Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Go.google redirect virus
New Posts  All Forums:Forum Nav:

Go.google redirect virus

post #1 of 24
Thread Starter 
So basically I have the redirect virus. I am currently growing gray hair because of it.

I know it has to be, or originated, in the router because every computer on our wireless is experiencing the same symptoms.

When I reset the router, whether hard or soft, the symptoms disappear for a few hours (I haven't really counted how long) but seem to come right back in a short amount of time...

I have tried resetting and changing the passwords to ridiculous things that would take a program years to crack if that is what's going on...

I'm confused out my ass and frustrated like you wouldn't believe. I've ran Malware, Kaspersky, super anti-spyware or whatever it's called, and avast. Any suggestions?
My System
(14 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 2620M (Sandy Bridge) Basic Dell Mobo NVIDIA GeForce 540M 3 GB DDR3 
Hard DriveOSMouseAudio
685 GB Windows 7 Home Premium Razer Diamondback 3G Creative X-Fi Surround HD 
  hide details  
Reply
My System
(14 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 2620M (Sandy Bridge) Basic Dell Mobo NVIDIA GeForce 540M 3 GB DDR3 
Hard DriveOSMouseAudio
685 GB Windows 7 Home Premium Razer Diamondback 3G Creative X-Fi Surround HD 
  hide details  
Reply
post #2 of 24
Just to be clear, you're doing a full scan with malware in safe mode with updated definitions right?

Are you using wpa or better? No wep right?

Im thinking the delay after resetting is just the time it takes to find your new dynamic IP.

Sounds like an active virus able to jump through the network or an active individual close by.
Phoenix
(17 items)
 
Lucent Dreams
(19 items)
 
 
CPUMotherboardGraphicsRAM
Intel 3770k Stock Clocks Gigabyte GA-Z77X-UD5H Galaxy GeForce GTX 560 Ti (Fermi) 32GB Crucial Ballistix Sport 1600Mhz 9-9-9-24 
Hard DriveHard DriveHard DriveOptical Drive
128GB Crucial M4 1TB WD Black 1TB WD Black ASUS 24X DVD Burner 
CoolingOSMonitorKeyboard
Cooler Master Hyper 212 EVO Windows 7 Ultimate 64bit Dell UltraSharp U2312HM Still Deciding 
PowerCaseMouseMouse Pad
SeaSonic SS-660XP NZXT Source 210 Black Razer Imperator 2012 Custom Logo 
AudioOtherOther
None AFT PRO-57U All-in-one USB 3.0 5.25" Media Card... Thermaltake ST0026Z Max 5 Duo SATA HDD Rack 
  hide details  
Reply
Phoenix
(17 items)
 
Lucent Dreams
(19 items)
 
 
CPUMotherboardGraphicsRAM
Intel 3770k Stock Clocks Gigabyte GA-Z77X-UD5H Galaxy GeForce GTX 560 Ti (Fermi) 32GB Crucial Ballistix Sport 1600Mhz 9-9-9-24 
Hard DriveHard DriveHard DriveOptical Drive
128GB Crucial M4 1TB WD Black 1TB WD Black ASUS 24X DVD Burner 
CoolingOSMonitorKeyboard
Cooler Master Hyper 212 EVO Windows 7 Ultimate 64bit Dell UltraSharp U2312HM Still Deciding 
PowerCaseMouseMouse Pad
SeaSonic SS-660XP NZXT Source 210 Black Razer Imperator 2012 Custom Logo 
AudioOtherOther
None AFT PRO-57U All-in-one USB 3.0 5.25" Media Card... Thermaltake ST0026Z Max 5 Duo SATA HDD Rack 
  hide details  
Reply
post #3 of 24
Definitely sounds like one of your computers if infected and keeps reinfecting the router. When you say password, do you mean the Wifi password (Like the WEP/WPA key) or the actual password for the router?
Workstation
(19 items)
 
