Google Redirect Virus – How To Remove
Computers are always susceptible to viruses and Trojans, and many people believe that their antivirus will always protect them. However, this is not always the case. The Google Redirect Virus is one Trojan that has stumped many of the most popular programs and this virus is still going strong even after so many years. Google Redirect Virus can be spread in many different ways and sometimes It is extremely hard to detect it even If you’re using a very powerful anti-virus program on your computer. This page will show you how you can utilize different methods to remove redirect virus from your computer. Even If you’ve tried everything so far and still couldn’t get rid of google redirect virus, I’ll suggest that you read this guide thoroughly and It is very helpful and totally based on research behind the Google Redirect Virus.
What is Google Redirect Virus
The Google Redirect Virus is a malware that attacks your computer by hijacking your web browser and search engine. This virus is actually a software program which makes forced changes into your web browser’s settings to redirect your searches to malicious websites. This virus will redirect every search term you enter to a malicious site, and leave your computer severely compromised.
I’ll give you an example so that you can easily understand how Google redirect virus actually works. Say, you search for something on Google.com and you see 10 results on first page. Now when you click on those results, you’ll NOT be taken to the website you intend to visit. Instead of that, you’ll be taken to a malicious website or other shady websites which will actually harm your computer even further. You might see some very lucrative offers on those websites and it would be better If you stay away from them. Even if you type the correct address, this virus can take you to a random page.
In other cases, when you type “http://www.google.com” in web browser, you’ll see a page which actually looks like Google but It’s a fake website which just looks like Google. When you search for something, you’ll see completely irrelevant results and when you click on those results, you’ll be taken to a malicious website or a web page full of advertisements. There are actually a few different ways this infection can affect your computer. Two ways are as mentioned above; your computer is automatically redirected to a malicious site when you enter search terms. The other methods usually have something to do with your browser’s plug-ins or settings, which cause you to be redirected automatically when they are used.
How it Spreads and Harms Your Computer
The Google Redirect Virus spreads to your computer mostly through email attachments, but may also be downloaded through Facebook links or other programs. All of these methods appear to be legitimate when you receive them, but once you click on them, your computer downloads a piece of software called a rootkit. Once the rootkit is downloaded, it attaches to the operating system on your computer. The rootkit hides the actual Google Redirect Virus by making itself appear to be a legitimate folder or file in your computer’s operating system executable files. When the virus attaches itself in this manner, it makes it very difficult for your antivirus and malware scanners to notice it. In many cases, the computer user may not even realize they have the virus right away, because of how well it is hidden in their files.
Once the Google Redirect Virus has infected your computer, it is very difficult to get rid of it. The virus not only redirects you to malware and scam websites, it effectively blocks your computer from accessing legitimate sites. The virus also blocks the computer from using sites that provide the antivirus software that can remove it, leading to much frustration on the computer user’s part. Each time you are redirected to one of these sites, it leads to more viruses and malware being downloaded to your computer. The redirect affects every search engine and browser, so changing browsers has no effect on avoiding the virus.
How To Remove Google Redirect Virus
Once you have figured out that you have the Google Redirect Virus, you have two different options for removal:
1. Automatic Removal
2. Manual Removal
I’ll tell you more about each removal method below so that you can choose the method you want. I highly recommend Automatic Removal method as It is fast, safe and guarantees complete removal of the Google Redirect Virus rather quickly.
A) Automatic Removal of Redirect Virus
As the name implies, this method is all about using a genuine anti-malware program which is specially designed towards removing the Google Redirect Virus. Here is what you need to do :
1. To remove Google Redirect Virus, you need to download a genuine anti-malware tool which can check for a wide variety of computer problems related to Redirect Virus like Browser’s settings, hosts file, running rootkits etc..
We’ve tried to use several different products for this purpose and Spy Hunter is the best software as It checks for all the important settings which Google Redirect Virus manipulates. You can download Spy Hunter by clicking the button below.
2. After downloading Spy Hunter, you need to do a full scan of your computer. Spy Hunter will automatically check for all the settings which are often manipulated by the browser hijacking virus. Not only It will detect all the problem related to redirect virus, but actually correctly those problems as well.
3. Once the scan has been completed, and all infections have been removed, you will need to download a utility called TDSSKiller from Kaspersky Labs to check for additional problems. This program will scan your computer’s executable files and drivers to locate the rootkit that allows the Google Redirect Virus to stay hidden. TDSSKiller is a free utility which is specially designed towards Google Redirect Virus Removal. Click on the link to Download TDSS Killer and save the downloaded file on Desktop.
After downloading TDSSKiller, click on the TDSSKiller’s file on Desktop in order to run the program. When it opens, click on the “Start Scan” button. TDSSKiller will check all the running and hidden drivers in your computer and detect the infected items. Once the scan is finished, click on “Cure” button to remove the infected items.
