residual security tool broswer redirection

Microsoft Windows 7 home premium oem 64b...
October 22, 2009 at 21:18:59
Specs: Windows XP
so here's the story:

yesterday, i open up my computer and Security Tool, the b---tard, pops up. i figure it's a virus, and somehow i'm able to shut it down without it affecting my options for opening up security programs, firefox, and such. i run the most up to date malwarebytes anti-malware and it does remove a bunch of nasty sounding infections. in the log i saw things like tool, etc. so i figure miraculously malwarebytes took care of it completely. for the most part it has, but now i am still getting browser redirection. also, the light blue background that wiped my desktop is still there, the desktop pic i had never came back, but all the icons are there. really, the only problem i've noticed with my computer is browser redirecting.

i'm getting it in firefox and safari. i don't even bleep with IE. here's everything i did:

full virus scan on my free avast av- nothing, still redirects
updated the hell out of malwarebytes, full scan- nothing
spyware doctor- ran it a few times, fixed the problems, otherwise nothing
windows malware program- nothing
ran combo-fix, using the popular method- still didn't fix the browser redirection
ran SFC /scannow- still redirecting
updated to firefox 3.5 ( but remember it still gets to safari also)

basically, all the scanners that i'm using are saying that the computer is clean, yet the browser redirecting continues. the nature of the redirecting is similar to what i've read about from other posts with people suffering this virus- definitely happens on keywords like "security" and "virus," but it will alot of times redirect on links in google and yahoo not related to malware/securitytool/etc. if i manually enter a website, it won't redirect.

i can't think of anything else to do short of reformatting, but that seems so drastic for a minor problem. apparently i haven't created any restore points (good job), because i'm not until now, reading all these forums, very good with computers. for all intents and purposes, security tool is gone, but the component that redirects the browser is not.

does anyone have ideas on what to do, or do i need to take this sucker into the repair shop? also, with this type of situation, a browser redirection virus, with the previous known associated viruses that malwarebytes supposedly deleted, should i do password sensitive things like email, bank stuff? are there more possible backdoor and what have you trojans?

See More: residual security tool broswer redirection

Report •

October 23, 2009 at 00:37:35
I'd say nuke it from orbit - it's the only way to be sure.

Rootkits are nasty - they hide from the OS so even Windows can't tell it's there, I'd hate to have a keylogger left over on my system recording my keystrokes.

This sounds like it's being redirected through DNS though - have you verified your DNS servers look correct? Maybe it just changed them... Try and if you're not sure.

If you're comfortable in the windows registry, you might also try reinstalling Winsock:

Download hijackthis & post the log here if you wanna pursue this further.

Report •

October 23, 2009 at 02:28:01
Download GooredFix

Double-click GooredFix.exe to run it.
Select 2. Fix Goored by typing 2 and pressing Enter.

Make sure all instances of Firefox are closed at this point.
Type Y at the prompt and press Enter again.

Report •

Related Solutions

Ask Question