  
CPUMotherboardGraphicsGraphics
Intel i7 920 c0 @ 3.50 Asus Sabertooth X58 Nvidia gtx 570 Nvidia gtx 210 
RAMHard DriveOptical DriveOptical Drive
12 GB (Patriot 4GB DDR3 1600 Mhz + G.Skill Ripj... OCZ Vertex II 60GB + x2 WD 1TB + WD 500 GB Lite-On DVD Burner LG Blu Ray Burner 
OSMonitorMonitorMonitor
Windows 8 Professional x64, Arch Linux x64 Samsung 22 inch 1920x1080 60Hz Asus 23 inch 1920x1080 IPS Acer 19 inch 1600x900 
KeyboardPowerCaseMouse
Logitech g11 Corsair 750 Watt NZXT Tempest Razer deathadder 3500 dpi 
Mouse PadAudioAudio
OCZ Audigy SE Sony MDR-V6 
  hide details  
Reply
Workstation
(19 items)
 
  
CPUMotherboardGraphicsGraphics
Intel i7 920 c0 @ 3.50 Asus Sabertooth X58 Nvidia gtx 570 Nvidia gtx 210 
RAMHard DriveOptical DriveOptical Drive
12 GB (Patriot 4GB DDR3 1600 Mhz + G.Skill Ripj... OCZ Vertex II 60GB + x2 WD 1TB + WD 500 GB Lite-On DVD Burner LG Blu Ray Burner 
OSMonitorMonitorMonitor
Windows 8 Professional x64, Arch Linux x64 Samsung 22 inch 1920x1080 60Hz Asus 23 inch 1920x1080 IPS Acer 19 inch 1600x900 
KeyboardPowerCaseMouse
Logitech g11 Corsair 750 Watt NZXT Tempest Razer deathadder 3500 dpi 
Mouse PadAudioAudio
OCZ Audigy SE Sony MDR-V6 
  hide details  
Reply
post #4 of 24
Thread Starter 
I am using WPA2 and I mean the password to the router, not to connect to the internet itself.
My System
(14 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 2620M (Sandy Bridge) Basic Dell Mobo NVIDIA GeForce 540M 3 GB DDR3 
Hard DriveOSMouseAudio
685 GB Windows 7 Home Premium Razer Diamondback 3G Creative X-Fi Surround HD 
  hide details  
Reply
My System
(14 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 2620M (Sandy Bridge) Basic Dell Mobo NVIDIA GeForce 540M 3 GB DDR3 
Hard DriveOSMouseAudio
685 GB Windows 7 Home Premium Razer Diamondback 3G Creative X-Fi Surround HD 
  hide details  
Reply
post #5 of 24
Try changing that on a different computer.
Workstation
(19 items)
 
  
CPUMotherboardGraphicsGraphics
Intel i7 920 c0 @ 3.50 Asus Sabertooth X58 Nvidia gtx 570 Nvidia gtx 210 
RAMHard DriveOptical DriveOptical Drive
12 GB (Patriot 4GB DDR3 1600 Mhz + G.Skill Ripj... OCZ Vertex II 60GB + x2 WD 1TB + WD 500 GB Lite-On DVD Burner LG Blu Ray Burner 
OSMonitorMonitorMonitor
Windows 8 Professional x64, Arch Linux x64 Samsung 22 inch 1920x1080 60Hz Asus 23 inch 1920x1080 IPS Acer 19 inch 1600x900 
KeyboardPowerCaseMouse
Logitech g11 Corsair 750 Watt NZXT Tempest Razer deathadder 3500 dpi 
Mouse PadAudioAudio
OCZ Audigy SE Sony MDR-V6 
  hide details  
Reply
Workstation
(19 items)
 