Now Restart your computer and run TDSSKiller again to see If the virus is still running behind the system drivers. At this point, the virus should be completely removed and this scan will not show any infections upon completion. If this removal process was successful, your computer should work properly.
This is how you can get rid of google redirect virus very easily without manipulating with lots of different settings on your computer. We recommend this removal method for everyone suffering from this notorious virus. Google Redirect Virus removal is pretty easy and straightforward If you use automatic removal method.
B) How to Remove Google Redirect Virus Manually
Manual Removal method is another way of removing redirect virus but It is not as easy and effective as automatic removal method is. As you can understand, you need to remove Google Redirect Virus yourself by employing some basic removal methods.
Search Engine Redirect Virus is now so sophisticated that It is nearly impossible to remove this virus without employing automated removal tools. Please be aware that this can be a rather long, painful process. The virus is capable of infecting your computer in a number of different ways, making is difficult to isolate and remove it. If you need to do a manual removal, following these steps should help you to find and remove the hijacking virus :
Step 1 : Check Your Local Area Connection Settings
1. The first step is to make sure the virus is not controlling your Local Area Network settings. In many cases, the Google Redirect Virus uses your LAN settings to redirect your internet searches. Follow these steps to check this in different browsers :
a. Internet Explorer
· Open your web browser as you normally would, and click on Tools > Internet Options. In this menu, choose the “Connections” tab.
· Choose the LAN Settings tab.
· In this window, make sure the box for “Use a proxy server for your LAN” is not checked.
· Click “OK”, and close the window.
b. Mozilla Firefox
· Open the Firefox web browser, and click on Tools > Options
· Select the “Advanced” tab, then “Network”, and “Settings”
· Make sure the box next to “No Proxy” is checked
· Select “OK” and then close the window.
Step 2 : Check DNS Settings
Once you have determined whether the redirects are being caused by your LAN settings, you will also need to check your Domain Name Servers.
a. Using the Start menu, open Control Panel
b. Select the “Network Connections” button, and use your mouse to right-click on the “Local Area Connection” button.
c. Choose “Properties” in the menu, and choose the “Internet Protocol” button (this could be noted as TCP/IP).
d. Select the “Properties” button in the window, and make sure the box next to “Obtain DNS Server Address Automatically” is checked.
e. Choose “OK”, and close the window.
Step 3 : Check Hosts File On Your Computer
It is also possible for the Google Redirect Virus to change the HOST files on your computer. The HOST files are used each time you enter a web address and hosts file can be used to redirect certain websites to different web address automatically by adding a malicious entry.
Please follow these steps to see If HOSTS file is compromised :
1. Using your desktop or Start menu button, click on “My Computer”.
2. Find the Windows file folder, and look for C:\Windows\System32\Drivers\etc\hosts.
3. Open this file by either clicking or right clicking and selecting “Open With”. Choose Notepad to open the HOST file.
4. The only entry that should be in the list when Notepad opens is 127.0.0.1 localhost. If you see any other addresses, you need to delete them in order to prevent the Google Redirect Virus from sending your searches to the wrong websites.
Step 4 : Check For Hidden Devices
You also need to make sure the Google Redirect Virus does not have any hidden running processes. These processes run in the background, and must be stopped in order to completely remove the virus. You can choose to restart your computer in “Safe Mode”, or find a tool designed to kill these processes.
Most computers can be started in Safe Mode by restarting your computer and hitting the F8 key repeatedly while your computer is starting up.
In order to remove the service that is running the Google Redirect Virus, you will need to disable it.
1. Click on Start—>Run. In Run edit box, please enter “devmgmt.msc” (without quotations) and press Enter.
2. This will show Device Manager. Click on View—>Show Hidden Devices.
3. In the Hidden Devices list, find “Non Plug and Play Drivers” and Click on the + sign in order to expand the menu.
4. Find the “TDSSserv.sys” option, and click on the “Disable” button.
After you have completed all of these steps, your computer should no longer be infected with the Google Redirect Virus. If your computer is infected with a advanced version of Google Redirect Virus, you must follow automatic removal method to get rid of it. Without performing a malware scan, It is hard to determine where the infected files are present in your computer.
Many people may be uncomfortable performing the virus removal manually, especially if you are not familiar with how the operating systems work. You need to keep in mind that if you do not follow these instructions properly, you can run the risk of harming you computer even more. If you are unsure whether you understand all of these steps completely, you should ask someone else for assistance, or check with a professional. Virus removal is confusing for some people, and removing the Google Redirect Virus can be really difficult If you don’t know what you are doing. To remove the virus easily and quickly, you can always follow Automatic Removal Method which works all the time.
If you’ve any additional questions or comments, please feel free to post them here and I’ll get back to you.