type Y (alias for Yes). Wait few seconds for execution ...
- When you see "press any key to exit" fix is completed, press any key to close the window. Reboot the system.


> The following reports will be created in mbar folder:
1. mbar-log-year-month-day (hour-minute-second).txt
2. system-log.txt

Please post both logs in your next reply.

 

[Sarita]

I try to uninstall the snapdo but it says that...
The feature you are trying to use is on a network resource that is unavailable.

I click on okay to try again but it doesn't work, it says that it cannot be found and to verify access to the location.

 

[TwinHeadedEagle]

Procede with other steps.

 

[Sarita]

Hi, I followed the above steps and after the scan from the Malwarebytes there was no infection, how do I
post the mbar-log-year-month-day.txt and system-log.txtreports?

 

[TwinHeadedEagle]

There is a option Upload a File below.

 

[Sarita]

Am afraid no

 

[TwinHeadedEagle]

Yes there is, do the same like Farbar reports.

 

[Sarita]

 

[Sarita]

they are attached now

 

[TwinHeadedEagle]

Your PC seems malware clean. Do you still experience the issues. Tell me in few word what is happening right now.

 

[Sarita]

I can't access internet although my pc is connected to the WIFI. Google Chrome says that my firewall or anti-virus software wrongly thinks Google chrome is an intruder on my pc and is blocking it from connecting to the internet. the internet explorer says that the page cannot be displayed

 

[TwinHeadedEagle]

Can you make a ScreenShot how it looks like

Upload it here and attach link --> http://tinypic.com/

 

[Sarita]

Below are the links, when I go on google chrome it seems to work but then when i click to go on any link it doesn't work.

<a href="http://tinypic.com?ref=21l1tkw" target="_blank"><img src="http://i57.tinypic.com/21l1tkw.png" border="0" alt="Image and video hosting by TinyPic"></a>

<a href="http://tinypic.com?ref=34q01dv" target="_blank"><img src="http://i62.tinypic.com/34q01dv.png" border="0" alt="Image and video hosting by TinyPic"></a>

<a href="http://tinypic.com?ref=v32eth" target="_blank"><img src="http://i60.tinypic.com/v32eth.png" border="0" alt="Image and video hosting by TinyPic"></a>