MajorGeeks Support Forums

Go Back   MajorGeeks Support Forums > ----------= PC, Desktop and Laptop Support =---------- > Malware Removal
Register FAQ Members List Calendar Casino Mark Forums Read

Malware Removal Malware removal forum. Please see the READ ME FIRST thread before you post. Forum is staffed by a small number of volunteers, please be patient.


Closed Thread
 
Thread Tools Display Modes
  #1  
Old 12-02-12, 19:20
jenandlaw jenandlaw is offline
Private First Class
 
Join Date: Mar 2010
Posts: 71
Thanks: 6
Thanked 1 Time in 1 Post
Default Can't get rid of google redirect...

I'm getting this ridiculously-persistent Google redirect in Firefox and Chrome. I don't use IE so I'm not sure about that one. It only happens about once every four or five searches. I'll get sent to a completely different page. If I hit the back button, I'll get the page I wanted, but it seems like the original redirect happens so fast I never even see the page I wanted before it forwards me to another page.

I believe, but I'm not certain, that it started a few weeks ago when I had to redownload drivers to get my iTunes to play cds.

Attaching the logs as requested.
Attached Files
File Type: txt RKreport[1]_S_11292012_02d2222.txt (2.6 KB, 3 views)
File Type: txt mbam-log-2012-11-29 (22-25-25).txt (1.9 KB, 2 views)
File Type: txt TDSSKiller.2.8.15.0_30.11.2012_07.29.07_log.txt (132.0 KB, 1 views)
File Type: log HitmanPro_20121130_0814.log (1.6 KB, 2 views)
File Type: zip MGlogs.zip (398.1 KB, 4 views)
Sponsored links
  #2  
Old 12-02-12, 20:38
jenandlaw jenandlaw is offline
Private First Class
 
Join Date: Mar 2010
Posts: 71
Thanks: 6
Thanked 1 Time in 1 Post
Default Re: Can't get rid of google redirect...

I have been trying to verify that it is still redirecting, and although my husband says it did it twice to him this morning, it hasn't happened to me yet. He rebooted and maybe that was all that it needed after all the scans. I'm temporarily going to say this issue is solved. If it happens again, I will bump the thread and get back in line. Thanks!
  #3  
Old 12-03-12, 17:54
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 29,311
Thanks: 1,044
Thanked 3,820 Times in 3,718 Posts
Default Re: Can't get rid of google redirect...

Re run Hitman and have it delete Potential Unwanted Programs

Fix items using RogueKiller.

Double-click RogueKiller.exe to run. (Vista/7 right-click and select Run as Administrator)
When it opens, press the Scan button
Now click the Registry tab and locate these 1 detection:
  • [STARTUP][SUSP PATH] _uninst_26864385.lnk @andyandjenni : C:\Users\andyandjenni\AppData\Local\Temp\_uninst_26864385.bat -> FOUND

Place a checkmark each of these items, leave the others unchecked.
Now press the Delete button.
When it is finished, there will be a log on your desktop called: RKreport[2].txt
Attach RKreport[2].txt to your next message. (How to attach)
Reboot the machine.

Delete this file.
C:\Users\andyandjenni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_26864385.lnk

Everything running okay still?
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
  #4  
Old 12-03-12, 22:26
jenandlaw jenandlaw is offline
Private First Class
 
Join Date: Mar 2010
Posts: 71
Thanks: 6
Thanked 1 Time in 1 Post
Default Re: Can't get rid of google redirect...

So glad you replied. It's not gone. I got a redirect today while trying to go to Youtube. Sent me to some wackadoodle russian credit card site.

Attached are two logs. When I right clicked on Roguekiller it started scanning right away. Then I selected the registry tab and scanned. I made sure it only had a checkmark by the line you stated, but when it deleted it said it deleted three.

After rebooting that file you asked me to delete isn't there.
Attached Files
File Type: txt RKreport[2]_S_12032012_02d2053.txt (2.8 KB, 5 views)
File Type: txt RKreport[3]_D_12032012_02d2055.txt (3.0 KB, 2 views)
File Type: log HitmanPro_20121203_2050.log (1.7 KB, 2 views)
  #5  
Old 12-04-12, 05:53
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 29,311
Thanks: 1,044
Thanked 3,820 Times in 3,718 Posts
Default Re: Can't get rid of google redirect...

Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Attach JRT.txt to your next message.



Run this and attach the results.

