Now that we have system restore off lets try this again
FixWareOut
run it. Click Next, then Install, then
make sure "Run fixit" is checked and click Finish. The fix will begin; follow the prompts. You will be asked to reboot your computer; please do so. Your system may take longer than usual to load; this is normal.
At the end of the fix, you may need to restart your computer again.
: Remove bad HijackThis entries
* HijackThis should launch automatically
* Click on the Scan button
* Put a check beside all of the items listed below (if present):
O17 - HKLM\System\CCS\Services\Tcpip\..\{0D7C60DB-20E2-407C-B5E0-CB37E9A99148}: NameServer = 85.255.116.109 85.255.112.21
O17 - HKLM\System\CS1\Services\Tcpip\..\{0D7C60DB-20E2-407C-B5E0-CB37E9A99148}: NameServer = 85.255.116.109 85.255.112.21
* Close all open windows and browsers/email, etc...
* Click on the
"Fix Checked" button
* When completed, close the application.
-----------------------------------------------------------------------------------------------------
Go to start -> all programs -> accessories -> command prompt
At the command prompt type => ipconfig /flushdns
Close the command prompt
--------------------------------------------------------------------------------------------------------
Run Ccleaner again
- Close all browsers.
- Run the programme and make sure all the boxes are ticked under the Windows and Applications tabs, Also check All Advanced tabs(except for the Old prefetch Data option, this should be unticked)
- Click the run cleaner button. Do this several times
- Click the registry Icon on the left hand side -> scan for problems
- have it fix whatever it finds
------------------------------------------------------------------------------------------------------------
Restart your computer run a fresh scan with Hijackthis and lets see if they are still there, if they are I must be missing something and will ask for a fresh look at the logs from somebody else.