|
|
|
|
| Author |
|
|
Evil Genius
|
My Web Browsers been hacked - redirected
I'm open for ideas from any IT guys or 'puter wizards out there
 The last week on a IBM Windows 7 PC machine using Explorer for web use, when I Google or Bing search a topic, 90% of the time I get re-directed to some other website trying to sell me something. So basically, I've got a virus or been hacked while doing a web search. I'm running the lastest Microsoft Security Essentials, and Malwarebytes Anti-Malware software and have done full deep scans on both, which come up empty for any trojan or other virus. Any ideas on what to do next, to get my Google and Search engine back and clean so I'm not re-directed to some other unwanted website? Thanks in advance.
__________________
Life is a big ocean to swim in. Wag more, bark less.
|
||
10-10-2012, 08:27 AM
|
|
|
The Unsettler
Join Date: Dec 2002
Location: Lantanna TX
Posts: 23,885
|
__________________
"I want my two dollars" "Goodbye and thanks for the fish" "Proud Member and Supporter of the YWL" "Brandon Won" |
||
|
10-10-2012, 08:40 AM
|
|
|
Evil Genius
|
oh this looks like it'll be fun to fix........
of course for me to google several options to download fix-it software, I got redirected dozens of times......... This is the best I could find for a cure. Redirection virus - Malwarebytes Forum Other Suggestions other than using software "Combofix", or "Farbar" like the above tech suggested to the other victim of the virus in the above link? Time to do a backup of the hard drive and go for broke me thinks.
__________________
Life is a big ocean to swim in. Wag more, bark less.
|
||
|
10-10-2012, 10:07 AM
|
|
|
Registered
Join Date: Jun 2001
Location: St. Louis Missouri
Posts: 1,454
|
I've used ComboFix successfully for a virus.
I thought running MSE and AntiMalwareBtyes I was safe. Good luck! It is always best to have an uninfected laptop for research and it usually takes a couple hours to figure out and permanently remove it. The redirect virus I had redirected everything related to removing the virus. Kind of ingenious but annoying when it happens. |
||
|
10-10-2012, 10:56 AM
|
|
|
Family Values
Join Date: Jun 2003
Location: Los Angeles, CA
Posts: 4,075
|
__________________
- Joe Necessity is the plea for every infringement of human freedom. It is the argument of tyrants; it is the creed of slaves. - William Pitt |
||
|
10-10-2012, 12:22 PM
|
|
|
canna change law physics
|
Quote:
__________________
James The pessimist complains about the wind; the optimist expects it to change; the engineer adjusts the sails.- William Arthur Ward (1921-1994) Red-beard for President, 2020 |
||
|
10-10-2012, 12:42 PM
|
|
|
|
Registered
|
You might try a few of these things:
If it's just a poisoned cache: 1. Click the Start logo 2. Click All Programs 3. Click Accessories 4. RIGHT-click on Command Prompt 5. Select Run As Administrator 6. In the command window type the following and then hit enter: ipconfig /flushdns 7. You should see the following confirmation: Windows IP Configuration Successfully flushed the DNS Resolver Cache. Restore to a point before hack: Click the Start button and in the "Search Programs and Files", type "System restore" The System Restore wizard will begin. Select a date before you had the problem. Follow the directions. I'd check to make sure the site didn't put in a proxy: I.E. Tools/Internet Options - Connections Tab LAN Settings: Make sure there isn't a proxy server listed. Reset I.E. to factory defaults (Beware, you will lose all your settings) Partial Nuke: Go to tools/Internet options. In the General tab/browsing history, select "delete". Uncheck "preserve favorite website data..." and select all others then "delete.". Full Tactical: Go to the advanced tab. At the bottom, there is the button to reset the program. If you've been ignoring those pesky Windows, Java, Adobe Reader, Flash or Quicktime updates for more than a week, I'd be very leery of that machine until the operating system could be reloaded. I'd avoid any finacial transaction or logging into anything that you want to remain secure. Some of the compromises coming through unpatched software may be visible but there are an equal number of invisible compromises used to steal data that you'll never see until you get a bill for a TV in Germany.
__________________
72 911T 2.4 MFI 2017 Escape SE 2.0 turbo 2020 Honda Civic Touring Sport 1.6 turbo 10' Madone 5.2/17' Lynskey ProCross |
||
|
10-10-2012, 12:56 PM
|
|
|
AutoBahned
|
who is your ISP?
|
||
|
10-10-2012, 12:57 PM
|
|
|
Registered
|
Check what your DNS servers are set to. Ipconfig /all
|
||
|
10-10-2012, 01:23 PM
|
|
|
Super Moderator
|
Yep. Redirect virus. HARD to get rid of.... Had it a few moths ago. ComboFix and others finally killed it. Disable/uninstall Java too...
__________________
Chris ---------------------------------------------- 1996 993 RS Replica 2023 KTM 890 Adventure R 1971 Norton 750 Commando Alcon Brake Kits |
||
|
10-10-2012, 02:00 PM
|
|
|
Evil Genius
|
Thanks all, especially Tharbert for the multi-prong approach.
No it's not just a poisoned cache. No I don't have any proxy's listed. Verizon is my ISP. ComboFix sounds like a scary proposition reading reviews of it. need to back up all my data then pull out all the stops. thanks all........it's beer-thirty here so not going to worry about it right now.
__________________
Life is a big ocean to swim in. Wag more, bark less.
|
||
|
10-10-2012, 03:12 PM
|
|
1982 Porsche 911SC 3.0L warmed over
1970/1982 Porsche 914-6/911SC 2.7 RS
Rust Rocket
Madone
1970 Porsche 911 S 
