Hello everyone.

I recently had the google redirect virus plus some other not so nice items that also prevented me from updating my AVG (gave me the cannot connect message)-- initially I was running with AVG antivirus and Windows Defender. This weekend I installed Ad-Aware 2008 and StopZilla (have since read a mix of stuff mostly bad re: this product), but after running scans and deleting infected items I am down to a fake security alert box popping up stating that I have a malicious Spyware.ISpynow running on my machine and then if I click on the enable button it takes me to a site where it wants me to download a rogue program. I am looking for some advice here on how to get rid of this fake alert and make sure my machine is clean. I am leaning towards doing a re-install of Windows XP, but was wondering if that is a 100% effective way to get rid of everything harmful OR if there is still a good way to make my PC clean without having to reinstall the OS. Thanks to anyone who takes the time out of their busy day to answer my questions.

Welcome to GTG.

Is this happening to all the computers in your house (assuming you have more than one)? If so, it could be a hijacked DNS entry in the router.

It sounds like a case of Zlob/DNSchanger that change the router's DNS settings. Please download Malwarebytes' Anti-Malware from Here or Here

Next disconnect your system from the internet, and your router, then…

Double Click mbam-setup.exe to install the application.

• Launch Malwarebytes' Anti-Malware, then click Finish.
• Once the program has loaded, select "Perform Quick Scan", then click Scan.
• The scan may take some time to finish,so please be patient.
• When the scan is complete, click OK, then Show Results to view the results.
• Make sure that everything is checked, and click Remove Selected.
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
• Copy&Paste the entire report in your next reply.

Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.
===============================================

Next you must reset the router to its default configuration. This can be done by inserting something tiny like a paper clip end or pencil tip into a small hole labeled "reset" located on the back of the router. Press and hold down the small button inside until the lights on the front of the router blink off and then on again (usually about 10 seconds). If you don’t know the router's default password, you can look it up HERE

However, if there are other Zlob-infected machines using the same router, they will need to be cleared with the above steps before resetting the router. Otherwise, the malware will simply go back and change the router's DNS settings. You also need to reconfigure any security settings you had in place prior to the reset. Check out this site here for video tutorials on how to properly configure your router's encryption and security settings. You may also need to consult with your Internet service provider to find out which DNS servers your network should be using.

Once you have ran Malwarebytes' Anti-Malware on the infected system, and reset the router to its default configuration you can reconnect to the internet, and router. Then return to this site to post your logs.

===============================================

Please post the Malwarebytes log and let me know how things are running now.

Thank you for your reply.

My laptop appears to be the only one infected. At least at this time, but there are 2 others in my home who use their computers every day and they are not experiencing any problems.

I am going to go ahead and do a clean wipe of my computer and reinstall the OS-- there's nothing I need on there anyway. You've brought up an interesting concern though regarding our router and home network. Unfortunately I won't have any free time until next weekend to work on my machine, unless of course the problem surfaces on either of the other computers we use in the home. I just wanted to mention this, as I appreciate your response but it will be until next weekend before I can follow the steps you shared with me. I'll let you know how it goes-- thank you for your time.

A reinstall is not needed at all for this. Malwarebytes' should be able to remedy most of the problems after the first run

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.