IE Browser redirecting to garbage websites

By jjmack ยท 12 replies
Oct 29, 2009
  1. Hi. I'm having a problem with my browser (IE 7) redirecting to garbage websites when I do a Google search. I went thru your 8 step malware/spyware/virus removal instructions and while it cleaned up a large number of problems, my browser is still redirecting. I've attached the .txt files you requested in your removal instructions. There is one other strange thing that's been happening. When I close IE it takes longer than usual to actually close, then it will reopen another IE window. Any help on what else can be done to fix this would be greatly appreciated. Thanks much.
  2. Tmagic650

    Tmagic650 TS Ambassador Posts: 17,244   +234

  3. Bobbye

    Bobbye Helper on the Fringe Posts: 16,334   +36

    Welcome to TechSpot, jjmack. My apology for the delay. I'll try to help you remove the malware.

    You have a significant assortment of malware entries. If you would still like help, please rescan with HijackThis and paste a new log in the next reply.

    Tmagic, neither one of your references was appropriate.
  4. Tmagic650

    Tmagic650 TS Ambassador Posts: 17,244   +234

    "Tmagic, neither one of your references was appropriate"...

    I'm beginning to see a copy and paste pattern to your malware helping posts. The instructions you give in each thread are basically the same. I was just pointing that out in my 2 references here. I am not sure jjmack can sort this out even with our help
  5. Bobbye

    Bobbye Helper on the Fringe Posts: 16,334   +36

    To Tmagic and ALL who want to help with malware cleaning

    Tmagic, you will see me following with Combofix frequently. That's because 1. it's a good program and 2. it's the appropriate program and 3.I'm familiar with the program. Some of the more-learned helpers might think a newer program is better.

    Right now, the biggest malware problem being seen here is the 'Google Redirect.' But what are they seeing when they get directed? Viagra ads or junk adware.

    But it's important that any helper reviews the logs before recommending further programs.

    For instance: for malware in AppInit, I might have the user run LSPFix first. But I wouldn't do that until I had verified the 020 entries were indeed malware. Great care has to be taken as to not destroy the users internet connection.

    For other instances, by checking entries for dlls and exes, I can sometimes get a profile of an infection. If so, I might recommend a specific program such as Vundofix (for Vundo, Virtumonde and others) LSQix (if I see indications of the Elite Bar)and so on. But I can't do that until I see the current entries, including those in the logs.

    I recently had someone go ahead and run Combofix on his own, after Mbam, SAS and HJT. Unfortunately, it was a double edge sword because there were many deletions by Combofix, but I wasn't able to backtrack enough and find what those entries belonged to. I am also more familiar with Combofix than some of the newer programs. I'm working on that.

    The order of program as well as the specific programs are very important. If it was 'one size fits all'. we'd set them all up for the users to run. Then we'd be out of our volunteer job and have more time to play!

    What I'm saying here is that there is NO pattern! In fact, a very new member replied on 3 threads before I had the chance to refer them to our steps, to run a specific program, 'it worked for her and her friends', etc. It was the wrong information and the moderator removed the posts.

    IF you really want to help, try one of the online malware 'schools', get some of the basics down that you need. You can see that there are way more malware infected systems than there are helpers and there is a need for helpers. But it's not the same as what you would do in IT or in a shop. Online help depends entirely on what the user tells us and sometimes we have to ask specific questions based on something we see in a log.

    And I also have a lot to learn- it never stops!
  6. Tmagic650

    Tmagic650 TS Ambassador Posts: 17,244   +234

    Thanks Bobbye,
    the more massive virus & Malware theads I see, the more I would stick with a full format and then I would perform an OS fresh install... Those posted Hijack logs are massive. They should be attached
  7. Bobbye

    Bobbye Helper on the Fringe Posts: 16,334   +36

    I have requested that the HijackThis logs allow to be pasted in. There is a reason for this. I can then search for malware entries directly from my Firefox malware add-on. I don't have to do any copy and paste and it saves me an enormous amount of time!

    The other logs get attached.
    There's usually a reason for everything.
  8. Tmagic650

    Tmagic650 TS Ambassador Posts: 17,244   +234

    I see your point Bobbye... You had mentioned that 64 bit Vista doesn't work well with HiJackthis. Is this true with all the MS 64 bit OS's?
  9. Bobbye

    Bobbye Helper on the Fringe Posts: 16,334   +36

    I would think so. It's not the OS, it's the 64bit.
  10. Tmagic650

    Tmagic650 TS Ambassador Posts: 17,244   +234

    I'm running Windows 7 Professional 64-bit retail now, and my Hijackthis logs look pretty normal
  11. Bobbye

    Bobbye Helper on the Fringe Posts: 16,334   +36

    Then why did you ask me Tmagic? You already had the answer!
  12. Tmagic650

    Tmagic650 TS Ambassador Posts: 17,244   +234

    Just because I thought something false might show up using a 64 bit OS
  13. Bobbye

    Bobbye Helper on the Fringe Posts: 16,334   +36

    jjmack, my apology. Do you still need help with this issue?
Topic Status:
Not open for further replies.

Similar Topics

Add your comment to this article

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...