Google search results being redirected and fake windows security alerts

By thakkar2000
May 1, 2009
  1. Please help!! My Google searches are being redirected. Also, on my taskbar I have this fake Windows security alert that sometimes says:

    "Your computer is not protected because firewall is not on. Click on the balloon to fix this problem"


    "Your computer is not protected because anti virus software is not installed. Click on the balloon to fix this problem"

    I was also getting pop ups before, but now they have stopped. Please help...thanks.

    I am attaching the Super AntiSpyware log...
  2. B00kWyrm

    B00kWyrm TechSpot Paladin Posts: 1,436   +37

    Vundo Detected - Requires Expert Help

    Hello Thakkar

    Looks like you may have tried to go beyond the 8-steps on your own? Your HJT says "after combo".
    I am not sure why others have not already stopped by to help... maybe just busy with others.

    I see significant work that needs to be done with HJT, but of even more pressing concern is the Vundo detection. Both issues require an expert... I am still learning.

    Another item I see that is probably of concern is the Keygen noted in connection with a Torrent directory. (P2P INsecurity and Piracy issues are both signifcant).
    I suspect your Vundo infection (at least) came in through the P2P door.
    I do not see any P2P running in your logs, but I did not dig deeply. Just looked for the "usual suspects".

    So, while waiting for other help... These might be some things for you to address.

    1. Try to get rid of the keygen, if you can. Note what happens if you cannot.

    2. Looks like you are running Symantec security and/or AV. Is it up to date?
    Have you done a full scan since running through the 8 steps? Results? Some helpers will suggest that you temporarily uninstall your paid programs, in order to use another (specifically those mentioned in the steps). You can reinstall latter if you desire.

    3. Some of the eight steps specifically say to run them more than once... Did you do this? With what results?

    The more complete your information, the easier it will be for someone to help you.
  3. thakkar2000

    thakkar2000 TS Rookie Topic Starter

    Thank you for responding. I have deleted the keygen, but I have had this for a month or so and it didn't do anything so I doubt it could be the cause of the google redirection and the fake security alerts. I have followed your advice nonetheless. I have ran several different scans, including Malwarebytes, AVG, Spyware doctor, Adware SE etc. they each find one or two trojans and they successfully delete them. But I still have the same problems. Because they can interfere with each other, I have uninstalled some of these scanners so I don't know if I can still retrieve their logs, but I will try.
Topic Status:
Not open for further replies.

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...