Hi. My laptop been acting strange since two days ago. Ive tried scanning using avast free antivirus but it didnt detect any virus. The reasons i think my laptop is infected is because:

1. I cant connect to the internet AT ALL. Ive tried troubleshooting then it says ‘the diagnostics policy service is not running’. Then ive tried to manually start the service in windows task manager. It says ‘access is denied’
2. And it turns out that not only the diagnostics policy service stopped running…there are a lot of services stopped by itself. When i tried to start it manually, it also says ‘access denied’.
3. one of the services that has stopped is my windows firewall. I got an error code ‘0x8007042c’
4. Ohh Ive also tried going on safe mode with networking…still it cant connect to the internet.

I dont know what should I do. I really2 need my laptop to function normally asap cause i need it for my uni work. It hope someone can help me.

OK lets have a quick look

Download OTL to your Desktop
Secondary link

[*]Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.

https://dl.dropboxusercontent.com/u/73555776/OTL_Main_Tutorial.gif

[*]Select All Users
[]Select LOP and Purity
[]Under the Custom Scan box paste this in

netsvcs
BASESERVICES
%SYSTEMDRIVE%*.exe
c:\program files (x86)\Google\Desktop
c:\program files\Google\Desktop
dir “%systemdrive%*” /S /A:L /C
/md5start
rpcss.dll
/md5stop
CREATERESTOREPOINT

[*]Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
[*]When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
[*]Attach both logs

My laptop still cant connect to the internet so I cant download anything =/ there’s nothing wrong with my wifi since im using it with my phone.

What version of windows do you have ?

Windows 7

OK initially we will try to reset the net…
Do you have access to another computer that you could use to download programmes to ?

Open an elevated command prompt :

Go Start > All Programs > Accessories
Right click command prompt and select Run as Administrator
In the black box that opens type the following commands pressing enter after each :

netsh advfirewall reset
netsh advfirewall set allprofiles state ON
ipconfig /flushdns
netsh winsock reset catalog
netsh int ip reset c:\resetlog.txt
ipconfig /release
ipconfig /renew

Then try safe mode with networking and see if that allows you on

Unfortunately there’s no other computer I can access to at the moment.

Ive tried the commands and then safe mode with networking, it still wont connect to the internet.

When I tried the commands, it says:

netsh advfirewall reset
An error occurred while attempting to contact the Windows Firewall service. Make sure that the service is running and try your request again.

netsh advfirewall set allprofiles state ON
An error occurred while attempting to contact the Windows Firewall service. Make sure that the service is running and try your request again

ipconfig /flushdns
Windows IP Configuration
Successfully flushed the DNS Resolver Cache

netsh winsock reset catalog
The requested operation requires elevation

netsh int ip reset c:\resetlog.txt
Reseting Global, failed.
The requested operation requires elevation
Reseting Interface, failed.
The requested operation requires elevation
Reseting Subinterface, failed
The requested operation requires elevation
There’s no user specified settings to be reset.

ipconfig /release
Windows IP Configuration
No operation can be performed on Wireless Network Connection 2 while it has its media disconnected.
No operation can be performed on Wireless Network Connection while it has its media disconnected.
No operation can be performed on Local Area Connection while it has its media disconnected.
No operation can be performed on Bluetooth Network Connection while it has its media disconnected.

ipconfig /renew
Windows IP Configuration
No operation can be performed on Wireless Network Connection 2 while it has its media disconnected.
No operation can be performed on Wireless Network Connection while it has its media disconnected.
No operation can be performed on Local Area Connection while it has its media disconnected.
No operation can be performed on Bluetooth Network Connection while it has its media disconnected.

OK I am just working on a way now where we can use your phone, if it is android powered. I have sorted the download and run part. And am currently working on how to get the logs. But we can do half whilst I am sorting that bit out

Lets use your phone to download the programme

Go to http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/ and download the 32 or 64 bit version as applicable. If you are not sure then download both. Only one will run on your computer

Connect your phone to the computer using the USB cable
Using Explorer locate your Phone (in my case a Nexus )

https://dl.dropboxusercontent.com/u/73555776/androidd'load.JPG

Once it has downloaded then go to the phones Download folder and drag then drop the programme to your desktop

https://dl.dropboxusercontent.com/u/73555776/androidcopy.JPG

Once on your desktop

[*]Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
[*]Select additions at the bottom
[*]Press Scan button.

https://dl.dropboxusercontent.com/u/73555776/frst.JPG

[*]It will produce a log called FRST.txt in the same directory the tool is run from.
[*]Please attach all 2 logs generated.

OK part two

Once on your desktop

[*]Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
[*]Select the additions at the bottom
[*]Press Scan button.

https://dl.dropboxusercontent.com/u/73555776/frst.JPG

[*]It will produce a log called FRST.txt in the same directory the tool is run from.
[*]Copy both logs to the download folder of your phone

To upload the reports install Quickoffice from Playstore https://play.google.com/store/apps/details?id=com.quickoffice.android
Once Quickoffice is up and running on your phone and you have signed in you will be presented with a menu select :

Internal storage
Downloads
Select both FRST logs and press the scissor icon at the top
From the three dot vertical icon at top right select Share
Select GMAIL
Then send it to me, I will PM my address

Ok this gonna take a while :-\ Am using iPhone but dont worry I have my old android phone with me so yeahh. Im still working on it. Hehe i’ll get back to you once ive done the scanning and transferring ;D

Done. I already send the logs to you

Got 'em checking out now

OK no apparent malware although you also have comodo and AVG running as well as Avast

Download Windows All In One Repair from Tweaking.com to your Phone. Select the portable version and direct download
Drag and drop the programme to your desktop
Run the programme

Select Step 5 : Back up your registry and create a system restore point

https://dl.dropboxusercontent.com/u/73555776/waiobackup.JPG

Then select the Start repairs tab and click Start

https://dl.dropboxusercontent.com/u/73555776/waiorepair.JPG

Select the following repair number items :

1
2
3
4
5
6
9
12
14
16
20
25
26

Then press start, as the repairs are quite lengthy it may take a while
Once it has completed then reboot the system
Try the internet again

Sorry for the late reply Essexboy. Done that already. My internet is working ;D ;D ;D ;D my firewall is also on.

Thank you so much for helping and assisting me ;D Really really appreciate it

That is good, and thank you for trying my little experiment to get the logs. Were the instructions easy to follow ?

Yeah it were. I followed exactly what u instructed. Thanks again ;D ;D