Google Redirect Virus is a very notorious malware designed to redirect your searches to malicious websites. This virus is also known as browser hijack virus or search engine redirect virus. The Google Redirect Virus is infecting thousands of new machines everyday and It is very hard to remove as it is bundled with many rootkits commonly known as TLD3 or Alureon Rootkits.
These rootkits change your computer settings in such a way that when type Google’s web address in address bar of your web browser, you are not actually taken to Google but to a malicious webpage which looks exactly as Google.
When you do a search, you’ll see results exactly like Google, but when you click on any of those results, you’ll be taken to a website you’re not supposed to visit. In other words, you’ll see legitimate websites in search results but clicking on those results will take you to dubious websites which are engaged in spreading more malware to your computer.
You will be offered to download more dubious products and file sharing applications which will do more harm than good. Scammers redirect Google search results for sole purpose of getting traffic easily. They know that everybody in the world uses Google and If they infect your computer with the redirect virus, they can drive lots of traffic their websites for free.
AND MOST IMPORTANTLY the Google Redirect Virus could use your computer as a Botnet for malicious activities
Here are the steps for Google Redirect Virus Removal
Please download the latest official version of Kaspersky TDSSKiller.
(This link will automatically download Kaspersky TDSSKiller on your computer.)
Before you can run Kaspersky TDSSKiller, you first need to rename it so that you can get it to run. To do this, right-click on the TDSSKiller.exe icon and select Rename. Edit the name of the file from TDSSKiller.exe to iexplore.exe, and then double-click on it to launch.
Kaspersky TDSSKiller will now start and display the welcome screen and we will need to click on Change Parameters.
In the new open window,we will need to enable Detect TDLFS file system, then click on OK.
Next,we will need to start a scan so you’ll need to press the Start Scan button.
Kaspersky TDSSKiller will now scan your computer for any rootkits infection.
When the scan has finished it will display a result screen stating whether or not the infection was found on your computer.If it was found it will display a screen similar to the one below.
To remove the infection simply click on the Continue button and TDSSKiller will attempt to clean the infection.A reboot will be require to completely remove any infection from your system.
Remove the malicious files from your computer with Malwarebytes Chameleon.
Malwarebytes Chameleon is a powerful utility from Malwarebytes, that will stop any malicious process from running and remove its malicious files from your computer. Download Malwarebytes Chameleon from this link and extract it to a folder in a convenient location.
Follow the onscreen instructions to press a key to continue and Chameleon will proceed to download and install Malwarebytes Anti-Malware for you.
Once it has done this, it will update Malwarebytes Anti-Malware, and you’ll need to click OK when it says that the database was updated successfully.
Malwarebytes Anti-Malware will now attempt to kill all the malicious process associated with Google redirect virus.Please be aware that this process can take up to 10 minutes, so please be patient.
Next, Malwarebytes Anti-Malware will automatically open and perform a Quick scan for Google redirect virus malicious files as shown below.
Upon completion of the scan, click on Show Result.
You will now be presented with a screen showing you the malware infections that Malwarebytes Anti-Malware has detected. Make sure that everything is Checked (ticked),then click on the Remove Selected button.
After your computer restarts, open Malwarebytes Anti-Malware and perform a Full System scan to verify that there are no remaining threats
Remove the malicious registry keys added by the Google redirect virus In most cases any Google redirect virus will add some malicious registry keys to your Windows installation,to remove them we will need to perform a scan with RogueKiller. Please download the latest official version of RogueKiller from here.
Double click on RogueKiller.exe to start this utility and then wait for the Prescan to complete.This should take only a few seconds and then you can click the Start button to perform a system scan.
After the scan has completed, press the Delete button to remove any malicious registry keys.
Restart the Computer.
Remove Google redirect rootkit with HitmanPro Download the latest official version of HitmanPro link for 32-bit / link for 64-bit
Double click on the previously downloaded file to start the HitmanPro installation. IF you are experiencing problems while trying to starting HitmanPro, you can use the “Force Breach” mode.To start this program in Force Breach mode, hold down the left CTRL-key when you start HitmanPro and all non-essential processes are terminated, including the malware process. Click Next to install HitmanPro on your system.
The setup screen is displayed, from which you can decide whether you wish to install HitmanPro on your machine or just perform a one-time scan, select a option then click on Next to start a system scan.
HitmanPro will start scanning your system for malicious files as seen in the image below.
Once the scan is complete,you’ll see a screen which will display all the malicious files that the program has found.Click on Next to remove this malicious files.
Click Activate free license to start the free 30 days trial and remove the malicious files.
HitmanPro will now start removing the infected objects.If this program will ask you to restart your computer,please allow this request, if not restart the computer manually.
Download Install and Quick Scan SuperAntiSpyware from this link
Download Install and Run CCleaner from this link
Restart the computer.
If you have followed the steps to the tee, the Google Redirect Virus should be out of your computer alongwith any other malicious software too.
If you still have the virus, and need professional assistance getting it removed, contact us.
Internet Security Virus Removal
Latest Java Update | Java 7.17
Adobe Zero Day | Mini Duke Malware