My friend's desktop had this, but his desktop sucks so I didn't think much of it but now my uncle has it as well, and it seems like its' quite common. Google (and also Ask.com for my uncle) search results are redirecting to something completely different. I click the link on the search results and get redirected to usually an advertisement or something. I ran Malwarebytes twice on my uncle's computer (once in normal mode, once in safe mode) and got rid of some nasty stuff, but the redirect thing still happens. I read on THIS SITE that something called TDSSKiller by Kaspersky Labs works amazing for most people to get rid of it. But I can't find any other information on TDSSKiller or about this site so I don't know if it's reliable. Does anybody here know either another way to get rid of the redirect virus (The site called it the TDL3rootkit) or if TDSSKiller does work?
I don't know anything about TDSSKiller, but you could always try a System Restore to a time before you had the virus. The registry files may be infected so it may not do anything, but it's worth a shot. Also did you try running any other virus programs, like AVG?
Sounds like someone is doing something called "Clickjacking." Basically they'll take the link that you should go to and change it to something different, or plant a file in your system that does it for them. I'd suggest doing a System Restore like Stardust said or using a virus removal program called "HijackThis!" HijackThis! basically scans all the processes running on your computer and allows you to fix or remove them if they're virus or infected processes. It can be a bit risky though since you might remove the wrong process, but it's worth a try if you know what the virus is called.
I'm installing AVG onto his computer as I type this But besides that, nope. Haven't done anything. Well no one's sure when he got the virus so we don't want to do a System Restore because of that, but we may end up doing it anyway if we can't find a way to fix it soon (his computer has other problems and if they persist, we're just wiping it)
