Warning

 

Close

Confirm Action

Are you sure you wish to do this?

Confirm Cancel
PSA
Member Login

Site Notices
Posted: 10/28/2010 10:44:46 AM EDT

So i have this virus. it redirects search engine results to dumb random stuff

It does this in both google and bing, and on IE and firefox both.

It also prevents me from opening up any tech support sites, or anti-virus downloads. i use spybot SD, and it can not find this one.


anyone??
Link Posted: 10/28/2010 10:55:30 AM EDT
rkill and malwarebytes.
Link Posted: 10/28/2010 10:56:29 AM EDT
damn that sucks.. what were you using for AV?
Link Posted: 10/28/2010 10:58:04 AM EDT
[Last Edit: 10/28/2010 11:02:00 AM EDT by mmajunkie]
Boot into Safemode and run scans from there. Hit F8 to boot into it.





ETA: Turn off system restore before you start anything.

Link Posted: 10/28/2010 10:58:52 AM EDT
internet options > connections > lan settings > uncheck everything

then do what everyone else has suggested.
Link Posted: 10/28/2010 11:40:17 AM EDT
[Last Edit: 10/28/2010 11:49:40 AM EDT by mattsd]
i have done all of the above.

no effect

actually rkill might have done the trick
Link Posted: 10/28/2010 11:41:12 AM EDT
[Last Edit: 10/28/2010 11:45:47 AM EDT by Lester_Burnham]
right here my good man:  http://support.kaspersky.com/viruses/solutions?qid=208280684

had a rootkit a while back that Malwarebytes, etc could not remove, TDSS killer was the only thing that worked.  had the same issues with redirecting internet searches.

another source (since you mentioned you can't go to tech support etc sites):  http://www.filecluster.com/downloads/TDSSKiller.html
Link Posted: 10/28/2010 11:41:12 AM EDT
Nuke it from orbit. It is the only way to be sure.
Link Posted: 10/28/2010 11:44:47 AM EDT
Originally Posted By SultanOfBrunei:
Nuke FDisk it from orbit. It is the only way to be sure.


FIFY
Link Posted: 10/28/2010 11:45:30 AM EDT



Originally Posted By Fat_McNasty:



Originally Posted By SultanOfBrunei:

Nuke FDisk it from orbit. It is the only way to be sure.




FIFY


Who the hell still uses fdisk?



 
Link Posted: 10/28/2010 11:47:51 AM EDT



FIFY.
Link Posted: 10/28/2010 11:55:17 AM EDT
Originally Posted By Lester_Burnham:
right here my good man:  http://support.kaspersky.com/viruses/solutions?qid=208280684

had a rootkit a while back that Malwarebytes, etc could not remove, TDSS killer was the only thing that worked.  had the same issues with redirecting internet searches.

another source (since you mentioned you can't go to tech support etc sites):  http://www.filecluster.com/downloads/TDSSKiller.html


What timing!!! My wifes computer is really dicked up...malwarebytes and AVG both show nothing wrong.

I'll try this as soon as I get home.

Link Posted: 10/28/2010 11:56:42 AM EDT
Originally Posted By Lester_Burnham:
right here my good man:  http://support.kaspersky.com/viruses/solutions?qid=208280684

had a rootkit a while back that Malwarebytes, etc could not remove, TDSS killer was the only thing that worked.  had the same issues with redirecting internet searches.

another source (since you mentioned you can't go to tech support etc sites):  http://www.filecluster.com/downloads/TDSSKiller.html


Just ran this utility.

found nothing...

goddammit


also macfags gtfo you are not helping  

Link Posted: 10/28/2010 12:03:58 PM EDT
[Last Edit: 10/28/2010 12:08:45 PM EDT by gazukull]
c:\windows\System32\drivers\etc\hosts



You need to boot into a live linux CD and kill the above file. It has re-directs in it.



When you relog back into windows, windows will recreate the file and you will be GTG.



You probably already removed the malware, but you just need to replace that file.



http://go.trendmicro.com/housecall7/HousecallLauncher.exe



You can run the above which may do it for you... but last time one of the chodes brought in a laptop, we had to nuke the hosts file with linux.
Link Posted: 10/28/2010 12:05:07 PM EDT



Originally Posted By mattsd:


i have done all of the above.



no effect



actually rkill might have done the trick


Rkill only killed the process, you still need to get rid of the infection.



 
Link Posted: 10/28/2010 12:12:12 PM EDT
Originally Posted By VACaver:
Originally Posted By Lester_Burnham:
right here my good man:  http://support.kaspersky.com/viruses/solutions?qid=208280684

had a rootkit a while back that Malwarebytes, etc could not remove, TDSS killer was the only thing that worked.  had the same issues with redirecting internet searches.

another source (since you mentioned you can't go to tech support etc sites):  http://www.filecluster.com/downloads/TDSSKiller.html


What timing!!! My wifes computer is really dicked up...malwarebytes and AVG both show nothing wrong.

I'll try this as soon as I get home.



yeah there is some bad shit going around, I took mine to a local place, spent $150, had to take it back 2 times because it still had issues.  finally ended up fixing it myself with the TDSS Killer and it's been fine ever since.
Link Posted: 10/28/2010 12:15:02 PM EDT
Originally Posted By Subnet:

Originally Posted By Fat_McNasty:
Originally Posted By SultanOfBrunei:
Nuke FDisk it from orbit. It is the only way to be sure.


FIFY

Who the hell still uses fdisk?
 


old school haxors! YO!

format didnt sound right..
Top Top