Please help! Trojan/rootkit/browser redirect

I managed, through my own fault, to pick up an infection from a bad executable, which I downloaded and ran when trying to add functionality to Media Monkey. I was alerted to it by AVG flashing up threat messages about "BackDoor.Generic12.GOG.Dropper".

I immediately scanned with AVG (nothing found). I then scanned, several times, with MalWareBytes; SuperAntiSypware; Spybot. These found, and claimed to remove, multiple threats; mostly Trojans and one Rootkit entry. I have copies of these logs if required.

After all of this, I had a persistent redirect in Firefox and IE from Google search results. I would click on a search result, and more often than not be taken to a different page than the one I had selected. Also, AVG seemed to be broken.

I removed and reinstalled AVG, which then found an instance of the SHeur2.CIEE trojan. My internet connection was intermittent. I renamed the AVG executable, as well as those for various other spyware removers, and ran them all again, but they found nothing. I also booted into safe mode and deleted as much temporary file material as I could find.

I then found this forum, and have followed the instructions to the best of my ability. I could not get RootRepeal to run: it froze (for hours) on the 'Initializing' box, immediately after running the executable, so I have no log for that. The other logs are attached. Combofix said that it had detected Rootkit activity.

I have not done anything security-critical on the computer (passwords, bank details etc) since the moment of infection, which I can pinpoint very precisely. However, this is a computer which I use extensively for this purpose, and I need to be certain that it is clean. The redirects seem, for the moment, to have stopped - but I'm not relaxing yet.

I hope you can help me! Many thanks in advance. Logs attached.

 

Many thanks for your help! I have run TDSSKiller as you asked, and have attached the log. Things seem to be running as expected; certainly no redirects at present. Does this mean I don't need to worry about Trojans/Backdoor issues any more, from a security point of view?

A related question: when I became infected with the various Trojans, my external hard drive (W: ) was connected to the computer. Shortly afterwards I disconnected it (physically), and it's been disconnected ever since. In a subsequent scan (but before I found this forum) one of the scanners found a problem with my W:/autorun file, even though the drive wasn't connected to the computer!

Should I be concerned that when I reattach the external drive, I could become reinfected - and if so, what steps can I take? The drive usually attaches via Firewire, but there is a USB option if required. Ditto things like my Blackberry and digital camera, both of which the computer reads as external drives when attached.

Thanks again

 

Autorun Eater found an infected autorun file on my W: drive, and I told it to fix the problem. I then scanned with AVG 9, Malwarebytes and SAS, none of which found anything. Do you think I'm in the clear? Can I start using the computer for banking again?

Thanks again for your help.

 

Thanks. I've run through the final steps and all looks fine. Just wanted to thank you for your help. I'll be recommending this forum if I hear of anyone in a similar situation!