如何對付Google Redirect Virus呢?


都是微軟的錯,為什麼要得罪黑客,還得我被的電腦被攻擊了。話說這個病毒在全球已經有300萬部電腦受感染(據Kaspersky Lab的報告說)。這個病毒的名稱比較多,但比較正統的是:TDSServ。據說是俄羅斯人發明的(變態的)。卡巴斯基還說,這個病名是史上設計最複雜的病毒,嚴格來說,應該說是惡意程式。

防毒軟件可以避免嗎?如果你使用Microsoft Security Essential的話,就要跟你的Windows Say拜拜了~我當初還以為這個防毒軟件很厲害,在VB100的評級竟然有’Very Good",。唯一解釋他【廢了】的原因是:Anti-virus的軟件是沒用的,一定要Internet Security才行,例如金山毒霸的安全套裝(什麼?這個垃圾?)。

他有什麼厲害之處?他竟然可以把自己偽裝成系統的硬件驅動程式,用來確保一開機,就能啟動,如果是普通的防毒軟件通常是無法察覺的(例如MSE)。除外,他還會把自己不斷複製到電腦硬碟的不同地方,使防毒軟件永遠清除不了(太可怕了~)。

他的【作用】:顧名思義,就是在用戶按了Google Search的結果後,就會彈出煩人的廣告,幾時在不同的瀏覽器也有同樣的效果,因此顯然不會軟件的問題。換句話說,從新安裝過瀏覽器是沒有用的。

那如何解決呢?以現今的的科技來說,是沒有方法解決的,但有不同的辦法(毆飛~)可以解決的。雖然我全部辦法都試過了,但全部對我的電腦沒效,可惜~如果你的電腦還是新安裝的,不如洗機吧,不要浪費時間了~

當你剛剛見到它…

1. eHow的辦法:主要適用軟件掃描電腦,然後在找出有問題的Driver

(From http://www.ehow.com/how_5842581_remove-google-redirect-virus.html)

How to Remove Google Redirect Virus

Google redirect virus is the latest threat on Internet and it mainly affects web browsers. it is designed to manipulate google search results. This virus gets installed through a trojan horse and when you search on Google for something, It hides the google results and shows you advertisements or affiliate links related to that subject. This google redirect virus can also show you false advertisements, popups, redirect you to spam pages and lots more. You need to remove this virus as soon as it is detected. It won’t even let you search on Google and it is a clear indication that you need to protect your computer in future by using a Spyware Remover.

Instructions

  • Spyware Doctor which you can download from the link below in resources section.
    • 1

      In order to remove Google Redirect Virus, first you need to know what this threat is and how does it harm your computer? The malware lives up to its name and causes redirection of search results. If you search something on Google, this virus will redirect your to another malicious websites and advertisements. It won’t let you see genuine results from Google. Apart from this, this virus can also do the following gimmicks :

      A) It will show you errors saying that filename.exe is not a valid WIn32 application.
      B) If you download and try to install a new program, It may tell you that setup files are corrupted and you need to download a fresh copy. It will keep bugging you again and again.
      C) It will infect Internet Explorer, Firefox and then redirect you to malicious websites showing advertisements and pop ups.

    • 2

      It is extremely important that you remove Google Redirect virus as soon as possible To remove Google Redirect Virus, you need to follow these steps :

      Please click on “Start–>Run". Type “devmgmt.msc" and Click on OK. This will run Device Manager. In Device Manager, click on “View–>Show Hidden Devices".

    • 3

      Please expand all the devices by click on the “Plus" sign. Now try to find “TDSSserv.sys" right click Disable. Please make sure that you do not select the Un-Install option otherwise infection will be back once you reboot your computer.

    • 4

      After disabling the TDSSserv.sys, please download a Spyware Remover and remove Google redirect Virus completely from your system. Please note that you need to remove several registry entries to remove it completely and you never know If you have other threats in your system. Be wise and remove it with a Spyware Remover Software.

但你沉不住氣的時候…

1. BrightHub的辦法:主要是搜尋有問題的Driver、硬碟裡的病毒、針對TDSServ的掃毒…

(From http://www.brighthub.com/internet/google/articles/66090.aspx)

TDL3 Rootkit has caused the Google redirect virus infection. A person who is using Google as a home page or search engine is redirected to visiting unwanted websites. Google redirect virus removal is detailed in this article.

If you are being redirected to an unwanted website or another search engine, your browser is not only hijacked by a Trojan, but the Google Redirect Viruscomputer is also infected with a TDL3 rootkit as well. This threat is also known as the TDSS or Alureon rootkit. Many anti-malware vendors have failed to detect and prevent the infection in the past months, but to date, the latest variant of TDL3 rootkit is possible to remove using several tools and malware removal programs.

The first method to use is to run a scan using an anti-malware removal program that is fast in detecting the TDL3 rootkit. By fast detection, I mean that the security vendors that are able to release a detection and removal in no time. Using anti-malware programs to scan and remove is important, enabling you to find other malware that has resided in your computer as well as the TDL3 rootkit.

  • A-squared Free or A-squared Anti-Malware – both versions provide a scanner and remover of Google redirect virus (AKA TDL3 rootkit). A-squared flags the said infection as Rootkit.Win32.TDSS!IK. Note the IK in the threat name which means, the Ikarus detection. Ikarus is another antivirus engine that is integrated in A-squared programs.
  • Malwarebytes Anti-malware Free (AKA MBAM) and its paid edition – another anti-malware vendor that is fast in adding detection to latest threats. Free and paid editions of MBAM offer a scan and removal of Google redirect virus.
  • SUPERAntiSpyware Free and SUPERAntiSpyware Pro – like A-squared and MBAM, both programs of SUPERAntiSpyware provides a scan and removal options. SUPERAntiSpyware will detect and remove the said Google redirect virus infection as well.

If, for some reason the removal is not successful, this can happen if the infection is a new variant of TDSS rootkit. You should start using standalone removal tool. Choose any of the free tools below to remove the Google redirect virus:

If you rather use an online scanner and remover, I suggest using Trend Micro Housecall and ESET Online Scanner.

Note that there are other removal tools for the Google Redirect virus infection such as XDelBox and ComboFix. However, XDelBox is a beta program which means it can cause problem since it is beta software. ComboFix is easy to use but you are better off using it, only if you can follow a self-help guide. If not, just use the above-mentioned scanners or standalone removal tools or visit the malware removal forum over at Aumha.org or BleepingComputer.com. There are resident malware analysts in these forums to help you remove the Google redirect virus.

Read more: http://www.brighthub.com/internet/google/articles/66090.aspx#ixzz1TCSL69P0

2. 更多的辦法: http://www.google.com.hk/search?sourceid=chrome&ie=UTF-8&q=TDSServ

當你絕望的時候…

1. 洗機吧~

當你恨死Microsoft的時候…

1. 用Ubuntu吧~

Former Ubuntu logo. New version at File:Ubuntu...
Image via Wikipedia

2 thoughts on “如何對付Google Redirect Virus呢?

塗牆

在下方填入你的資料或按右方圖示以社群網站登入:

WordPress.com Logo

您的留言將使用 WordPress.com 帳號。 登出 / 變更 )

Twitter picture

您的留言將使用 Twitter 帳號。 登出 / 變更 )

Facebook照片

您的留言將使用 Facebook 帳號。 登出 / 變更 )

Google+ photo

您的留言將使用 Google+ 帳號。 登出 / 變更 )

連結到 %s