How do I get rid of the google redirect virus

Dell / INSPIRON 1420
November 14, 2011 at 19:02:18
Specs: Windows Vista, 1.833 GHz / 3061 MB
I've got a virus that redirects my google searches to other search engines. I've ran my virus software which is Trend Micro and it's not picking it up. Please help.

See More: How do I get rid of the google redirect virus

Report •

November 14, 2011 at 19:56:28

What browser are you using? IE, FireFox, any other?

Retired - Doin' Dis, Dat, and slapping malware.
Malware Eliminator/Member of UNITE and the
Alliance of Security Analysis Professionals

Report •

November 14, 2011 at 20:49:36
I'm using IE. Everything is slower than usual as well. My video's aren't streaming.
And I'm getting pop-ups, not a lot but I've always had them blocked before.

Report •

November 15, 2011 at 06:19:31
Let's press on...

Please do the following running ComboFix first, and TDSSKiller next. If ComboFix does not run, press on to TDSSKiller:

If you have ComboFix (CF) already on your Desktop, please remove it. We'll download an updated version:

Save ComboFix.exe to your Desktop!!<--

Make sure you temporarily disable your AntiVirus, Firewall, and any other AntiSpyware applications. They may interfere with the running of CF.
Information on disabling these programs is available here:

Right-click on 'ComboFix.exe' and select Run as Administrator to run the program.

Click on 'Yes', to continue scanning for malware.

When finished, CF produces a report.

Please provide a copy of the C:\ComboFix.txt in your reply by uploading it to Megaupload:

Click: Browse
Select a file to upload
Upload ComboFix
To the right of 'Send', enter a file description: ComboFix
Click 'Send'
Copy the link provided, and post it in your reply.


1. Do not mouse-click the ComboFix window while it is running.
This action may cause it to stall.

2. ComboFix may reset a number of Internet Explorer's settings, including making IE the default browser.

3. CF disconnects your machine from the internet. However, the connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.

Now, please remove any previous download of TDSSKiller (if used) and download the latest version:

Execute the file:
XP: Double-click tdsskiller.exe to run the program
Windows 7: Right-click and select: Run as Administrator

Press the button: Start Scan

The tool scans and detects two object types:
'Malicious' (where the malware has been identified)
'Suspicious' (where the malware cannot be identified)

When the scan is over, the tool outputs a list of detected objects (Malicious or Suspicious) with their description.

It automatically selects an action ('Cure' or 'Delete') for 'Malicious' objects. Leave the setting as it is.

It also prompts the User to select an action to apply to 'Suspicious' objects ('Skip', by default). Leave the setting as it is.

After clicking 'Next/Continue', the tool applies the selected actions.

A Reboot Required prompt may appear after a disinfection. Please reboot.

By default, the tool outputs its log to the system disk root folder (the disk with the Windows operating system, normally C:\.

Logs have a name like:

Please post the TDSSKiller log in your reply, by uploading it also.

Uploading website:

In: Select files to upload, click 'Browse', and 'Look in' the Desktop.
Select the report you wish to upload, and click on 'Open'
You will see the following:
“Your file has been uploaded successfully: (Name and size of the file)”

Please copy the 'Download link', and provide it in your reply for each of the reports.

Need to see the following uploads in your reply:
**The 'ComboFix log'
**The 'TDSSKiller' log

Also need to know whether TDSSKiller needed a reboot!


Retired - Doin' Dis, Dat, and slapping malware.
Malware Eliminator/Member of UNITE and the
Alliance of Security Analysis Professionals

Report •

Related Solutions

November 15, 2011 at 17:46:11
Hello, I'm having this problem as well. I tried starting a thread for it around the second of November but it died after only a few replies, and the problem is still present. Whatever it is that is causing the redirects isn't slowing down my browser and it doesn't appear to be blocking any programs or web sites, only redirecting my search results. Was wondering if I could tag along in this thread in the hopes of finding a solution?

Report •

Ask Question