Search:

All updated, removed, & immunized.

Thanks again for all of your help!

-Jesse

Hi Ken,

So far everything seems to be running fine, I haven't been re-directed yet, and all seems fine. I'll keep you posted but it looks good!

Thanks for all of your help, I appreciate it!
...

I was working on getting Combofix to run.
Now that it has, here are the results from TDSSKiller:

00:05:21:091 3288 TDSS rootkit removing tool 2.2.8.1 Mar 22 2010 10:43:04
00:05:21:091...

ComboFix 10-04-03.02 - Jesse 04/04/2010 23:32:56.3.2 - x86 NETWORK
Microsoft® Windows Vista™ Ultimate 6.0.6001.1.1252.1.1033.18.2046.1653 [GMT -4:00]
Running from:...

here's the virus total report on iastore.sys

http://www.virustotal.com/analisis/62f2faf027c217a3a035759af47d848aeffa7a94c54b4c424b67459d464b8aa8-1269659454

OTL Extras logfile created on: 4/2/2010 10:41:30 PM - Run 1
OTL by OldTimer - Version 3.1.37.3 Folder = C:\Users\Jesse\Desktop
Windows Vista Ultimate Edition Service Pack 1 (Version = 6.0.6001)...

OTL logfile created on: 4/2/2010 10:41:30 PM - Run 1
OTL by OldTimer - Version 3.1.37.3 Folder = C:\Users\Jesse\Desktop
Windows Vista Ultimate Edition Service Pack 1 (Version = 6.0.6001) - Type...

I cant find that file.... I was able to run GMER Here's the results:
It says I'm still referencing that .sys file, but it doesn't exist. I have everything viewable, and even with a search it turns...

So each blue screen of death seems to reference the same issues.

Stop 0X00000008E

and

uxldapow.sys

and

Hey Ken,

The file is not on my cpu anymore, and every time I try to run GMER, it freezes and gives me a blue screen of death at location 0X0000008E

The only info I can get from GMER is this:
...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:46:44 AM, on 3/31/2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
...

After the 6 crashes it finally ran!
I had to uninstall AVG but that's okay.

ComboFix 10-03-29.04 - Jesse 03/31/2010 3:28.1.2 - x86
Microsoft® Windows Vista™ Ultimate ...

So combofix crashed 4 times and gave me the blue screen of death.

I abandoned the efforts to run that and have since run a HJT scan with the following result:

Logfile of Trend Micro HijackThis...

64.15.72.104
is the most prominent site that it references before sending me to another page.
Some of them are as follows:
ads.doubleclick.com
www.search.pro
juggle.com

There is another ip...

So I tried searching in google today and it is still redirecting my search results when I click on them...... I've downloaded and installed all of the programs that you suggested.

Any thoughts?

Spybot S&D can update!
So can MalwareBytes!

I have already uninstalled uTorrent, I didn't realize I still had it installed until I did that last scan!

Anything else you can see that I should...

info.txt logfile of random's system information tool 1.06 2010-03-28 01:23:54

======Uninstall list======

-->MsiExec.exe /I{8ED4E82B-8CEA-40DE-826C-37AC7B941F81}
µTorrent-->"C:\Program...

Logfile of random's system information tool 1.06 (written by random/random)
Run by Jesse at 2010-03-28 01:23:44
Microsoft® Windows Vista™ Ultimate Service Pack 1
System drive C: has 62 GB (54%)...

Malwarebytes' Anti-Malware 1.44
Database version: 3922
Windows 6.0.6001 Service Pack 1
Internet Explorer 8.0.6001.18813

3/28/2010 1:21:15 AM
mbam-log-2010-03-28 (01-21-15).txt

Scan type:...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:07:20 AM, on 3/23/2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
...

Hello,

I have an interesting problem. I recently downloaded a program, and it was a virus disguised as another program..... Now when I am in google or yahoo I click on a link and it sends me to...