Solved IE and Firefox redirecting every search link

Could you please try surfing to 74.125.224.72
Copy/paste it into the address bar of IE or Firefox or ...
And it should take you to Google.
Then do a search like you mentioned e.g. cake recipe
And let us know if the links returned from that search are normal or if they still take you to crazy places.

(Great! Now I'm hungry for some cake. See what you did :-)
 

My Computer My Computer

At a glance

W7 Pro SP1 64biti78GBIntel HD Graphics
Computer type
Laptop
Computer Manufacturer/Model Number
Employer provided Dell Latitude
OS
W7 Pro SP1 64bit
CPU
i7
Memory
8GB
Graphics Card(s)
Intel HD Graphics
Hard Drives
crappy SSD
Antivirus
Employer mandated Symantec Endpoint Protection
Browser
Pale Moon 64bit, IE11 64bit & Chrome 64bit

My Computer My Computer

At a glance

Windows 10 Home x64INTEL Core i5-750 Quad-Core 3.37GHzHyperX Fury Black Series 8GB (2 x 4GB) 1866MhzEVGA GeForce GTX 750 Superclocked 1GB 128-Bit...
Computer type
PC/Desktop
OS
Windows 10 Home x64
CPU
INTEL Core i5-750 Quad-Core 3.37GHz
Motherboard
ASUS P7P55D
Memory
HyperX Fury Black Series 8GB (2 x 4GB) 1866Mhz
Graphics Card(s)
EVGA GeForce GTX 750 Superclocked 1GB 128-Bit GDDR5
Monitor(s) Displays
LG 32MA68HY 32" IPS
Screen Resolution
1920 x 1080
Hard Drives
Samsung 840 Evo 120GB, SEAGATE 500GB Barracuda® 7200.12, SATA 3 Gb/s, 7200 RPM, 16MB cache
PSU
ANTEC TruePower New TP-550, 80 PLUS, 550W
Case
ANTEC Three Hundred Illusion
Cooling
COOLER MASTER Hyper 212 Plus, 4 x 120mm 1 x 140mm Noctua's
Internet Speed
85 + Mbps
Antivirus
Avast
Browser
Vivaldi
I scanned with ESET and Free Malwarebytes and neither of them found any problem.

Also I went to 74.125.224.72 and all search results worked fine.
 

My Computer My Computer

At a glance

Windows 7 64 bit
Computer Manufacturer/Model Number
Compaq presario cq56
OS
Windows 7 64 bit
I scanned with ESET and Free Malwarebytes and neither of them found any problem.

Also I went to 74.125.224.72 and all search results worked fine.

Yet if you go to google.com search is still redirected?
 

My Computer My Computer

At a glance

Windows 7 Ultimate x64
OS
Windows 7 Ultimate x64
It seems the problem is now fixed, I dont know how or when but since I turned my computer on tonight it has stopped doing it.
 

My Computer My Computer

At a glance

Windows 7 64 bit
Computer Manufacturer/Model Number
Compaq presario cq56
OS
Windows 7 64 bit
Great to see it's all straightened out!

Although wish we knew what fixed it!!
 

My Computer My Computer

At a glance

Windows 7 Ultimate x64
OS
Windows 7 Ultimate x64
Hmmm the problem is back! a message popped up from AVG saying Threat was blocked it says threat name is: Exploit Blackhole Exploit Kit Detection. this came up a few minutes before it redirected me again and it came up when i was on the site it directed me to.
 

My Computer My Computer

At a glance

Windows 7 64 bit
Computer Manufacturer/Model Number
Compaq presario cq56
OS
Windows 7 64 bit
Hmmm the problem is back! a message popped up from AVG saying Threat was blocked it says threat name is: Exploit Blackhole Exploit Kit Detection. this came up a few minutes before it redirected me again and it came up when i was on the site it directed me to.
If you have not already done so - you can re-install PeerBlock.

But uninstall every version of Java that you might have... since that is one of the things that the Blackhole Exploit Kit uses. Edit: you might even find that you can live without Java. It just depends on what you do with your computer.

Did you open a PDF file recently? That is another way that Blackhole Exploit Kit gets you.
 

My Computer My Computer

At a glance

W7 Pro SP1 64biti78GBIntel HD Graphics
Computer type
Laptop
Computer Manufacturer/Model Number
Employer provided Dell Latitude
OS
W7 Pro SP1 64bit
CPU
i7
Memory
8GB
Graphics Card(s)
Intel HD Graphics
Hard Drives
crappy SSD
Antivirus
Employer mandated Symantec Endpoint Protection
Browser
Pale Moon 64bit, IE11 64bit & Chrome 64bit
Yes I received a PDF in email and opened that. Also wil uninstalling java have any effect on my system?
 

