Malware issue

[QueBert]

Laptop had all sorts of pop ups and a few things that would open full screen that you couldn't get rid of telling you to call a # to get it fixed. I managed to get Malwarebytes & Superantisypware installed and got the bulk of the visible stuff removed. But in the process I can no longer access the web. Before I could, it would just be for a few minutes before the full screen malware would put an end to that. Some malware that was removed did something to mess with the DNS settings or something. I checked under Internet options and it's not a proxy server setting (what I usually encounter here) I reset the TCP/IP stack, nada. I can ping domains just fine, but in Firefox or IE I can't access any web sites, even if I put in the IP instead of the domain. I don't have a recovery disc for this computer, and at the moment I don't have a flash drive to put Hijackthis & Hitman on to run a few scans to see what else could be causing this.

What should I do here? I Googled, and am not seeing much besides running the programs I mentioned or resetting the TCP/IP stack. I looked in MSConfig and got rid of everything I didn't 100% know what it was.

 

[mikeymikec]

Have you tried setting up another user to test for the problem and find out whether it's user-specific?

 

[C1]

Ive always had bad luck with malware removal when it gets as bad as described. Just take the machine to a competent repair shop for clean up & restoration and/or buy the OEM installation disks for your laptop from the manufacturer.

 

[Burpo]

Open up the command line utility and enter:

netsh winsock reset catalog (resets winsock entries)

netsh int ip reset reset.log hit (resets TCP/IP stack)

 

[JeffMD]

It may not have touched your dns, but check your browsers proxy settings?

 

[QueBert]

Have you tried setting up another user to test for the problem and find out whether it's user-specific?

DAMN forgot this is what I use to do, been awhile since I've had to go this deep to fix a pc. I tried this, but in Windows 8.1 it's not what I'm use to. I created an account, rebooted and nope it automatically logged me in with the default one. I could have Googled it, was puzzled why they changed the log in process. I ended up fixing it with Adwcleaner, what an amazing program. it's fast and found all sorts of stuff that nothing else detected.

It may not have touched your dns, but check your browsers proxy settings?

I checked the proxy settings and there was nothing, I'm still not exactly sure what it was but it's gone and working normally again. Took me 7 different scans and manually looking for crap to get there. But persistence pays off.

Open up the command line utility and enter:

netsh winsock reset catalog (resets winsock entries)

netsh int ip reset reset.log hit (resets TCP/IP stack)

I've always done the 2nd one, never the 1st. I shall write that down for future reference, thank you sir!

 

[cubby1223]

run through a wider selection of programs, I'd suggest in addition to what you have, and in this order:

tdsskiller
combofix
adwcleaner
HitmanPro
tweaking.com's windows repair

 

[cubby1223]

Oh, and also uninstall then reinstall whatever anti-virus software was on the machine, malware could have messed with firewall settings. Actually, disable any firewall and check if the browsers work.

 

[oliver03]

QueBert, do you have a backup?

If you already spend hours, maybe days, weeks, trying to clean your infected Windows system and then making sure it’s actually clean and safe afterward. Sometimes it’s actually not a good idea to do this.

Just reinstall Windows and start over. You quickly obliterate the infection and ensure your system is safe, afterwards.

If you do have good a backup of your important files - consider this .

 

[John Connor]

Could be the hosts file.

I would try a repair install, but that's after running a bunch of scanners like a Bit defender rescue disk and Herdprotect.

 

[DAPUNISHER]

I learned the hard way to treat flash drives with a toolkit on them like my pocket knife. Always have one on you or in the car. And like you keep the knife sharp, keep updating the versions of tools every couple of months.

 

[VirtualLarry]

Laptop had all sorts of pop ups and a few things that would open full screen that you couldn't get rid of telling you to call a # to get it fixed.

My friend called me earlier tonight, his GF's machine got something like that. Only it wasn't full-screen, in fact, no visible windows at all. It would speak to you through the speaker instead.