BleepingComputer.com: Google Redirect Virus

Jump to content

Forum Rules

When posting your problem, do not run and post a ComboFix log. ComboFix is a tool that should only be run under the supervision of someone who has been trained in its use. Using it on your own can cause problems with your computer. Any posts containing CF Logs will be ignored.

To receive help, you should instead provide a detailed description of your problem, detailed word-for-word error messages that you are receiving, screenshots of strange behaviour, and your operating system. This information is much more useful to our helpers than a ComboFix log.

If you have not received help after three days, please post a link to your topic HERE.
Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

Google Redirect Virus Google Redirect Virus (urgent)

#1 User is offline   Monkey2000 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 5
  • Joined: 14-December 11

Posted 14 December 2011 - 05:44 AM

Hi Guys,

One of my clients currently have a google redirect error on there machine. We have run superantispyware, malwarebytes, tdsskiller, ccleaner. We have even rebuilt the desktop with the same virus inbeeded onto the hard drive.

I am currently running Combofix and i will add the log once it has run. Do you have any suggestions on how to get rid of this redirect virus?? An urgent reply would be most gratfull as our client needs there machine asap.

#2 User is offline   Monkey2000 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 5
  • Joined: 14-December 11

Posted 14 December 2011 - 08:13 AM

I have fixed my google redirct error. I am going to add the link that work and explain the best way to get rid of this virus

#3 User is offline   Monkey2000 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 5
  • Joined: 14-December 11

Posted 14 December 2011 - 08:33 AM

I went to the below link and what worked for two different client machines was the following.

http://www.brighthub.com/internet/security-privacy/articles/73919.aspx

download Rkill and TDSSKILLER onto a usb stick.

Reboot into safe mode with networking

Run Rkill - this will pinpoint the where the location of the virus might be.

Then after running RKILL run TDSSKILLER, this will pick on the infected file and remove/cure it.

This might require a reboot, if it does reboot back into safe mode with networking and test if google redirection has rectified itself.

(i dont know if im allowed to post this but it taken me 5 to 6 hours to find a solution) I hope this helps anyone

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users