My Computer My Computer

At a glance

Windows 7 64 bit
Computer Manufacturer/Model Number
Compaq presario cq56
OS
Windows 7 64 bit
First, let me make it clear that I'm not saying that you have been infected by this Blackhole Exploit Kit. I cannot really make that call via forum posts. The fact that antivirus tools are not finding anything wrong and yet your computer is acting just like it would for this particular infection - might mean that you have been blessed with a version that the AV companies have not detected yet.

I'm not an expert on this infection (or any other infections) but I am a student of this one. If you understood a bit about how it works, you would understand why antivirus tools may fail to detect it. Here is a nice article about it. At least read the section named "What are BEPs?" and the first part of the section named "The Infection Process". If you want a feel for what each of the 16 known versions of this exploit does - glance at this blog.


If the e-mail that sent you a PDF is from a reputable source, then you are probably okay. Hopefully your PDF reader is up to date.


You probably only use Java inside of a web browser and some game websites require it.

e.g. Bookworm on Yahoo! Games

You might also use java if you change certain things on Android based smartphones... and/or to develop/debug smartphone apps.

If you uninstall java and you visit a website that requires it - the website will tell you that you need it. You can then decide if it is really worth it to re-install java just to see that part of that website or play that game. You might never miss java. You might never visit a website that uses it - at least that you noticed using it. That is how some versions of the Blackhole Exploit Kit gets you. You can visit an infected website and the exploit starts java inside your browser & does its bad things.

The reason why I say to uninstall every copy of java is - I have cleaned up older computers that have had as many as a dozen different versions installed (taking up more than a gig of space). For a long time, updating java would not uninstall the old version, it just installs a whole new copy of java - so things got messy real fast. Your system might be new enough to not have too many versions installed - or you might not have updated java, so there might only be one version on the computer.

If you Google...

"uninstall java" security

...you will find lot of articles where people suggest living without java. Like I said, it just depends on if you need it and the best way to find out if you need it is to uninstall it and just see if you miss it.

If you decide that you want to put it back - I suggest that you get it from filehippo instead of from the Oracle's website. The reason being: Oracle's website is suggesting "version 6 update 31" [which means that there has been 31 updates to version 6]. Version 7 has been out for a while now and has had 3 updates. You will probably never notice the difference if you install version 7 now (and keep it updated).

You have a 64 bit operating system - but you are probably using a 32 bit version of Internet Explorer of Firefox...... that is why I linked you to the 32 bit version of java - should you want to re-install it.
 

My Computer My Computer

At a glance

W7 Pro SP1 64biti78GBIntel HD Graphics
Computer type
Laptop
Computer Manufacturer/Model Number
Employer provided Dell Latitude
OS
W7 Pro SP1 64bit
CPU
i7
Memory
8GB
Graphics Card(s)
Intel HD Graphics
Hard Drives
crappy SSD
Antivirus
Employer mandated Symantec Endpoint Protection
Browser
Pale Moon 64bit, IE11 64bit & Chrome 64bit
I need java becuase I play alot of games but I will uninstall all current versions and download java 7.
The PDF email was from an article that someone on my facebook page wanted me to read. When you say I mite be blessed with a version that the AV companies have not detected yet what do you mean? I just want to get rid of this and have my computer back to normal, if the AV companies havent detected this yet how can i get rid of it?
 

My Computer My Computer

At a glance

Windows 7 64 bit
Computer Manufacturer/Model Number
Compaq presario cq56
OS
Windows 7 64 bit
I need java becuase I play alot of games but I will uninstall all current versions and download java 7.
The PDF email was from an article that someone on my facebook page wanted me to read. When you say I mite be blessed with a version that the AV companies have not detected yet what do you mean? I just want to get rid of this and have my computer back to normal, if the AV companies havent detected this yet how can i get rid of it?

I think "blessed" was a little playful sarcasm by UsernameIssues, in the sense you were "lucky" enough to get infected by a new version of malware that AV companies haven't had the time yet to update their software to be able to detect it.

No AV software is 100%, that's why you use a router, software firewall, the AV software, and maybe malware scanners to provide "layers" of protection. And on top of that, the common sense of the user to determine what links are safe to click on and what sites are safe to visit. That's one of the most important layers.

Was that PDF you opened relevant to you. I've heard of infections occuring where Facebook users are vulnerable in the same way as email users (gets something from someone they know but it's really coming from a shady source).

Let us know what happens after removing Java...
 

My Computer My Computer

At a glance

Windows 7 Ultimate x64
OS
Windows 7 Ultimate x64
Thx sibbil for explaining "blessed" - you hit the nail on the head - so to speak.
 

My Computer My Computer

At a glance

W7 Pro SP1 64biti78GBIntel HD Graphics
Computer type
Laptop
Computer Manufacturer/Model Number
Employer provided Dell Latitude
OS
W7 Pro SP1 64bit
CPU
i7
Memory
8GB
Graphics Card(s)
Intel HD Graphics
Hard Drives
crappy SSD
Antivirus
Employer mandated Symantec Endpoint Protection
Browser
Pale Moon 64bit, IE11 64bit & Chrome 64bit
Anytime! It is a wretched blessing though, isn't it..
 

