Qsearch virus

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by sanny123, Nov 15, 2010.

  1. sanny123

    sanny123 Private E-2

    Hi
    Recently my system was infected with a Virus, which redirects IE to Qsearch page which looks like GOOGLE Page.

    This has blocked Task Manager,Run window and REGEDIT tools

    it normally lets me open Google page and search anything else, but if im trying to search for words as virus,cleaning,remove virus this closes the entire browser
    i tried with Mozilla,IE and K-meleon browsers !! results are same

    it has applied Administrative restrictions on opening admin tools in windows,
    due to which it will not let me install any programs such as spybot,stinger or any other programs as well....it just closes the installation window

    Can Anybody kindly tell me what VIRUS is this ???
     
    sanny123, Nov 15, 2010
    #1
  2. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Welcome to Major Geeks!

    Please download and run the below tool named Rkill (courtesy of BleepingComputer.com) which may help allow other programs to run.
    There are 4 different versions. If one of them won't run then download and try to run the other one.

    Vista and Win7 users need to right click and choose Run as Administrator

    You only need to get one of them to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.
    1. Rkill.exe
    2. Rkill.com
    3. Rkill.scr
    4. Rkill.pif
    Once you've gotten one of them to run then try to immediately run the following.


    Download and save the below to your PC (save it anywhere you can find it. The Desktop is fine). Then double click on it to run it.

    AVPFind.bat

    It should take a couple minutes to run. You will see a black command prompt window while it is running and it should close when it is finished. Once it finishes, attach the c:\avplog.txt file that is will hopefully create as long as the malware does not block the batch file from running. (See: HOW TO: Attach Items To Your Post )


    Now download and Run exeHelper
    • Please download exeHelper to your desktop.
    • Double-click on exeHelper.com to run the fix.
    • A black window should pop up, press any key to close once the fix is completed.
    • A log file named log.txt will be created in the directory where you ran exeHelper.com
    • Attach the log.txt file to your next message.
    Note: If the window shows a message that says "Error deleting file", please re-run the program before posting a log - and post the two logs together (they will both be in the one file).


    Also please try running the below online scan:

    http://www.superantispyware.com/onlinescan.html

    Reboot immediately after scanning if it finds and removes anything. Let me know if anything was found. See if you can save a log with it.


    Then try running these instructions: Using MGtools


    Attach the below logs when finished with all of the above:
    • C:\avplog.txt - from AVPfind
    • a log from online SAS scan if you could make one
    • log.txt - from exeHelper
    • C:\MGlogs.zip - from MGtools
    The C:\ assumes that drive C is you Windows boot drive. If you boot from another drive, then use the correct drive letter above.
     
    Kestrel13!, Nov 15, 2010
    #2
  3. sanny123

    sanny123 Private E-2

    Problem is it is not letting me to download any application
    nor install any application, as soon as install starts it will close the install window.

    I logged in safe mode too, same problem Task manager,regedit all are blocked now how to get rid of this, since i dont have standy by computer
    but internet works fine...

    unless i try to open online virus scanners or try to search about virus in google...it immediately closes the Browser window
     
    sanny123, Nov 15, 2010
    #3
  4. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Then you are just going to have to use another computer, download the tools we need to flash drive or disk and transfer them onto the sick PC. Without seeing logs from tools ran I cannot do anything to help you. :(
     
    Kestrel13!, Nov 15, 2010
    #4
  5. sanny123

    sanny123 Private E-2

    hey one of my freind told me..that we can take backup of C DRIVE and burn it onto a DVD drive. Later format and when we Reload from DVD, he says the Virus won't be transfered from a DVD, even if it was copied to DVD along with data

    is this true ? i could nt believe it...because virus is nothing but programs
     
    sanny123, Nov 15, 2010
    #5
  6. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    No... better to go along with what I suggested.. perhaps use said friend's PC to transfer tools we need to disk and get them onto your PC.
     
    Kestrel13!, Nov 15, 2010
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds