Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: HAPPILI and possible other infections/redirects


04 May 2012   #1

Windows 7 Pro x64 SP1
 
 
HAPPILI and possible other infections/redirects

I recently came here to the forums to remove HAPPILI. I followed several of the steps in a certain thread but still got redirected to HAPPILI.

Now (a couple days later) I have stopped seeing HAPPILI redirect but am getting redirected to another fake search results page...very generic looking, no real "theme".

Also, my browser is now quite sluggish and Malwarebytes is blocking malicious IP addresses (91.218.121.57)

I have been using Symantec End Point and running Malwarebytes but this is beyond my know-how.

Thanks in advance.

Dell Latitude E6520
Windows 7 Pro x64 SP1


My System SpecsSystem Spec
.

04 May 2012   #2

Microsoft Windows 8.1 Pro 64-bit
 
 

Hey Channel, welcome to Sevenforums. Take a look at this thread real quick and post back here: happili virus! anyone?

Post any logs here. Try Combofix as suggested. I will provide you with links to help you out. Please click on them to follow them.

What antivirus do you have?

Do this:

...Before you do anything else, Delete Temporary Internet Files (ask if you need help), & let the Safety Scanner run either downloaded from the internet or through a USB drive off of another computer (need to download it to the USB drive, then run it on the computer with the virus). Let it run for as long as it needs without stopping it. It will not install anything on your computer. Note that Combofix is a similar tool and thus running the safety scanner is not necessary, but you may do it just to ensure no viruses remain.

Then, download/install & update malwarebytes and run a full scan with it. You should be clean after that.

For good measure, make sure windows is completely updated through windows update (many updates close security loopholes). Update everything else, such as Java and Adobe flash. Update everything, like a madman, so that everything is secure. Then do this tutorial to fix any problems that may have been caused through the virus: SFC /SCANNOW Command - System File Checker - created by Brink



If you have no antivirus, I recommend MSE...


Best of luck! Feel free to ask me anything you aren't sure of, and I'll try my best to answer. Let me know how it goes.
My System SpecsSystem Spec
04 May 2012   #3

Microsoft Windows 8.1 Pro 64-bit
 
 

**Updated above content
My System SpecsSystem Spec
.


05 May 2012   #4

MS Windows 7 Ultimate SP1 64-bit
 
 

Channel B,

Welcome to SevenForums.

Run WDO, Windows Defender Offline. Use the link for WDO in my signature.

Run a full scan over all drives.

You will then have a clean system.

Next remove all anti-anything, any spy stuff, remove all of that junk.

Use MSE, Microsoft Security Essentials. Link in my signature.

Do not use Torrent software, do not visit torrent sites.

Use the WOT (web of Trust) add-on with your browser to help you spot questionable and bad sites.

Here's the procedure I use with WDO.

HOW TO USE WINDOWS DEFENDER OFFLINE ON A USB STICK
Windows Defender Offline
is a free standalone, bootable malware and virus remover from Microsoft.
performs an offline scan of an infected PC to remove viruses, rootkits and other advanced malware.

Download Windows Defender Offline (about 764 kB)

You will have the choice of downloading the 32bit version (x86) or the 64 bit version (x64).
The link will help you determine whether you are running a 32 bit version or 64 bit version of Windows

NOTE!! You can download and prepare a 32 bit version using a 64 bit version of Windows
NOTE!! You can download and prepare a 64 bit version using a 32bit version of Windows.

You run the 32 bit version on a 32 bit version of Windows.
You run the 64 bit version on a 64 bit version of Windows.

The 32 bit download file name is: mssstool32.exe
The 64 bit download file name is: mssstool64.exe

For the curious, this program was originally name Microsoft Standalone System Sweeper.


INSTALLATION:
You will need an Internet Connection.
Insert 512 mB (Microsoft’s 256 mB is no longer accurate) or larger USB stick into a usb port.
Run the downloaded program--mssstool64.exe or mssstool32.exe
NEXT button
Choose the option On a USB flash drive that is not password protected
NEXT button
NEXT button
.
The install program will format the usb stick using the NTFS format.
The install program will download about 210 mB.
The install program will name the USB stick WDO_Media32 or WDO_Media64
The WDO_Media32 usb stick will have used space of 255 mB (268,140,544 bytes)
The WDO_Media64 usb stick will have used space of 282 mB (296,165,376 bytes)
You can expect the number of mB to increase as more malware appears.

UPDATE Windows Defender Offline USB stick:
reinsert the usb stick
run the installation program, mssstool64.exe or mssstool32.exe, again.
the update will download about 66 mB (mssstool32.exe) and 68 mB (mssstool64.exe).

Since the malware database is sometimes updated several times in a day, always update before running.

PERFORM AN OFFLINE SCAN
Bootup your computer from the USB stick
Windows Defender Offline will automatically perform a quick scan.
After the quick scan finishes, Choose Full Scan
Select all of your drives

The initial, full scan can easily take several hours, but
Remember, your computer is being very thoroughly checked for all types of malware.


RESULTS OF THE SCAN
The results will be in:
\Windows\Windows Defender Offline\Support,
file name format is MPLOG- as one or more files with a TXT extension which can be viewed with Notepad.

My System SpecsSystem Spec
Reply

 HAPPILI and possible other infections/redirects




Thread Tools



Similar help and support threads for2: HAPPILI and possible other infections/redirects
Thread Forum
80% of attacks are redirects from legitimate sites Security News
Trouble with email link redirects Browsers & Mail
Strange google redirects. System Security
Facebook redirects Browsers & Mail
HELP!Virus redirects to spam sites and other stuff System Security
google redirects System Security
WARNING: Redirects from RLSLOG System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 12:12 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33