How to fix Google Redirects
Posted 22 March 2011 - 10:06 AM
Posted 22 March 2011 - 12:15 PM
Posted 22 March 2011 - 03:32 PM
Posted 22 March 2011 - 03:38 PM
Posted 22 March 2011 - 04:01 PM
Posted 24 March 2011 - 08:01 PM
Thank you again!
Posted 24 March 2011 - 11:42 PM
All processes killed
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Documents and Settings\Owner\My Documents\Downloads\cmd.bat deleted successfully.
C:\Documents and Settings\Owner\My Documents\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes
User: Documents and Settings
->Temp folder emptied: 2041306 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Temp folder emptied: 1977560 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Temp folder emptied: 51407940 bytes
->Temporary Internet Files folder emptied: 15961913 bytes
->FireFox cache emptied: 89880531 bytes
->Flash cache emptied: 5042 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 19569 bytes
%systemroot%\System32 .tmp files removed: 2577 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 7373425 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 10506 bytes
Total Files Cleaned = 161.00 mb
Restore point Set: OTM Restore Point (0)
OTM by OldTimer - Version 126.96.36.199 log created on 03242011_223245
Files moved on Reboot...
C:\Documents and Settings\Owner\Local Settings\Temp\~DF63B1.tmp moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\k4irpqgh.default\startupCache\startupCache.4.little moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\k4irpqgh.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\k4irpqgh.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\k4irpqgh.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\k4irpqgh.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\k4irpqgh.default\urlclassifier3.sqlite moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\k4irpqgh.default\XUL.mfl moved successfully.
File C:\WINDOWS\temp\ZLT05587.TMP not found!
Registry entries deleted on Reboot...
I hope I am doing this right, I will continue following these instructions, and will check back on this site tomorrow. Thank you so much in advance for your help
Posted 31 March 2011 - 05:16 AM
Posted 31 March 2011 - 09:05 AM
Posted 31 March 2011 - 09:55 AM
Posted 01 April 2011 - 08:26 AM
Great and easy to follow guide to fix my google redirects! Quick question- is it necessary to remove OTM or should I keep it? I still have to remove Click GiftLoad so I'm off to open a thread in another forum here..
You can remove OTM.exe. If the helper needs to run this tool in your machine, he will have you download an updated version (it's a small download -- 500 KB).
Regarding Click.Giftload, this infection comes often bundled with the TDSS rootkit/backdoor, so I would suggest you to ask for help in this matter as soon as possible.
Posted 01 April 2011 - 01:35 PM
Edited by john_, 01 April 2011 - 01:40 PM.
Posted 01 April 2011 - 01:39 PM
Many thanks for these instructions, I never heard before of OTM, I think is time to check it out .
Posted 10 April 2011 - 10:03 AM
Posted 17 April 2011 - 09:04 AM
People who program this kind of malicious software should be hunted down and shot like the animals they are (that goes for ALL people who program viruses, malware, spyware, etc.)
Well, here's my story.
I stupidly tried loading something someone I trusted sent to me (WinRAR update program) and my antivirus (SUPERAntiSpyware) warned me against loading it - but since he loaded it, I figured that my spyware program was just buggy.
That was March 9, 2011.
Google searches would work once or twice, and then redirect me to sites like "Ask to Friends." The same went for AltaVista.
DOGPILE was a search engine that it did not effect.
I tried what has been recommended here and nothing worked.
I also ran Malwarebytes, Ad Aware, CWShredder, Spybot Search and Destroy, Spyware Blaster, Spyware Terminator and none of them worked.
I had previously purchased Spotmau Powersuite 2010 (last year) and had loaded that on my system back then.
I looked through some of the things that it did (today), and under "TuneUp Kit" was "Customization."
The first choice there was "IE Repair" and figured I'd give that a try.
I chose "Solution 2: Deep Repair" and ran that.
It worked, and took all of 10 seconds.
What a maroon - I had the answer to the problem all along and didn't realize it.
I would start a new thread on this - but it says I can't (sorry).
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Never used a forum? Learn how.