Google Redirect - HELP!

Arts & Entertainment, Computing, Science & Technology

Moderator: Staff

Post Reply
Crystal
Prolific
Posts: 1997
Joined: Mon Apr 21, 2008 5:55 pm
Location: Southampton, UK
Contact:

Google Redirect - HELP!

Post by Crystal » Thu Aug 20, 2009 8:21 pm

A friend is having some issues with a virus which redirects his browser (IE8 & Firefox) to some dodgy search sites whenever he uses Google. I believe it is known as the Google Redirect Virus. There is a fix which we have tried but it doesn't seem to work. Nothing does! Tried every malware checker / anti virus out there and nothing is shifting it. Anyone got any ideas, or had any experience of this themselves?

redfireant3
Prolific
Posts: 2414
Joined: Fri Aug 06, 2004 11:16 pm
Location: Tampa, FL USA
Contact:

Re: Google Redirect - HELP!

Post by redfireant3 » Thu Aug 20, 2009 11:08 pm

reformat

dox
Prolific
Posts: 18732
Joined: Tue Apr 29, 2003 2:20 am
Location: Canada
Contact:

Re: Google Redirect - HELP!

Post by dox » Thu Aug 20, 2009 11:16 pm

You can't trust a PC once infected: reformat.

Crystal
Prolific
Posts: 1997
Joined: Mon Apr 21, 2008 5:55 pm
Location: Southampton, UK
Contact:

Re: Google Redirect - HELP!

Post by Crystal » Thu Aug 20, 2009 11:27 pm

Was hoping to avoid that although I know it's for the best :cry:

Oh well....

Image

redfireant3
Prolific
Posts: 2414
Joined: Fri Aug 06, 2004 11:16 pm
Location: Tampa, FL USA
Contact:

Re: Google Redirect - HELP!

Post by redfireant3 » Fri Aug 21, 2009 12:40 am

no seriously did your "friend" just uninstall and reinstall the browser? its been so long id just use virtualbox and work in that.

Cobra
Prolific
Posts: 1442
Joined: Thu Jun 07, 2007 5:46 pm
Location: Arizona

Re: Google Redirect - HELP!

Post by Cobra » Fri Aug 21, 2009 1:04 am

I have a lot of experience in expunging viruses, spyware and malware. Reloading the OS may not be necessary. If you decide to try some additional possible solutions before formatting, let me know.

P.S. Is it a Windows XP or Vista environment?

Crystal
Prolific
Posts: 1997
Joined: Mon Apr 21, 2008 5:55 pm
Location: Southampton, UK
Contact:

Re: Google Redirect - HELP!

Post by Crystal » Fri Aug 21, 2009 1:19 am

It's vista :twisted:

I don't think he has tried uninstalling the browsers although that's something to try I guess.

The system seems to be clean apart from this issue with Google. There is a fix called "Gooredfix" which should apparently solve the problem, but when he runs it it just comes up with a notepad log with nothing really useful on it. The instructions for the fix seem to imply that there are options to be clicked but we can't find those. I've even run it myself and unless I'm a complete tard it's definately not working.

I've had him run all the usual stuff including Combofix, Vundofix, Hijackthis blah blah blah. Crap cleaner, Superantispyware, AVG, Malbytes etc etc. You name it we've run it.

The issue isn't just with google either - it's Yahoo, Bing etc aswell.

If you fix this Cobra I'll let you win at chess :wink:

ps. Not heard of virtualbox - i'll have to look that one up!

billflu
Prolific
Posts: 3695
Joined: Thu Dec 11, 2003 1:08 am
Location: MA
Contact:

Re: Google Redirect - HELP!

Post by billflu » Fri Aug 21, 2009 1:26 am

Check the hosts file.

Crystal
Prolific
Posts: 1997
Joined: Mon Apr 21, 2008 5:55 pm
Location: Southampton, UK
Contact:

Re: Google Redirect - HELP!

Post by Crystal » Fri Aug 21, 2009 1:27 am

Which one Billflu?

Cobra
Prolific
Posts: 1442
Joined: Thu Jun 07, 2007 5:46 pm
Location: Arizona

Re: Google Redirect - HELP!

Post by Cobra » Fri Aug 21, 2009 2:06 am

In the following folder you should see the hosts file: C:\WINDOWS\system32\drivers\etc

Open in with text editor (Notepad/Worpad) and look for any suspicious entries.

Cobra
Prolific
Posts: 1442
Joined: Thu Jun 07, 2007 5:46 pm
Location: Arizona

Re: Google Redirect - HELP!

Post by Cobra » Fri Aug 21, 2009 2:08 am

Crystal wrote:There is a fix called "Gooredfix" which should apparently solve the problem, but when he runs it it just comes up with a notepad log with nothing really useful on it.
Can you post the generated log file here. You can use the
tags if you want.

Crystal
Prolific
Posts: 1997
Joined: Mon Apr 21, 2008 5:55 pm
Location: Southampton, UK
Contact:

Re: Google Redirect - HELP!

Post by Crystal » Fri Aug 21, 2009 9:26 am

Will grab it this afternoon off him and post it up! Watch this space...in meantime will work on suspicious entries in drivers folder! Thanks all :D

dox
Prolific
Posts: 18732
Joined: Tue Apr 29, 2003 2:20 am
Location: Canada
Contact:

Re: Google Redirect - HELP!

Post by dox » Fri Aug 21, 2009 10:10 am

dox wrote:You can't trust a PC once infected: reformat.
Trying to "fix" it is only going to give you trouble down the road and is a waste of time, there's a high chance that you're using a canned solution to try to fix something that has been morphed anyway - you don't know what kind of payload was delivered!

Crystal
Prolific
Posts: 1997
Joined: Mon Apr 21, 2008 5:55 pm
Location: Southampton, UK
Contact:

Re: Google Redirect - HELP!

Post by Crystal » Sat Aug 22, 2009 8:31 pm

Thanks to everyone for their support but fortunately we lost the battle to save the operating system as it was.

We uninstalled Vista and went back to XP at 8pm this evening. Long live XP. =D>

Post Reply