Articles

Google searches have been hijacked

March 19, 2012 at 10:50:17
Specs: Windows 7

When I do a Google search and click the hyperlink, I'm directed to another website (ideaz.com or something like that). Spybot found no spyware. What's happening?

See More: Google searches have been hijacked

Report •


#1
March 19, 2012 at 12:02:50

Browser hijacks are fairly common malware tactics. Spybot S&D is useless to the point I've seen government IT departments stop using it less than a week after purchase.

My recommendation is this:
1. run Bleepingcomputers Combofix from SAFE MODE as an administrator. (This takes forever)
2. Run Malwarebytes Anti-malware from SAFE MODE as an administrator (Update before running a FULL scan)

Malwarebytes should catch the overt malware, while Combofix tends to catch and fix the much more sneeky stuff like rootkits that allow backdoor hidden installations that can bypass and/or shut down antivirus software.

the reason to run them from safe mode is because windows will only load up the basic drivers required to run, which makes it more likely that malicious programs will be found and removed.


Report •

#2
March 19, 2012 at 13:04:24

I would NOT recommend combofix at the beginning...should only be used as a last resort.
These 3 progs have been real successful in removing redirects, runthem in the EXACT order listed and DON'T REBOOT untill after the last scan:
1- rkill.exe
http://www.bleepingcomputer.com/dow...
2- tdss killer
http://support.kaspersky.com/faq/?q...
3- http://www.filehippo.com/download_m...

If that doesn't work, try the same in safe mode

Some HELP in posting on Computing.net plus free progs and instructions 7 Golds


Report •

#3
March 19, 2012 at 17:53:20

You have been running it in an unsecure manner. That is how you got the google re-direct attack. You need to up your security practices and software to prevent this in the future.

A Pit Bull is like a gun you can pet. And there is no safety on it.


Report •

Related Solutions


Ask Question