Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: browser hijack.


12 Aug 2012   #1

Windows 7 Professional 32bit
 
 
browser hijack.

i have this issues. every time i click on the Google search result URL it go to the other website. i already try to use the Malwarebytes Anti-Malware, Rkill , and tdsskiller to scan and remove but it still there.
this is the website it direct me to--> (click dot expandsearchanswers dot com).
any solution for this??
Sorry for my bad english.

My System SpecsSystem Spec
.

13 Aug 2012   #2

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1 Pro
 
 

Since none of the the tools you mentioned seemed to have any effect at removing the infection, try d/l ing & running Windows Offline Defender. This is a boot disk/USB scanner. Download this on a clean PC (not the infected one), follow the directions and post back what the results were.

Windows Defender Offline
My System SpecsSystem Spec
13 Aug 2012   #3

32 bit
 
 

Reinstall your browser.
My System SpecsSystem Spec
.


14 Aug 2012   #4

Microsoft Community Contributor Award Recipient

Windows 7 Ult. x64 Windows 8.1 x64
 
 

Quote   Quote: Originally Posted by shawn77 View Post
Reinstall your browser.


Try the following please:

Copy the following text exactly as shown into a new instance of Notepad, and save it as flush.bat on your desktop.

@Echo on
pushd\windows\system32\drivers\etc
attrib -h -s -r hosts
echo 127.0.0.1 localhost>HOSTS
attrib +r +h +s hosts
popd
ipconfig /release
ipconfig /renew
ipconfig /flushdns
netsh winsock reset all
netsh int ip reset all
shutdown -r -t 1
del %0


Close any open applications. Right-click on flush.bat and choose to Run as Administrator. Your computer will reboot itself.

Now download TFC.exe (Temporary File Cleaner) to your desktop, from this location:
TFC - Temp File Cleaner by OldTimer - Geeks to Go Forums

Ensure all applications are closed. Right-click on TFC.exe and choose to Run as Administrator.
Click Start to run TFC - note:
  • do not interrupt it! Let it finish completely.
  • if TFC prompts you to reboot, then do so immediately.
  • once finished, if you were not prompted to reboot, reboot anyway

Once rebooted, perform an online scan using the ESET online scanner:
ESET Online Virus Scanner | ESET

Report back on anything it finds.

Regards,
Golden
My System SpecsSystem Spec
15 Aug 2012   #5

Windows 7 Professional 32bit
 
 

Quote   Quote: Originally Posted by Golden View Post
Quote   Quote: Originally Posted by shawn77 View Post
Reinstall your browser.


Try the following please:

Copy the following text exactly as shown into a new instance of Notepad, and save it as flush.bat on your desktop.

@Echo on
pushd\windows\system32\drivers\etc
attrib -h -s -r hosts
echo 127.0.0.1 localhost>HOSTS
attrib +r +h +s hosts
popd
ipconfig /release
ipconfig /renew
ipconfig /flushdns
netsh winsock reset all
netsh int ip reset all
shutdown -r -t 1
del %0


Close any open applications. Right-click on flush.bat and choose to Run as Administrator. Your computer will reboot itself.

Now download TFC.exe (Temporary File Cleaner) to your desktop, from this location:
TFC - Temp File Cleaner by OldTimer - Geeks to Go Forums

Ensure all applications are closed. Right-click on TFC.exe and choose to Run as Administrator.
Click Start to run TFC - note:
  • do not interrupt it! Let it finish completely.
  • if TFC prompts you to reboot, then do so immediately.
  • once finished, if you were not prompted to reboot, reboot anyway

Once rebooted, perform an online scan using the ESET online scanner:
ESET Online Virus Scanner | ESET

Report back on anything it finds.

Regards,
Golden
ok. will use your methods 1st.

now using the ESET scanning the file.
My System SpecsSystem Spec
15 Aug 2012   #6

Windows 7 Professional 32bit
 
 

another update. seems like only my first user in the google chrome have the problem. the second user seem to be not infected by the malware.

and when everytime i try to key in an word on the google search bar or the google chrome address bar. the google chrome will crush and shut down itself.
My System SpecsSystem Spec
17 Aug 2012   #7

Windows 7 Professional 32bit
 
 

Quote   Quote: Originally Posted by Golden View Post
Quote   Quote: Originally Posted by shawn77 View Post
Reinstall your browser.


Try the following please:

Copy the following text exactly as shown into a new instance of Notepad, and save it as flush.bat on your desktop.

@Echo on
pushd\windows\system32\drivers\etc
attrib -h -s -r hosts
echo 127.0.0.1 localhost>HOSTS
attrib +r +h +s hosts
popd
ipconfig /release
ipconfig /renew
ipconfig /flushdns
netsh winsock reset all
netsh int ip reset all
shutdown -r -t 1
del %0


Close any open applications. Right-click on flush.bat and choose to Run as Administrator. Your computer will reboot itself.

Now download TFC.exe (Temporary File Cleaner) to your desktop, from this location:
TFC - Temp File Cleaner by OldTimer - Geeks to Go Forums

Ensure all applications are closed. Right-click on TFC.exe and choose to Run as Administrator.
Click Start to run TFC - note:
  • do not interrupt it! Let it finish completely.
  • if TFC prompts you to reboot, then do so immediately.
  • once finished, if you were not prompted to reboot, reboot anyway

Once rebooted, perform an online scan using the ESET online scanner:
ESET Online Virus Scanner | ESET

Report back on anything it finds.

Regards,
Golden
i have try your methods. but the result is still the same. no luck. thank you for your help.
My System SpecsSystem Spec
17 Aug 2012   #8

Windows 7 Pro. 64/SP-1
 
 

Did you useWindows Defender Offline as per Borg post #2??
Two other things.
1. Removing it using Safe Mode.
2. Internet Options/Connection/Lan and make sure proxy is not checked.
I just went through something like this and many times a anti malware don't find it because it's not considered malware. It can also be a add on in your browser. Something like, (Price watcher, coupon saver) or the likes. Completely remove all browsers except I.E. Then set I.I. to default. Nothing added what so ever. If your okay you can add more browser of your choice.
My System SpecsSystem Spec
17 Aug 2012   #9

Microsoft Community Contributor Award Recipient

Windows 7 Ult. x64 Windows 8.1 x64
 
 

Quote   Quote: Originally Posted by 2PMHottest View Post
i have try your methods. but the result is still the same. no luck. thank you for your help.
I'm guessing you ran ESET? What did it find. Try post some more detail in your replies.
My System SpecsSystem Spec
Reply

 browser hijack.




Thread Tools



Similar help and support threads for2: browser hijack.
Thread Forum
Browser Hijack System Security
Solved sharewareisland browser hijack Browsers & Mail
Browser Hijack issue Browsers & Mail
Need help with Browser Hijack Malware System Security
Yaa! DLL Hijack Auditor: For Microsoft DLL hijack vulnerability System Security
IE 8 hijack System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 02:16 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33