My Computer My Computer

At a glance

Windows 7 Ultimate x64
OS
Windows 7 Ultimate x64
It was definitely not a shady source, the PDF was just an article about something related to my facebook page. So if the AV companies havent detected this exploit kit yet does that mean I cant get rid of it?
 

My Computer My Computer

At a glance

Windows 7 64 bit
Computer Manufacturer/Model Number
Compaq presario cq56
OS
Windows 7 64 bit
One of the bike enthusiasts websites that I frequent at times gets ads infected and serves it up to viewers of course. While surfing at work the last week or so I saw the microtrend analysis blocked a few of these ads. Here at home I have no problem because I use ad blocker.

Today at work every google search result I clicked on led to a happli or beebli page or other "redirect". Sigh. No MTBR at work for a while I guess. This is my 1st browser hijack or whatever you want to call it in over 6 years at work and I an a very HEAVY user. Ugh--guess always a first time.

IT is running malware bytes now. I left work after well over 100, 000 items scanned. I hope they get it cleaned.
 

My Computer My Computer

At a glance

windows 7 Professional 64 BitI7-3930G.Skill 4X 4 GB DR3 240 pin 16GB totalEVGA 670
Computer Manufacturer/Model Number
Custom build; parts from the Egg
OS
windows 7 Professional 64 Bit
CPU
I7-3930
Motherboard
Asus P9X79 PRO
Memory
G.Skill 4X 4 GB DR3 240 pin 16GB total
Graphics Card(s)
EVGA 670
Sound Card
Energy Take 5, Sennheiser HD 205 phones, X-FI
Monitor(s) Displays
Hanns G 21.5" HH221 and Samsung 19" 940BW and Hannspree
Screen Resolution
2X 1920X1080 and 1X 1440X900
Hard Drives
3-- internal 250 GB WD; 1-- internal 1 TB Samsung ---plus 3 WD external HDs (sizes vary to 1.5 TB); Crucial M4 128GB SSD, 1 Pioneer BDR-207 Bluray writer;
and 1--LG Lightscribe DVD drive
PSU
1000 Watt XFX Pro Series
Case
Thermaltake Chaser
Cooling
Corsair H80
Keyboard
Logitech Wireless and backlit
Mouse
Logitech Rollerball
Other Info
79 " long desk from Ikea. Sauder 71 inch long "speaker" shelf.

Optical and analog outs to a Yamaha RX-V 650 driving Energy Take 5.1 speaker system. Technics TT. Realistic mixer. Senns cans.
So if the AV companies havent detected this exploit kit yet does that mean I cant get rid of it?

Not necessarily. You've got to start scanning again using the links previously mentioned in this thread. Did you uninstall Java?
 

My Computer My Computer

At a glance

Windows 7 Ultimate x64
OS
Windows 7 Ultimate x64
I need java becuase I play alot of games but I will uninstall all current versions and download java 7........
It would nice to get an update on how this is going for you. Can you please let us know if you were able to test your surfing without Java for a few days? And, did you come across a website that asked you to re-install Java? Or did you just install it before you needed it. I cannot tell from this post.
 

My Computer My Computer

At a glance

W7 Pro SP1 64biti78GBIntel HD Graphics
Computer type
Laptop
Computer Manufacturer/Model Number
Employer provided Dell Latitude
OS
W7 Pro SP1 64bit
CPU
i7
Memory
8GB
Graphics Card(s)
Intel HD Graphics
Hard Drives
crappy SSD
Antivirus
Employer mandated Symantec Endpoint Protection
Browser
Pale Moon 64bit, IE11 64bit & Chrome 64bit
I unistalled java and realised the games I play dont need it so I just left it uninstalled, no websites have asked me to reinstall it and surfing without it is exacly the same as when i had it
 

My Computer My Computer

At a glance

Windows 7 64 bit
Computer Manufacturer/Model Number
Compaq presario cq56
OS
Windows 7 64 bit
I unistalled java and realised the games I play dont need it so I just left it uninstalled, no websites have asked me to reinstall it and surfing without it is exacly the same as when i had it
Have you had any redirect problems while Java was uninstalled?
 

My Computer My Computer

At a glance

W7 Pro SP1 64biti78GBIntel HD Graphics
Computer type
Laptop
Computer Manufacturer/Model Number
Employer provided Dell Latitude
OS
W7 Pro SP1 64bit
CPU
i7
Memory
8GB
Graphics Card(s)
Intel HD Graphics
Hard Drives
crappy SSD
Antivirus
Employer mandated Symantec Endpoint Protection
Browser
Pale Moon 64bit, IE11 64bit & Chrome 64bit
Back
Top