Using ESET's Online Scanner
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
Sponsored links
  #6  
Old 12-04-12, 10:21
jenandlaw jenandlaw is offline
Private First Class
 
Join Date: Mar 2010
Posts: 71
Thanks: 6
Thanked 1 Time in 1 Post
Default Re: Can't get rid of google redirect...

Just to be clear, you want me to run the Junkware Removal Tool AND the Eset Online Scanner, correct?
  #7  
Old 12-04-12, 18:03
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 29,311
Thanks: 1,044
Thanked 3,820 Times in 3,718 Posts
Default Re: Can't get rid of google redirect...

Oh yes.
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
  #8  
Old 12-05-12, 10:16
jenandlaw jenandlaw is offline
Private First Class
 
Join Date: Mar 2010
Posts: 71
Thanks: 6
Thanked 1 Time in 1 Post
Default Re: Can't get rid of google redirect...

Sorry for the delay. Took hours to run last night. Eset found something. Wonder why it didn't find it the first time I ran Eset Online Scanner? Oh well....

Thanks, Kestrel.
Attached Files
File Type: txt JRT.txt (1.6 KB, 10 views)
File Type: txt ESETScan.txt (201 Bytes, 2 views)
  #9  
Old 12-05-12, 17:39
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 29,311
Thanks: 1,044
Thanked 3,820 Times in 3,718 Posts
Default Re: Can't get rid of google redirect...

ESET didn't find anything bad anyway.

Download OTL to your desktop.
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Vista and Windows 7 users Right-click OTL and choose Run as Administrator)
  • When the window appears, underneath Output at the top change it to Minimal Output.
  • Check the boxes beside LOP Check and Purity Check.
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.

When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.

Attach both of these logs into your next reply.
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
  #10  
Old 12-05-12, 22:54
jenandlaw jenandlaw is offline
Private First Class
 
Join Date: Mar 2010
Posts: 71
Thanks: 6
Thanked 1 Time in 1 Post
Default Re: Can't get rid of google redirect...

See attached.
Attached Files
File Type: txt Extras.Txt (87.7 KB, 1 views)
File Type: txt OTL.Txt (118.9 KB, 3 views)
Sponsored links
  #11  
Old 12-06-12, 17:42
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 29,311
Thanks: 1,044
Thanked 3,820 Times in 3,718 Posts
Default Re: Can't get rid of google redirect...

This only occurs in Firefox and Chrome, right?
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
  #12  
Old 12-06-12, 18:16
jenandlaw jenandlaw is offline
Private First Class
 
Join Date: Mar 2010
Posts: 71
Thanks: 6
Thanked 1 Time in 1 Post
Default Re: Can't get rid of google redirect...

I haven't tried it in I.E. yet since I never use it. Will try tonight.

Do I need to just buy a new laptop and burn this one?
  #13  
Old 12-06-12, 18:18
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 29,311
Thanks: 1,044
Thanked 3,820 Times in 3,718 Posts
Default Re: Can't get rid of google redirect...

Quote:
Do I need to just buy a new laptop and burn this one?
No!!!

Let me know about IE, ok? Then we can make a plan of action from there. Getting late for me here and I'm about to splurge pretty soon. But will be about tomorrow as soon as poss!
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
  #14  
Old 12-06-12, 22:09
jenandlaw jenandlaw is offline
Private First Class
 
Join Date: Mar 2010
Posts: 71
Thanks: 6
Thanked 1 Time in 1 Post
Default Re: Can't get rid of google redirect...

Surfed a little tonight using I.E. and didn't have any redirects. Switched over to Firefox for something and immediately got the redirect to that russian credit card company, ANNNNNNDDDD this time, AVG popped up with a "threat detected" message. See attached. Does that help?
Attached Images
File Type: jpg trojan.jpg (47.1 KB, 5 views)
  #15  
Old 12-06-12, 23:12
jenandlaw jenandlaw is offline
Private First Class
 
Join Date: Mar 2010
Posts: 71
Thanks: 6
Thanked 1 Time in 1 Post
Default Re: Can't get rid of google redirect...

FYI shortly after posting the previous message i got the blue screen. Then got it twice more. Start the computer. It starts booting up for about 2 mins then blue screen.
Sponsored links
  #16  
Old 12-07-12, 06:38
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 29,311
Thanks: 1,044
Thanked 3,820 Times in 3,718 Posts
Default Re: Can't get rid of google redirect...

