BleepingComputer.com: Search Redirect Virus...Combofix Log

Hello good evening.

Starting Monday April 25, when I shut down, I got a blue screen. Never happened before.

I tried system restore, nothing. I tried to do microsoft updates, since the blue screen seemed to say that it's possible that drivers are out of date, but for some reason, I am unable to update. Then I realized that when I was doing a search on the web, it would redirect me to another unrelated site.

So now I think I have the redirect virus that may also be affecting any microsoft updates to my machine.

I have tried Malwarebytes (free version). I have Trend Micro installed and while it did find some items (like a couple of trojans) and deleted the infected file, I still kept getting the blue screen.

Eventually, I restored my laptop with a backup that I had from end of December 2010. The restore I chose was on the whole hard drive. After the restore, it attempted to reboot and bluescreen happened again. I forced the reboot and after rebooting, I installed Malwarebytes again from a USB (note that I had my internet disconnected). Did a scan and found and fixed a backdoor.bot. Then I ran trend micro---found nothing. Then I rebooted again, and this time, no blue screen. Then I connected to the internet so I can update Malwarebytes and Trend Micro, and re-run those two and found nothing. At this point I was hoping I no longer had the redirect virus as this only started to manifest itself in the past week and since I restored my entire Hard Drive from a December back up. Alas...no luck. I did a search, it did bring me to the correct site but then a pop up opened to another site and as soon as it did that, I turned my router off.

Anyway, after many searches, I tried to do a TDSSKiller by Kaspersky but for some reason I could not get it to work. When I ran the exe file it would say that it failed to execute or run or something like that. So my sister recommended to do the Combofix. Then found your site...

I realize that I did the Combofix before reading the Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help...so pardon me if I am requesting help in interpreting the log.

May you please help me?

I would appreciate your help.

This post has been edited by stormm: 02 May 2011 - 12:31 AM

Hi,

Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.

• Please subscribe to this topic, if you haven't already. Click the Watch This Topic button at the top on the right.
  
  
  
• Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.
  
  
  
• Please reply to this post so I know you are there.

The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.

Once I receive a reply then I will return with your first instructions.

Thanks

Hello, yes I am still here.

We will start by running a program to check for rootkit activity

Please download aswMBR ( 511KB ) to your desktop.

• Double click the aswMBR.exe icon to run it
  
• Click the Scan button to start the scan
  
• On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

Hi,

I have not had a reply from you for 4 days. Can you please tell me if you still need help with your computer as I am unable to help other members with their problems while I have your topic still open. The time taken between posts can also change the situation with your PC making it more difficult to help you.

If you like you can PM me.

Thanks,

m0le

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.