Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

google redirect virus


  • Please log in to reply
1 reply to this topic

#1 lannie91

lannie91

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:02:08 AM

Posted 04 February 2010 - 12:47 PM

Hello, I am new to this site and am not really that computer savvy (although I try).
I have a virus which anytime I search in google I get normal search results but once i click on the link I get redirected to random sites.....
I have downloaded and tried malewarebytes, lavasoft ad-aware as well as an uptodate symantec antivirus.
Does anyone have any suggestions?!?
Thanks,
John

BC AdBot (Login to Remove)

 


#2 whiteac2k4

whiteac2k4

  • Members
  • 69 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:03:08 AM

Posted 04 February 2010 - 02:40 PM

Welcome to BC. Try this.

Go to Start > Control Panel > System > Hardware > Device Manager > View > Show Hidden Devices.
Scroll down to “Non-plug and Play Drivers” and click the plus icon to open those drivers.
Then search for “TDSSserv.sys”
Right click on it, and select “Disable”
Note: If you select Uninstall, it will install itself again when you reboot the system, so DON’T select Uninstall.
Restart your pc.
You can now update your Antirus/Malware/Rootkit softwares and the go.google rubbish will stop.
Its now up to the Anti-Virus/Malware/Spyware companies to make an effort to stop this, and not rely on simple basic home PC user’s like myself to save the world
In simple terms, TDSSserv.sys is a service/server redirecting all software updates to 127.0.0.1 (your own computer) so they won’t update

Update you Malwarebytes and run full scan. ComboFix is another great utility that will remove it. I would instruct you on how to use it but I am not allowed to. Hopefully a Moderator will chime in and do the instructing on Combofix.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users