[JSntgRvr]

Sorry for the delay.

Run Msconfig. Don't do any changes yet. Is the Safe boot option checked?

Lets run a few programs in that computer.

Please download ComboFix from Here or Here to your Desktop.

**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**

• Please, never rename Combofix unless instructed.
• Close any open browsers.
• Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
  

  -----------------------------------------------------------

  • Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
  • Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
    
    If AVG or CA Internet Security Suite is installed, you must remove these programs before using Combofix. If any of these applications will not uninstall, it is first recommended to uninstall it with AppRemover by Opswat. http://www.appremover.com/. Do not remove Norton / Symantec with AppRemover. If you need further help with AppRemover, let me know.
    
    

    -----------------------------------------------------------

  • Close any open browsers.
  • WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
  • Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
  • If there is no internet connection after running Combofix, then restart your computer to restore back your connection.

  -----------------------------------------------------------

• Double click on combofix.exe & follow the prompts.
• Install the Recovery Console if prompted.
• When finished, it will produce a report for you.
• Please post the "C:\ComboFix.txt" .

**Note: Do not mouseclick combofix's window while it's running. That may cause it to stall**

Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.
Note: Combofix prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security.

Please do not install any new programs or update anything (always allow your antivirus/antispyware to update) unless told to do so while we are fixing your problem. If combofix alerts to a new version and offers to update, please let it. It is essential we always use the latest version.

[Advertisements]

I still cannot access the internet via the corrupt PC. On broadband I get the Error Message 3758096902 "Windows cannot start installing New Modem Wizard" and the is no list of available networks. On the network diagnostics I get the error messgae 12007 on HTTP, HTTPS and FTP stating that server name or address could not be resolved.

I have also tried using an ethernet cable but I get the message that the Phone and Modem control panel cannot be opened. On Networks diagnostics, I have the error code 0x80070422 service either disabled or no enabled devices.

[Jan1959]

I still cannot access the internet via the corrupt PC. On broadband I get the Error Message 3758096902 "Windows cannot start installing New Modem Wizard" and the is no list of available networks. On the network diagnostics I get the error messgae 12007 on HTTP, HTTPS and FTP stating that server name or address could not be resolved.

I have also tried using an ethernet cable but I get the message that the Phone and Modem control panel cannot be opened. On Networks diagnostics, I have the error code 0x80070422 service either disabled or no enabled devices.

[JSntgRvr]

Lets take a look at your connectivity.

Download the enclosed file. Extract its contents to the USB drive. While running the sick computer in Normal Mode, browse to the USB drive and click on the Test.bat file. A report.txt will be produced. Post its contents in your next reply.

[Jan1959]

Problem - windows froze trying to disconnect from the internet (even though it wasn't connected) so I have rebooted. It appears to start up normally but the message "can't find boot.ini, loading with Windows" flashes up and I have no icons or task bar on my screen, just the wallpaper and the cursor. Right clicking the screen doesn't do anything either.

[JSntgRvr]

Press Ctrl+ALT+Delete simultaneously. That should bring the Task Manager. Select the Applications tab. Click on New Task, type Explorer.exe and click OK.

Do you now have control over the computer?

[JSntgRvr]

Explorer.exe Had a typo on my previous post.

[Jan1959]

It has opened another explorer.exe file in the task manager but the screen has changed apart from that

[JSntgRvr]

Still no icons?

[Jan1959]

I guessed that. :-) still the same though I'm afraid. No change. No applications are running either.

Edited by Jan1959, 02 January 2011 - 09:50 AM.

[JSntgRvr]

Lets go back to OTLPE. There must be a remnant of the virus doing all type of things.

Take a look at Post #2. Follow those instructions to run OTLPE (Save those instructions in the USB drive), and post the report.

[Jan1959]

I have just loaded the OTLPE and a different window has come up asking me which folder I want to browse - my computer, Ram disk, local disk, ReatogoPE or shared documents. I didn't have this come up before and when I closed it to try to start again I have a box come up called Runscanner stating that no windows installations can be found.

[JSntgRvr]

There is no c:\windows?

[JSntgRvr]

Restart the computer to the OTLPE CD. Perhaps the disk driver was not recognized.

[Jan1959]

loading now

[Jan1959]

Same response - Browse for folder. No c:\windows option. The Windows XP logo does come up before Reatogo loads.

The local disk has c behind it, could this be the windows?

Edited by Jan1959, 02 January 2011 - 10:57 AM.