Problems with Google and Browser Hijacking

Welcome to Major Geeks!

Download TDSSKiller from Kaspersky to your directly onto your Desktop

• Now double click the TDSSkiller.exe file to run it ( if using Vista or Windows 7 do not double click on it but rather, right click and select Run As Administrartor. )
• If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123tdk.com).
  • If you do not see the file extension, please refer to: How to view hidden, system files & folders!
• Allow the application to run if prompted by Windows or any security programs you have installed
• It will start the scan and run rather quickly and will notify you of whether anything is found or not.
• Follow the instructions to delete/quarantine if asks you what to do when if finds something.
• Whether an infection is found or not, a log file should be created on your C: drive ( or whatever drive you boot from) in the root folder named something like TDSSKiller.2.1.1_27.12.2009_14.17.04_log.txt which is based on the program version # and date and time run. Please attach this log to your next reply. (See: HOW TO: Attach Items To Your Post )

Are you still being redirected after reboot?

Did you setup the below proxyserver?
ProxyServer REG_SZ 68.234.11.156:52931

 

That log is from 8 days ago. I want to see a log from a current scan to be sure of your status now.

Please answer my question abou the proxy server. If you did not set it up, please see the below to remove it.

Proxy Server - Changing Settings


I'll be back tomorrow evening. Time for some sleep now.

 

No your logs are clean. However if you had your network configuration locked or registry changes being intercepted/blocked by any protection software, it could come back after a reboot due to your protection software not recognizing the change that you made as being valid.

Are you currently having any other malware problems?