Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Redirect Problem


  • Please log in to reply
3 replies to this topic

#1 Jirvine

Jirvine

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 13 April 2011 - 01:05 PM

Last night I noticed that every time I changed the URL in my Firefox address bar,it redirected me to an irrelevant alternate site. Additionally, when using Google and selecting the URL for one of the results, again, I get redirected to an irrelevant alternate site.

Actions taken:

I ran a full scan with Malwarebytes (V)1.50.1.1100 last night. See results below.

Registry Data Items Infected:
HKEY_CLASSES_ROOT\regfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: (???????????) Good: (regedit.exe "%1") -> Quarantined and deleted successfully.

Files Infected:
c:\documents and settings\Dad\local settings\Temp\2657.tmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.

This morning, I continue to have the same problem with Google redirects.

I ran a quick scan with Malwarebytes (V)1.50.1.1100 this AM. See results below.

Registry Data Items Infected:
HKEY_CLASSES_ROOT\regfile\shell\open\command\(default) (Broken.OpenCommand)

A quick search online, via a clean computer indicates that the required fix actions are more complicated than your standard scan and quarantine actions, hence my post to Bleepingcomputer.com.

System specifics:

OS Name: Windows XP
Version 5.1.2600 (Service Pack 3)
Number of processors #1

Any and all advice is greatly appreciated.

BC AdBot (Login to Remove)

 


#2 coles1mom

coles1mom

  • Members
  • 212 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:31 PM

Posted 13 April 2011 - 08:27 PM

Hi Jirvine,

For google redirects http://www.bleepingcomputer.com/virus-removal/remove-tdss-tdl3-alureon-rootkit-using-tdsskiller

#3 Jirvine

Jirvine
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:01:31 PM

Posted 14 April 2011 - 12:52 AM

Hi Coles1mon

Thank You! for solving what was becoming a very annoying problem. I downloaded TDSSKiller as recommended, scanned my PC and removed the rootkit identified during the system scan.

Everything seems to be back to normal.

Thanks again!

#4 coles1mom

coles1mom

  • Members
  • 212 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:31 PM

Posted 14 April 2011 - 07:00 AM

You are very welcome. You may want to rescan with malwarebytes to check for any leftovers.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users