Please help

Reviewing the logs that you have provided and will respond as soon as I create a suitable fix.

 

Was the version of Combofix you downloaded from OUR link, and did you download it fresh today? If not, and if you have tried to run an old copy, then please download a fresh copy. In fact, do this anyway, I will provide instructions further down.

Download and run OTM.

Download OTM by Old Timer and save it to your Desktop.

• Right-click OTM.exe And select " Run as administrator " to run it.
• Paste the following code under the http://farm3.static.flickr.com/2455/4173556815_a721a91733_o.png area. Do not include the word Code.

Code:

:Files
C:\Users\Lev\AppData\Local\Mwozifasocuk.dat
C:\Users\Lev\AppData\Local\Rjubejab.bin
C:\Users\Lev\Local Settings\TEMP\2387.tmp
C:\Users\Lev\Local Settings\TEMP\2F49.tmp
C:\Users\Lev\Local Settings\TEMP\30B1.tmp
C:\Users\Lev\Local Settings\TEMP\A45A.dir
C:\Users\Lev\Local Settings\TEMP\A45A.tmp
C:\Users\Lev\AppData\Local\{B9B585B3-982A-4BFD-9E58-6220EDFD5E98}
C:\ProgramData\AVG10
C:\ProgramData\MFAData

:Commands
[emptytemp]
[Reboot]

• Return to OTM, right click in the Paste List of Files/Folders to Move window (under the yellow bar) and choose Paste.
• Push the large http://farm3.static.flickr.com/2782/4174320048_f01c448b32_o.png button.
• OTM may ask to reboot the machine. Please do so if asked.
• Copy everything in the Results window (under the green bar), and paste it in your next reply.

NOTE: If you are unable to copy/paste from this window (as will be the case if the machine was rebooted), open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTM\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.


Please download a fresh copy of Combofix to your desktop, let it overwrite the previous copy and now try and run it again.


Continue on with this regardless of the Combofix results...


Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created by running this.

Let us know of any problems you may have encountered with the above instructions and also let me know how things are running now!

Question: If you are still experiencing redirects, answer this - do you have your Win 7 boot CD?

 

MBR infections are only worsening and sometimes (rarely) make the computer unbootable after attempting to correct it. Continue with the below if you wish to attempt to remove this infection:

If you do not have your Windows 7 DVD, you can create one with the Recovery Console (which is really all we need), here

Choose Windows 7 64-bit-repair disc.zip

1. Put the Windows Vista or Windows 7 installation disc in the disc drive, and then start the computer.
2. Press a key when you are prompted.
3. Select a language, a time, a currency, a keyboard or an input method, and then click Next.
4. Click Repair your computer.
5. Click the operating system that you want to repair, and then click Next.
6. In the System Recovery Options dialog box, click Command Prompt.
7. Type Bootrec.exe, and then press ENTER.

Then you can do this:

Bootrec.exe /fixmbr

Then rerun MBRCheck attach the new log and tell me how things are running.

 

Why would you need to order this dvd? Just so I can understand, what problems did you have with the instructions in my message #7?

 

As stated.

Is that not an option for you?

 

Note the space

between Bootrec.exe and /fixmbr Now try again and let me know.

 

Are you absolutely sure that you are booting from the CD and not a built in system recovery environment?

Also tell me what prompt you do see when you get to the command prompt?

If you had properly booted from the CD, bootrec /fixmbr would rewrite the MBR.