How would you remove Search Engine Hijacker

IggyAZ

IggyAZ

A Sr. Senior Member
Guru
VIP
Local time
8:21 PM
Messages
846
Location
Desert SW
I'm trying to remove search engine hijacker from my brothers computer.He says he has run Malwarebytes, SpyBot Search and Destroy and has an up to date scan using McAfee Suite.
The symtoms are when he searches using Google or Bing he gets directed to some 3rd rate search engine with phoney information. The 3rd rate site changes each time.

I can hook up to him via Remote Access (He is in CT and I'm in AZ) to take some steps but I'm unable to find anything on the web on step for removal.

Any suggestions or links for removal?

Thanks
 
Last edited:

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Self Built
OS
Windows 10 Pro
CPU
Intel i5
Motherboard
I have a fatherboard
Memory
I'm old and lost a few chips
Graphics Card(s)
Yup
Sound Card
Yup
Monitor(s) Displays
Samsung 32" UHD
Screen Resolution
3840 x 2160
Hard Drives
Samsung 860 EVO drives
PSU
450 Watt and some fans that blow
Case
Small tower
Cooling
Yes I am cool. lol
Keyboard
Who needs a keyboard?
Mouse
Logitech Laser G7 wireless
Internet Speed
Zippy fast UP and DOWN
Antivirus
I got a shot
Browser
The new Improved EDGE 2020
sounds like the tdl3 rootkit, run hitman pro 3.5, if not read a tutorial on how to run combofix, that will sort it
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Motherboard ASUS P6T SE
OS
Windows 10 32 bit oem & Arch Linux x86_64
CPU
Intel® Core™ i7-920 Processor
Motherboard
ASUSTeK model: P6T SE v: Rev 1.xx Bios: American Megatrends
Memory
6GB DDR3 1600 MHz Kingston RAM 3x2GB Triple channel
Graphics Card(s)
Advanced Micro Devices [AMD/ATI] RV770 [Radeon HD 4870]
Sound Card
[AMD/ATI] RV770 HDMI Audio [Radeon]
Monitor(s) Displays
1 X 22" LG M2262D : 1 X 23" Dell Ultrasharp
Screen Resolution
[email protected] + [email protected] : 3840x1080
Hard Drives
HDD Total Size: 1388.6GB (0.1% used) ID-1: /dev/sda model: HDS728080PLA380 size: 82.3GB
ID-2: /dev/sdb model: Hitachi_HTS54164 size: 40.0GB
ID-3: /dev/sdc model: SAMSUNG_HM250HI size: 250.1GB
ID-4: USB /dev/sdd mod
PSU
Corsair VX550W power supply unit
Case
AVP Mamba chassis
Cooling
ARCTIC Alpine 11 Pro Rev.2 - 95 Watts Low Noise
Keyboard
Dell
Mouse
Logitech M515
Internet Speed
ADSL+ up to 12MB 9 is the norm
Browser
Firefox
Other Info
i got sick of windows , so i moved to linux now i can get some work done without having to constantly watch my back & do scans for malware.
Be cautious running combofix, you can mess up the computer if you aren't careful.
 

My Computer

Computer Manufacturer/Model Number
Black_Box (homebuilt)
OS
windows 7 RTM x64
CPU
Phenom II 965 Quad Core 3.4Ghz
Motherboard
Asus M4A79T Deluxe
Memory
Mushkin Blackline 8GB (4x2gb)
Graphics Card(s)
XFX Radeon 5970 Black Edition
Sound Card
onboard
Monitor(s) Displays
Dell 2408WPF-main Dell E248WFP-secondary
Screen Resolution
1920x1200-main 1920x1200-secondary
Hard Drives
OCZ Vertex Limited Edition 100GB (OS)
x1 WD Black Edition 500GB drive (Storage)
PSU
XFX 850w Black Edition (Modular)
Case
Mountian Mods H2go
Cooling
CoolITSystems ECO A.L.C.
Keyboard
Logitech MX 5500 wireless keyboard
Mouse
Razor Copperhead
Internet Speed
16Mb down/2Mb up Wowway Cable Internet
Also check the hosts file to make sure that there is no hard-coded ip-redirects
 

My Computer

Computer Manufacturer/Model Number
Custom Hack job
OS
Windows 7 Ultimate 64 bit
CPU
Intel(R) Core(TM)2 Quad CPU Q8200 @ 2.33GHz
Motherboard
GigaByte EP45-UD3
Memory
8 GB Kingston
Graphics Card(s)
Nvidia GeForce 9600GT
Sound Card
Soundblaster Audigy
Monitor(s) Displays
AOC x2 22"
Hard Drives
2 x Samsung 500GB (RAID)
2 x Samsung 2TB
1 x WD Green 2TB
1 x Seagate 1TB
1 x Samsung 500GB
PSU
Thermaltake QFan 750W
Case
CM Scout Gaming
Cooling
Coolermaster V10
Keyboard
Microsoft Wireless Keyboard 1000
Mouse
Microsoft Wireless Optical 2000
Internet Speed
320
Other Info
Winfast PVR2000CP
LG DVD-RAM DVD/RW/DL Super Multi
Linksys WMP300Nx2 Wireless Adapter
Other apps to try if you don't have success with nailzuk's suggestions:

Rkill

Threatfire
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Ignatz Special; 4 speed manual gearbox; factory air conditioning; one of one
OS
Windows 7 Home Premium SP1, 64-bit
CPU
Intel Skylake i5-6600K, not overclocked
Motherboard
AsRock Z170M Extreme 4, micro ATX
Memory
8 GB HyperX DDR4-2666 (2 x 4 GB)
Graphics Card(s)
none; graphics are integrated on CPU
Sound Card
onboard: Realtek ALC1150; external: USB Behringer UF0-202
Monitor(s) Displays
Dell S2340M 23 inch IPS
Screen Resolution
1600 x 900
Hard Drives
System: Crucial MX100 series SSD, 128 GB;
Data: Samsung Spinpoint 103SJ, 1 TB;
Backup: WD Caviar Green WD30EZRX-00D8PB0, 3 TB
PSU
Rosewill SilentNight 500 watt fanless, semi-modular
Case
Antec Solo II
Cooling
Noctua NH-U12S; Noctua F12 intake, Noctua S12A exhaust
Keyboard
Microsoft 200 6JH-00001 USB
Mouse
Dell or Microsoft optical wired; USB
Antivirus
Microsoft Security Essentials and Malwarebytes Premium
Browser
Pale Moon
Other Info
All fans PWM; speeds at idle: CPU circa 500 rpm; intake circa 600 rpm; exhaust circa 600 rpm; CPU temps 27 idle and 47 C load in a warm room (27 C/81 F) when running Intel Extreme Tuning Utility stress test.
Thanks for the information.
I just checked out that Hitman Pro V3.5 and it just had an update that removes the TDL3 Rootkit virus.

Can't hurt.
Thanks
 
Last edited:

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Self Built
OS
Windows 10 Pro
CPU
Intel i5
Motherboard
I have a fatherboard
Memory
I'm old and lost a few chips
Graphics Card(s)
Yup
Sound Card
Yup
Monitor(s) Displays
Samsung 32" UHD
Screen Resolution
3840 x 2160
Hard Drives
Samsung 860 EVO drives
PSU
450 Watt and some fans that blow
Case
Small tower
Cooling
Yes I am cool. lol
Keyboard
Who needs a keyboard?
Mouse
Logitech Laser G7 wireless
Internet Speed
Zippy fast UP and DOWN
Antivirus
I got a shot
Browser
The new Improved EDGE 2020
You must log in or register to reply here.
Back
Top