Spyware, viruses, & security : Having Trouble Getting Rid of Google Redirect
Having Trouble Getting Rid of Google Redirect
by bauwau2u - 11/4/09 4:46 PMI am running Windows XP and using Internet Explorer. Have downloaded Malwarebytes Anti-Malware and SuperAntiSpyware, and run them both. Also ran ASquaredFree. Quarantined what was found, but still have the redirect virus (not all google searches get redirected).
I am not a high tech person but can follow fairly straight-forward instructions. Am a bit intimidated by what I have read on some of the other sites with posting logs. I would appreciate suggestions or to be pointed to the right place to try to get rid of this.
Also curious if I can change my browser (e.g.from IE to Safari) to solve the problem or whether I really have to fix the guts of the computer system to fix this.
Can you see....
by Marianna Schmudlach
- 11/4/09 6:33 PM
In reply to: Having Trouble Getting Rid of Google Redirect by bauwau2u
1. Select Show Hidden Devices under Hardware Device Manager in your Windows Control Panel.
2. Search for "TDSSserv.sys" right click Disable. Do not select Uninstall otherwise the infection will reappear once the computer is restarted.
3. Reboot the pc.
Update your Anti Virus software and AntiMalware program and run again a scan.
Is the "redirection" now gone?
Google Redirect - TDSSserv.sys
by bauwau2u - 11/4/09 7:28 PM In reply to: Can you see.... by Marianna Schmudlach
Hi,
Thanks for getting back so quickly.
I got as far as Control Panel>System>Hardware>Device Manager> then View and Show Hidden Devices. I opened up all the '+' but I did not see anything that looked like TDSSserv.sys there (none of the items were in a format with a ".sys" ending). Am I in the right place or was I supposed to do a different search?
-Amy
Right......
by Marianna Schmudlach - 11/5/09 7:41 AM
In reply to: Google Redirect - TDSSserv.sys by bauwau2u
Pls. scan with:
http://www.eset.eu/eos/eset-online-scanner
Did you UPDATE Malwarebytes AntiMalware and ran a FULL scan?
Re-ran the scans but still getting redirected
by bauwau2u - 11/6/09 2:35 AM In reply to: Right...... by Marianna Schmudlach
I uninstalled the Malwarebytes Anti-Malware and downloaded, updated, and ran the full scan (previously had run the quick scan). Came up clean. I also uninstalled, and then downloaded superantispyware free edition. This showed tracking cookies, which were then removed.
I then ran Eset Online Scan (but not from the link you provided since it was in czech - I ran it from their website. That showed nothing.
But I am still getting redirected.
Then I would suggest...
by Marianna Schmudlach - 11/6/09 6:38 AM
In reply to: Re-ran the scans but still getting redirected by bauwau2u
downloading HJT from here:
http://free.antivirus.com/hijackthis/
Trend Micro HijackThis is a free utility that generates an in depth report of registry and file settings from your computer. HijackThis makes no separation between safe and unsafe settings in its scan results giving you the ability to selectively remove items from your machine. In addition to this scan and remove capability HijackThis comes with several tools useful in manually removing malware from a computer.
http://www.malwarebytes.org/forums/index.php?s=3bc54148eb5885f4b8c7295fa434fb79&showforum=7
http://www.bleepingcomputer.com/forums/forum22.html
http://www.geekstogo.com/forum/index.php?s=e39ad7e237ae123f43517316e44bf4bf&showforum=37
http://www.spywareinfoforum.com/index.php?s=5028cc67f4e5562d636b9a77c9017749&showforum=18
http://forum.gladiator-antivirus.com/
Good Luck !
IMPORTANT: HijackThis does not determine what is good or bad. Do not make any changes to your computer settings unless you are an expert computer user.
Run a scan and post your log at ONE of the following HJT forums:
On to the next step...
by bauwau2u - 11/6/09 7:48 AM In reply to: Then I would suggest... by Marianna Schmudlach
Thank you for your time and advice, including warnings not to delete anything without expert instruction. I took a look at those sites even though it looks complicated and I will try to muddle through following instructions closely. I appreciate the effort spent trying to help those of us who are still knuckleheads when it comes to this stuff.
Do NOT worry.....
by Marianna Schmudlach - 11/6/09 8:04 AM
In reply to: On to the next step... by bauwau2u
The helpers at the HJT forums know what they are doing and will tell you exactly what to do.
You Are Very Welcome.
| Forum legend: | |
 |
Locked thread |
 |
Moderator |
 |
CNET staff |
 |
Samsung staff |
 |
Norton Authorized Support team |
 |
AVG staff |
 |
Windows Outreach team |
 |
Dell staff |
 |
Intel staff |
