Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


Congratulations you are Today's Winner HiJack

  • Please log in to reply
2 replies to this topic

#1 soliveto


  • Members
  • 2 posts
  • Local time:05:16 PM

Posted 02 February 2012 - 07:02 PM

Hi, I'm hoping one of you experts might be able to help a helpdesk tech with a malware issue that has got me stumped. When visiting focusonthefamily.com in the chrome web browser I get redirected to hxxp://surveytakeonline.com/d/f1o9c74551 where there is a popup congratulating me on being today's washington winner and then the page has some "winner" links to click. Most other urls seem fine and when I try to go to focusonthefamily.com in IE it works fine as well...go figure. I have run three anti-malware apps and none seems to get it. (Malwarebytes, superantispyware, trend micro). I have also googled the bad site and messages to no avail.

Edited by Budapest, 02 February 2012 - 07:08 PM.
Link disabled

BC AdBot (Login to Remove)


#2 narenxp


  • BC Advisor
  • 16,371 posts
  • Gender:Male
  • Location:India
  • Local time:05:16 PM

Posted 02 February 2012 - 11:34 PM



Install,update and run a full scan

Post the clean log



Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report

Please download GMER from here(doesnot work on 64 bit OS)


Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.



Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 soliveto

  • Topic Starter

  • Members
  • 2 posts
  • Local time:05:16 PM

Posted 03 February 2012 - 03:02 PM

Ouch! That is a lot of computer and scanning and work and time. I have already spent much time in scanning. I would love to continue the quest to find a solution. I took the pressure off myself by giving the user a new system. I'll try to look into this more next week. Thanks for the help!

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users