My attamepts so far...
by Willy - 12/22/09 5:58 AM
In Reply to: I have the same issue. by blur57
The virus can be one of the variants of vundo and/or just google redirect. Its important to know that as it will take various attempts to remove it to be successful. So far, I have found some but yet it still infects my systems. This is why I mention beforehand to get the right removal tool and/or manual method. The last resort is of course, a system OS reload, fresh reload. Your AV pgms. can hit and remove the virus but it comes back. Its important to trun-off the system restore feature. Save any critial data you want, but do a manual direct save, don't do a load drive or similar if and when possible, otherwise when you return data, you may re-infect again a fresh reload. I have found, if you cut&paste the search result link say like google, the actual link(lower section) will not allow the redirect to grab hold(so far). If you see a web page other than the googled supplied(proper one) you have a nonsense response(annoyance) for now BUT don't click on anything, in fact kill that webpage and start the browser again. It is very important you don't do an banking online or financial services until the problem is entirely resolved(you've been warned).
Most removal tools deal with a specific infection so if you get any hits by your AV, note it down. While, I mention vundo, that's a generic term for such infections though it maybe another name. Since, some AV pgms. don't even see a new infection(type/variant) its quite possible it will be missed. Then use as many AV pgms as possible and/or tools in dealing with the virus. These should include AV pgms., rootkits, removal tools, spyware, malware and/or hijackthis pgm. as well. If you have any toolbars on your browser, remove them for now or disable. The virus can rehatch as it hides or uses different names to do its tasks. Check the task manager for any so-called "redirect" process at work, you shouldn't have any listed, thus kill it. Alas, it seems just an infection is found it may attack the scanner system files, so be prepared to reload your AV pgm.. All or any protection pgms. should be burn to a CD/DVD in order to load or reload them. if you reload, be sure to totally wipe out past installs. Reload the AV and then update it. Updates for any required protection pgms., to have the latest info it needs. Beware of false help websites, use your judgment.
I'm a tech or worse a field engineer. To have this happen to me is unnerving. My attempts so far while having hits and or corrections seems not to stop this one. I can only imagine its changing on me. For now I'm at the redirection part of the virus, if you get hijacked, then expect either more spam or worse impact on banking.
Was this reply helpful? (0) (0)