Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Scour Redirect Virus/Malware


  • Please log in to reply
5 replies to this topic

#1 CousinWalter

CousinWalter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:17 AM

Posted 17 June 2011 - 02:41 PM

Hello. This is my first time posting. I will include as much info as I can.

I have been infected with what appears to be a scour redirect virus. Anytime I conduct a search on google and click on a results link, I am redirected to a sight that is loosely related to my search but obviously not my intended destination.

I have run symantec antivirus and malwarebytes to solve the problem but to know avail. Malware bytes has found the following files:
jar_cache11694.tmp and
mb060509mlkpc06509.exe

I have attemped to remove the files but the problem of redirecting google searches continues to persist.

symantec antivirus has also found the jar_cache11694.tmp file but not the .exe file. Again this conitnues to not solve the problem.

Also, System Details:
Windows Vista Ultimate (with service pack 2)
Dell Inspiron M1710
32bit operating system

Thank you for any help you can provide.

Edited by hamluis, 17 June 2011 - 02:58 PM.
Moved from Vista to Am I Infected.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 AM

Posted 17 June 2011 - 03:54 PM

Hello, Please follow our Removal Guide here How to remove Google Redirects .
After reading how the malware is misleading you ...
You will move to the Automated Removal Instructions

A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
Copy and paste the contents of that file in your next reply.


Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal mode and click Update tab, select Check for Updates,when done
click Scanner tab,select Quick scan and scan (normal mode).
After scan click Remove Selected, Post new scan log and Reboot into normal mode.

Please ask any needed questions,post logs and Let us know how the PC is running now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 CousinWalter

CousinWalter
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:17 AM

Posted 18 June 2011 - 01:19 PM

I cannot get TDSSKiller to run even after renaming it. It will ask me if I want to run the program and then I will click "run" and then nothing happens.

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 AM

Posted 18 June 2011 - 02:51 PM

If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. [color=green]In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.

OR
Run TDSSKiller from Command Prompt

Use the following command to scan the PC with a detailed log written into the file report.txt (created in the TDSSKiller.exe utility folder):
Open Command Prompt in XP = click Start >> Run,type cmd
copy and paste this at the flashing cursor and hit Enter

TDSSKiller.exe -l report.txt
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 CousinWalter

CousinWalter
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:17 AM

Posted 18 June 2011 - 11:16 PM

I have downloaded TDSSKiller as "gamezit.com" and tried running it from my desktop and command prompt. Nothing happens after I right click on the icon and select open or after trying to execute it in command prompt.

Also, I have tried the same just with TDSSKiller.exe and when in command prompt also nothing happens.

Thanks again for your assistance.

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 AM

Posted 19 June 2011 - 11:42 AM

Try this http://forum.kaspersky.com/index.php?act=attach&type=post&id=208006
from Normlal or safe mode if needed.

YOu also may need to right click on your desktop icon and selecy "Run as Administrator"

Edited by boopme, 19 June 2011 - 11:43 AM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users