Redirect + Popups virus help

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by Gameace99, Jan 17, 2012.

  1. Gameace99

    Gameace99 Private E-2

    Hello I have been having trouble removing some malware causing redirection and popup problems.
    I have attempted to follow the read and run first as closely as I could for my vista 32 bit system.

    I have the following logs
    (combofix would not work.)

    Thank you for any help.
     

    Attached Files:

    Gameace99, Jan 17, 2012
    #1
  2. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    I want you to run TDSSKiller so refer to the below for how to do so.

    TDSSkiller - How to run


    Please also download MBRCheck to your desktop
    • Double click MBRCheck.exe to run (vista and Win 7 right click and select Run as Administrator)
    • It will show a Black screen with some information that will contain either the below line if no problem is found:
      • Done! Press ENTER to exit...
    • Or you will see more information like below if a problem is found:
      • Found non-standard or infected MBR.
      • Enter 'Y' and hit ENTER for more options, or 'N' to exit:
    • Either way, just choose to exit the program at this point since we want to see only the scan results to begin with.
    • MBRCheck will create a log named similar to MBRCheck_07.16.10_00.32.33.txt which is random based on date and time.
     
    Kestrel13!, Jan 18, 2012
    #2
  3. Gameace99

    Gameace99 Private E-2

    Thank you for your reply


    The MBRcheck found something, I will attach the log
     

    Attached Files:

    Gameace99, Jan 18, 2012
    #3
  4. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    It reports an "Un known MBR" which does not necessarily mean bad. But you need to let me know how things are running exactly! If you are still experiencing browser redirects then we may need to look into a repair of your MBR.

    What happened to the log from TDSSKiller? Attach it please.

    Delete this file. Reboot. Has it still gone?

    C:\ProgramData\s5GbBT4j.exe.b
     
    Kestrel13!, Jan 18, 2012
    #4
  5. Gameace99

    Gameace99 Private E-2

    I'll attach the tdss log, I couldn't find it earlier

    I deleted that file and rebooted and it appeared to still be gone.

    I've felt like the problem has come and gone but I don't believe I've had an incident since running the programs you first suggested. but I will post another reply as soon as something happens again(if it does).

    thank you for your help
     

    Attached Files:

    Gameace99, Jan 18, 2012
    #5
  6. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Good, now re run TDSSKiller again and attach the newest log from it.
     
    Kestrel13!, Jan 18, 2012
    #6
  7. Gameace99

    Gameace99 Private E-2

    here is the log
     

    Attached Files:

    Gameace99, Jan 19, 2012
    #7
  8. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Tell me how things are running.
     
    Kestrel13!, Jan 19, 2012
    #8

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds