Vista PC with infection

Hey guys

This looks like a helpful forum. I have a Win Vista machine with an infection. I wonder if you can help?

When offline, Malwarebytes seems to find a couple of infected files and does its best to get rid of them (requests restart which I do). When I plug back in to the network (and therefore the internet) machine goes a bit crazy, some legitimate services are closed down and more nasties are found by AVG + Malwarebytes (I have paid version of the latter).

When I try to go to some antivirus sites (e.g. security.symantec.com) I am redirected to google. Other non-AV sites OK.

PC seems to be busy, even though task manager shows not much is going on.

AVG keeps finding infections but cannot seem to get rid of them.

I have run tdsskiller several times. It finds nothing bad.

Windows Defender “cannot download updates”.

I have gone through the suggested tests and will now upload the results.

Would really appreciate some help and ideas!

Thank you! :smiley:

This needs further analysis by a malware removal specialist:
Go to this topic http://forum.avast.com/index.php?topic=53253.0 for information on Logs to assist in cleaning malware.
Use the information about getting and using the tools and attach the logs here, not in the LOGS topic.

Malwarebytes log file

OTL and Extras logs

So You dont Get help in AVG forum?..hmmmm
We Can suggest a new AV for You with a great support forum ;D

ASWMBR log. When I saved the log to the desktop the first time the file saved was MBR.dat. (Tried to attach but forum won’t let me). Then I specified another name for the log file, MBRsve.txt, and it saved OK.

One more attachment - the desktop showing typical behaviour. :cry:

@Asyn - done :wink:

@Pondus - sorry if I offended :wink: I have avast on my laptop…I think avast is better. No virus on laptop. ;D

Offended…why would i be that…i am not the one with AVG. ;D

OBS: it may take several hours before the removal specialist log in to the forum

Thank you. I will be patient.

Just wanted to update this thread. A (very geeky) mate suggested I download and use Microsoft Windows Offline Defender (where it creates a boot disc which you use to boot the infected machine and it searches for nasty files). It found a single Denial Of Service infection, which you can see in the photo I have uploaded. It cleared that infection.

I then ran Malwarebytes which found and cleared a couple of infections, then ran Offline Defender again (nothing found that time) and Malwarebytes, Spybot Search and Destroy a couple more times (nothing found). A quick ccleaner run to get rid of temporary files and we’re back up and running again, infection-free. Nightmare over! ;D

Hope this helps someone in future.

Thanks

Hi there I have only just seen this… Are all the problems clear, or are you having some redirect problems ?

If so I would be happy to assist

@essexboy all clear now, thank you for the offer of help.