We are going to be uninstalling your old version of FireFox and installing the new version. (Except we will be using Revo Uninstaller to uninstall) So do the below to save bookmarks:
  • Run FireFox and click Bookmarks.
  • Then select Organize Bootmarks.
  • Then on the next window click File and then select Export. Save the bookmarks.html file to your Desktop for later use in importing.
Now download and save the installer for the current version of FireFox but DO NOT install it yet. Get it here: Mozilla FireFox

You will need exit FireFox now and use Internet Explorer to continue with the below until we reinstall FireFox.

Start by uninstalling FireFox and then reboot. Do not skip the reboot.
After reboot, delete the below folders:
  • C:\Program Files\Mozilla Firefox
  • C:\users\UserAccount\AppData\Roaming\Mozilla\Firefox

where UserAccount is the actual user account name being used.

Now reinstall FireFox from the file previously downloaded.
Import your bookmarks file. (similar process to exporting).

Any better?
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
  #17  
Old 12-07-12, 23:02
jenandlaw jenandlaw is offline
Private First Class
 
Join Date: Mar 2010
Posts: 71
Thanks: 6
Thanked 1 Time in 1 Post
Default Re: Can't get rid of google redirect...

Oh my. Things going downhill. Couldn't get past the blue screen that happens when I login. Finally got it to boot in safe mode. Ran malwarebytes because I didn't know what else to do. See attached log. Then did as you suggested in your last post. Haven't reinstalled Firefox. Don't have to have it. Tried to login without safe mode, keep getting the blue screen. See attached screenshots of what errors I'm getting.

Just got the redirect in "safe mode with networking" when I got online to post this using Chrome.
Attached Images
File Type: jpg image (1).jpg (103.1 KB, 3 views)
File Type: jpg image (2).jpg (97.3 KB, 4 views)
File Type: jpg image (3).jpg (88.1 KB, 6 views)
Attached Files
File Type: txt mbam-log-2012-12-06 (22-04-32).txt (4.0 KB, 3 views)
  #18  
Old 12-07-12, 23:04
jenandlaw jenandlaw is offline
Private First Class
 
Join Date: Mar 2010
Posts: 71
Thanks: 6
Thanked 1 Time in 1 Post
Default Re: Can't get rid of google redirect...

more screenshots
Attached Images
File Type: jpg image (4).jpg (101.9 KB, 5 views)
File Type: jpg image (5).jpg (95.7 KB, 5 views)
File Type: jpg image (6).jpg (99.8 KB, 8 views)
  #19  
Old 12-08-12, 17:00
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 29,311
Thanks: 1,044
Thanked 3,820 Times in 3,718 Posts
Default Re: Can't get rid of google redirect...

Please download Combofix to your desktop. Please refer to these instructions prior to running. Attach log once done.
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
  #20  
Old 12-08-12, 19:57
jenandlaw jenandlaw is offline
Private First Class
 
Join Date: Mar 2010
Posts: 71
Thanks: 6
Thanked 1 Time in 1 Post
Default Re: Can't get rid of google redirect...

Since my last post, I couldn't get the computer to boot in anything but safe mode. I would get blue screens immediately. I had about decided that I was going to have to order a new hard drive and start all over. I went to try to find out what kind of hard drive I have (sata or IDE) and device manager wouldn't show me any hard drives. I googled that, and found a reference that some TDSS rootkits would do that, and to run a specific Kaspersky scan. I did, but it didn't save a log so I don't know what it did. Afterwards, I could boot normally again and haven't had the blue screen since.

I'm sorry I did this unsupervised, but I really didn't know what to do and only getting my next step once a day is dragging this process out so badly and I need my computer so desperately. Please don't misunderstand, I'm very grateful for the help.

Anyway, I tell you that in case it affects your instructions.
Sponsored links
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Google redirect virus but only in google chrome... zdavies Malware Removal 5 08-12-11 16:11
Google Chrome/Firefox google search redirect virus help. time_warrior66 Malware Removal 3 07-12-11 12:54
Google Redirect malware in Google Chrome browser only zicozak Malware Removal 10 04-05-11 21:59
Google redirect chinapilot Malware Removal 9 10-20-10 16:00
Google Redirect need Help RMFire Malware Removal 1 11-29-09 22:08


All times are GMT -5. The time now is 18:26.

MajorGeeks.Com Menu

MajorGeeks.Com \ All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ NEW! PC Games \ System Tools \ Macintosh \ Demonews.Com \ Top Downloads

MajorGeeks.Com \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds


All content Copyright MajorGeeks.com source code Powered by vBulletin® Version 3.8.4
Copyright © 2009 vBulletin Solutions, Inc. All rights reserved.
Ad Management by RedTyger