  
CPUMotherboardGraphicsGraphics
Intel i7 920 c0 @ 3.50 Asus Sabertooth X58 Nvidia gtx 570 Nvidia gtx 210 
RAMHard DriveOptical DriveOptical Drive
12 GB (Patriot 4GB DDR3 1600 Mhz + G.Skill Ripj... OCZ Vertex II 60GB + x2 WD 1TB + WD 500 GB Lite-On DVD Burner LG Blu Ray Burner 
OSMonitorMonitorMonitor
Windows 8 Professional x64, Arch Linux x64 Samsung 22 inch 1920x1080 60Hz Asus 23 inch 1920x1080 IPS Acer 19 inch 1600x900 
KeyboardPowerCaseMouse
Logitech g11 Corsair 750 Watt NZXT Tempest Razer deathadder 3500 dpi 
Mouse PadAudioAudio
OCZ Audigy SE Sony MDR-V6 
  hide details  
Reply
post #6 of 24
Scan all computers?
    
CPUMotherboardGraphicsRAM
AMD FX-8150P GIGABYTE 990FXA-UD5 Dual 5870s G. Skill 8GB 1600MHZ 7-8-7-24 
Hard DriveOptical DriveOSMonitor
Corsair Force3 120GB, 1.5TB, 250GB, 80GB DVD-RW+Fan controller {Windows 7 x64} {ASUS} 23" 1080P LED + Dual Samsung 19" 1280x1024 
KeyboardPowerCaseMouse
Basic Logitech keyboard Xigmatek NRP-MC1002 Silver Xigmatek Elysium w/ window, 15 fans Logitech G9x 
Mouse Pad
Xigmatek 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
AMD FX-8150P GIGABYTE 990FXA-UD5 Dual 5870s G. Skill 8GB 1600MHZ 7-8-7-24 
Hard DriveOptical DriveOSMonitor
Corsair Force3 120GB, 1.5TB, 250GB, 80GB DVD-RW+Fan controller {Windows 7 x64} {ASUS} 23" 1080P LED + Dual Samsung 19" 1280x1024 
KeyboardPowerCaseMouse
Basic Logitech keyboard Xigmatek NRP-MC1002 Silver Xigmatek Elysium w/ window, 15 fans Logitech G9x 
Mouse Pad
Xigmatek 
  hide details  
Reply
post #7 of 24
hmm, run tdsskiller and see if it finds anything on any of the computers, however it's a specific scanner but eh might as well try lol.
mah bebe
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 2600k @ 4.7GHz Asus P8P67 Pro Powercolor PCS+ 6970 CF G.Skill RipjawsX 8GB 1600 
Hard DrivePowerCase
WD 1TB Cav. Black Corsair HX850 HAF 932 Adv. 
  hide details  
Reply
mah bebe
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 2600k @ 4.7GHz Asus P8P67 Pro Powercolor PCS+ 6970 CF G.Skill RipjawsX 8GB 1600 
Hard DrivePowerCase
WD 1TB Cav. Black Corsair HX850 HAF 932 Adv. 
  hide details  
Reply
post #8 of 24
Take the computers offline, make sure they are totally clean, in the meantime grab a computer that hasn't been on the network during this whole time, log into the router and change the default login and password, I am not talking about the WEP/WPA key, I am talking about the password to log into the router. I had a customer computer on my network once that had an infection that sat there and tried to logon to the router. If your router password is strong enough it won't break it.

That is probably what is happening and doing what I wrote will fix you up.
Edited by Mygaffer - 5/22/11 at 5:52pm
SBD:
(18 items)
 
  
CPUMotherboardGraphicsRAM
i7-3770k Gigabyte ga-z77x-up4 tb EVGA GTX 980 SC 32GB G.SKILL Trident X F3-1600C7Q-32GTX  
Hard DriveHard DriveOptical DriveCooling
Samsung 840 Pro 256GB SSD Western Digtal 2TB RE4 Plextor 24x DL Burner ThermalTake Water 2.0 Extreme 
OSMonitorMonitorKeyboard
Windows 7 Pro 64-bit Acer XB270HU 2560x1440, IPS-type panel, 144hz, ... EIZO FG2421 1920x1080 VA 120Hz QuickFire Cherry Blue 
PowerCaseMouseMouse Pad
Lepa G1000 1kw Corsair 550D Logitech G400 Roccat Taito 
AudioAudio
Xonar Essence ST Niles SI-275 Amplifier 
  hide details  
Reply
SBD:
(18 items)
 
