Author Topic: Redirect search malware in svchost.exe (Read 3578 times)

fcanitrot · « **on:** November 24, 2010, 10:08:23 PM »

Hi. Here fcanitrot from Chile.

I am new to the forum. Been having problems for a while so decided to to install avast. works well in blocking but soesn't sem to be able to stop the redirecting.

Installed Mbam and it found some stuff avast did not but the problem still persists. Evry while I get a mesage from avast saying it blocked some malicious URL so far every time it is in WIN32/ mainly svchost but I also got Wscript.exe

Any idea how to deal with this.

Thanks

Pondus · « **Reply #1 on:** November 24, 2010, 11:49:58 PM »

Quote

Been having problems for a while so decided to to install avast.

you did remove the antivirus you had before you installed avast ? as it is not smart to run more then one AV

can you post the malwarebytes scan log ?

try this

Kaspersky TDSSKiller
http://support.kaspersky.com/viruses/solutions?qid=208280684

did it work ?

Asyn · « **Reply #2 on:** November 24, 2010, 11:51:05 PM »

If you are on a 32bit system, run a boot time scan with avast.
asyn

fcanitrot · « **Reply #3 on:** December 02, 2010, 09:52:14 PM »

I did run a boot time scan but it did not fix the problem.

The situation is as follows.

Computer boots correctly.

Works fine and fast for a while.

I get a Malicious url in svchost.exe message.

After that the browser starts redirecting weirdly.

After a short while now I get another avast warning from svchost.

At some point I also get a windows error message saying that svchost,exe was unable to write to memory.

Computer gets progressivly slow until it completely crashes.

Heres my last mbam log:

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 5184

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

11/30/2010 3:32:18 PM
mbam-log-2010-11-30 (15-32-18).txt

Scan type: Quick scan
Objects scanned: 189583
Time elapsed: 35 minute(s), 45 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Asyn · « **Reply #4 on:** December 03, 2010, 07:37:58 AM »

Quote from: fcanitrot on December 02, 2010, 09:52:14 PM

Heres my last mbam log:

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 5184

The latest version of Mbam is 1.50. Please update to it.
Then update the database and run a full scan.
Post the log here.
asyn

Author Topic: Redirect search malware in svchost.exe (Read 3578 times)

fcanitrot

Redirect search malware in svchost.exe

Pondus

Re: Redirect search malware in svchost.exe

Asyn

Re: Redirect search malware in svchost.exe

fcanitrot

Re: Redirect search malware in svchost.exe

Asyn

Re: Redirect search malware in svchost.exe