Win32:Malware-gen, Google search results redirect

[blakewest]

Please see attachment

[essexboy]

Could you download and run the MSFixit from here please http://support.microsoft.com/kb/299357

This will reset the TCPIP parameters, as all the reg entries are good and the files are present 

[blakewest]

Can I just run the command from the KB article?

netsh int ip reset c:\resetlog.txt

Also, do you need to see the logfile afterwards?

[essexboy]

Yes you can do that

[blakewest]

TCP/IP still not working. See resetlog.txt.

Here is the exact error I get.

Windows IP Configuration
An Internal error occured: The request is not supported.
Please contact Microsoft Product Support Services for further help.

However, I did manage to get recovery console installed without TCP/IP working by following some instructions on the Combofix user guide page. Combofix ran afterwards and I have attached the log from that.

[essexboy]

I have just been pointed to a similar situation where CookieGal was working - so I have pinched a batch file from her to look at all associted registry entries

Go to Start - Run and copy and paste the following:

regedit /e C:\look.txt "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services"

You won't see anything happen and it will only take a second. You will find the report it creates at C:\look.txt. Please open it in Notepad and then zip it and upload the zipped file to mediafire and post the sharing link

[blakewest]

http://www.mediafire.com/?s9ie4butuzzwu8c

[essexboy]

Ta will take me a while to run through this

[blakewest]

I did not have a Windows XP installation disc, but I have a friend who does. Could I use this disc to do a repair on the OS and fix the TCP/IP issue?

[essexboy]

Yes you could run a repair install - details here  http://www.geekstogo.com/forum/topic/138-how-to-repair-windows-xp/

It would definitely be faster.. I am about halfway through decoding the hex files now

[blakewest]

If I do perform a repair, and assuming it fixes my TCP/IP problem, what should I do immediately afterward in terms of scans or pulling updates from Microsoft?

I still have OTL, malwarebytes, and the avast malware tool on the machine.

Thanks!

[essexboy]

Prior to doing the repair download the latest copy of your AV to the desktop
After the repair and before you update the system install said AV
You will need to get the latest updates from MS, the number required will depend on the age of the CD

[blakewest]

Thanks. I should be able to do this tonight and I will report back with results.

[DonZ63]

You might give this "FixIT" a try since you are planning to do a repair installation. It has worked for me in the past. It will repair Winsock issues.

http://support.microsoft.com/kb/811259

[essexboy]

Good ploy that I have the entire centre installed on my system just in case
http://fileforum.betanews.com/detail/Microsoft-Fix-it-Center/1271432341/1