Welcome to MalwareRemoval.com, What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.
MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.
Hello, My computer is infected with a virus that redirects web searches, on all search engines. I downloaded Hijackthis but the virus does not allow me to run the software. Any help appreciated!
My name is xixo_12 and i will guide you to encounter the problem that you have now.
We will work together and I need your attention to read all those instruction carefully.
You may wish to print them off or copy them into Notepad.
If you have any question please don't hesitate to ask.
The instructions that i will give to you later are specific to your current problem and shouldn't be used on other systems.
If you are receiving help or have received help on this problem elsewhere, please let us know.
Please post your replies to this thread only and keep interact with me until your computer is clean.
I am currently under the guidance of the MRU teachers, everything I post to you, has been reviewed by them. This additional review process can add some extra time to my responses...but not too much.
First, Please reply to indicate you are ready and understand what we will facing onwards.
Update to my problem: The redirecting to different web pages happens only with google, not with yahoo search engine. Also, my antivirus was not working so I unistalled it. I was able, however, to run a Kaspersky scan on my computer. I am attaching a copy of the report here if it helps:
KASPERSKY ONLINE SCANNER 7.0: scan report Thursday, October 15, 2009 Operating system: Microsoft Windows XP Professional Service Pack 2 (build 2600) Kaspersky Online Scanner version: 7.0.26.13 Last database update: Thursday, October 15, 2009 20:37:01 Records in database: 3001101 --------------------------------------------------------------------------------
Scan settings: scan using the following database: extended Scan archives: yes Scan e-mail databases: yes
Scan area - My Computer: C:\ D:\ E:\ F:\ G:\ H:\ I:\ J:\ K:\
First, Please Uninstall HiJackThis program (if you installed it) and delete the executable file that you downloaded.
Next, RSIT. Please download Random's System Information Tool by random/random from HERE and save to the desktop.
Double-click RSIT.exe to run the tool.
Click Continue at the disclaimer screen.
Once it finishes, two logs will open...
log.txt will be opened maximized
info.txt will be opened minimized
Please post the contents of both logs in your next post.
Next, GMER. Please download from HERE and save to the desktop.
Unzip/extract the file to its own folder.
Disconnect from the Internet and close all running programs. There is a small chance this application may crash your computer so save any work you have open.
Double-click on Gmer.exe to start the program.
Allow the gmer.sys driver to load if asked.
If it gives you a warning at program start about rootkit activity and asks if you want to run a scan,click NO.
Click on >>> symbol and choose on the Rootkit tab.
Look at the right hand side (under Files) and uncheck all drives with the exception of your C drive.
Make sure all other boxes on the right of the screen are checked, EXCEPT for "Show All".
Click on the Scan and wait for the scan to finish. Note: Before scanning, make sure all other running programs are closed and no other actions like a scheduled antivirus scan will occur while this scan completes. Also do not use your computer during the scan.
When completed, click on the Copy button and right-click on your Desktop, choose "New" > Text document. Once the file is created, open it and right-click again and choose Paste or Ctrl+V. Save the file as gmer.txt and copy the information in your next reply.
Note: If you have any problems, try running GMER in SAFE MODE"
Important!Please do not select the "Show all" checkbox during the scan..
Important. This thread remain open because a request for it. We are still waiting your reply for this issue. I'm in hope you will let me know the status of this system. Bump for your attention.
Users browsing this forum: No registered users and 537 guests
Contact us:
Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.
First unread post • 8 posts
• Page 1 of 1
by Vages » October 15th, 2009, 1:25 am 
,
