Avast WEBforum

Other => Viruses and worms => Topic started by: loadblok on July 31, 2012, 03:32:51 PM

Title: Sirefef-PL [rtk] infection-redirects and weak certificate errors
Post by: loadblok on July 31, 2012, 03:32:51 PM

First of all, thanks to the folks who volunteer to help the teaming masses, those yearning to be free of malware!

I have encountered Sirefef-PL [rtk] and it has rendered the PC *mostly* useless; google search results get redireced; and when attempting to access gmail I receive a warning about a weak certificate.  The address bar shows https with a red slash through it, and the padlock icon to he left of https has a red 'X' through it, and I am unable to access gmail.

Title: Re: Sirefef-PL [rtk] infection-redirects and weak certificate errors
Post by: essexboy on July 31, 2012, 03:45:13 PM

Hi you are being assisted by one of my students at GeeksToGo.  So I will let you continue there 

Title: Re: Sirefef-PL [rtk] infection-redirects and weak certificate errors
Post by: loadblok on July 31, 2012, 05:42:09 PM

Ran into trouble with ComboFix, it seemed to run normally to completion, then displayed a log, but when I try to open a browser or any program for that matter, I get a message stating, "Illegal operation has been attempted on a registry key that has been marked for deletion".  Affects all files, whether a simple text file or an executable.

Title: Re: Sirefef-PL [rtk] infection-redirects and weak certificate errors
Post by: DavidR on July 31, 2012, 05:47:55 PM

Just reboot again.

Title: Re: Sirefef-PL [rtk] infection-redirects and weak certificate errors
Post by: loadblok on July 31, 2012, 06:00:35 PM

The PC seems to function better, am able to access gmail without the certificate error message.

Here are the OTL and ComboFix logs: