Reset Hosts File:* Go to
Start > Run and type
Notepad.exe then click
OK* Copy and Paste everything from the
Code Box below into
Notepad:@Echo off
pushd\windows\system32\drivers\etc
attrib -h -s -r hosts
echo 127.0.0.1 localhost>HOSTS
attrib +r +h +s hosts
popd
del %0* Go to
File >
Save As* Save File name as
Reset.bat* Change
Save as Type to
All Files and save the file to your
desktop.On the desktop double click the
Reset.bat to run the batch file. It will self-delete when completed.
----------
Try not to restart the computer until one of the tools we use does it for you or tells you to.If one of the tools will not run just go on to the next one. Save the logs to post in your next reply.1) Please download and run the below tool named Rkill
(courtesy of BleepingComputer.com) which may help allow other programs to run.
There are 4 different versions. If one of them won't run then download and try to run the next one.
Vista and Windows 7 users need to right click Rkill and choose
Run as AdministratorYou only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.
*
Rkill.com*
Rkill.scr*
Rkill.pif*
Rkill.exe* Double-click on the Rkill desktop icon to run the tool.
*
If using Vista or Windows 7 right-click on it and choose Run As Administrator.
* A
black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
* When finished it will create a log.
* Please post the rkill.log in the next reply.
* If Rkill does not run from the first link, delete the file, then download and use the one provided in
Link 2. If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
* Do not reboot until instructed.
* If the tool does not run from any of the links provided, please let me know.
Once you've gotten one of them to run then try to immediately run the following.
2) Download and run exeHelper* Please download
exeHelper from Raktor to your desktop.
* Double-click on
exeHelper.com to run the fix.
* A black window should pop up, press any key to close once the fix is completed.
* A log file named log.txt will be created in the directory where you ran exeHelper.com
* Add the
log.txt file to your next message.
Note: If the window shows a message that says
"Error deleting file", please re-run the program before posting a log - and post the two logs together (they will both be in the one file).
3) If you already have Malwarebytes be sure to update it before running the scan!Download
Malwarebytes' Anti-Malware (MBAM)* Double-click
mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to the following:
*
Update Malwarebytes' Anti-Malware*
Launch Malwarebytes' Anti-Malware* Then click
Finish* If an update is found, it will download and install the latest version.
* Once the program has loaded, select
Perform quick scan, then click
Scan.
* When the scan is complete, click
OK, then
Show Results to view the results.
* Be sure that everything is checked, and click
Remove Selected.
* When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
* The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
*
Copy and Paste the entire report in your next reply.Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.