  
CPUMotherboardGraphicsRAM
i7-3770k Gigabyte ga-z77x-up4 tb EVGA GTX 980 SC 32GB G.SKILL Trident X F3-1600C7Q-32GTX  
Hard DriveHard DriveOptical DriveCooling
Samsung 840 Pro 256GB SSD Western Digtal 2TB RE4 Plextor 24x DL Burner ThermalTake Water 2.0 Extreme 
OSMonitorMonitorKeyboard
Windows 7 Pro 64-bit Acer XB270HU 2560x1440, IPS-type panel, 144hz, ... EIZO FG2421 1920x1080 VA 120Hz QuickFire Cherry Blue 
PowerCaseMouseMouse Pad
Lepa G1000 1kw Corsair 550D Logitech G400 Roccat Taito 
AudioAudio
Xonar Essence ST Niles SI-275 Amplifier 
  hide details  
Reply
post #9 of 24
Thread Starter 
So what I need to do is take all of my computers offline, find one that hasn't logged into the router yet, and change the administrator password to the router itself?
My System
(14 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 2620M (Sandy Bridge) Basic Dell Mobo NVIDIA GeForce 540M 3 GB DDR3 
Hard DriveOSMouseAudio
685 GB Windows 7 Home Premium Razer Diamondback 3G Creative X-Fi Surround HD 
  hide details  
Reply
My System
(14 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 2620M (Sandy Bridge) Basic Dell Mobo NVIDIA GeForce 540M 3 GB DDR3 
Hard DriveOSMouseAudio
685 GB Windows 7 Home Premium Razer Diamondback 3G Creative X-Fi Surround HD 
  hide details  
Reply
post #10 of 24
Quote:
Originally Posted by JMac7 View Post
So what I need to do is take all of my computers offline, find one that hasn't logged into the router yet, and change the administrator password to the router itself?
Another thing you can do is change the password on the router again and log into the router and look at the log. You'll see that one of the computers keeps trying to access it. You'll then know which computer is infected.
SBD:
(18 items)
 
  
CPUMotherboardGraphicsRAM
i7-3770k Gigabyte ga-z77x-up4 tb EVGA GTX 980 SC 32GB G.SKILL Trident X F3-1600C7Q-32GTX  
Hard DriveHard DriveOptical DriveCooling
Samsung 840 Pro 256GB SSD Western Digtal 2TB RE4 Plextor 24x DL Burner ThermalTake Water 2.0 Extreme 
OSMonitorMonitorKeyboard
Windows 7 Pro 64-bit Acer XB270HU 2560x1440, IPS-type panel, 144hz, ... EIZO FG2421 1920x1080 VA 120Hz QuickFire Cherry Blue 
PowerCaseMouseMouse Pad
Lepa G1000 1kw Corsair 550D Logitech G400 Roccat Taito 
AudioAudio
Xonar Essence ST Niles SI-275 Amplifier 
  hide details  
Reply
SBD:
(18 items)
 
  
CPUMotherboardGraphicsRAM
i7-3770k Gigabyte ga-z77x-up4 tb EVGA GTX 980 SC 32GB G.SKILL Trident X F3-1600C7Q-32GTX  
Hard DriveHard DriveOptical DriveCooling
Samsung 840 Pro 256GB SSD Western Digtal 2TB RE4 Plextor 24x DL Burner ThermalTake Water 2.0 Extreme 
OSMonitorMonitorKeyboard
Windows 7 Pro 64-bit Acer XB270HU 2560x1440, IPS-type panel, 144hz, ... EIZO FG2421 1920x1080 VA 120Hz QuickFire Cherry Blue 
PowerCaseMouseMouse Pad
Lepa G1000 1kw Corsair 550D Logitech G400 Roccat Taito 
AudioAudio
Xonar Essence ST Niles SI-275 Amplifier 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Go.google redirect virus