Last monday for some reason every time I would go to Google, MSN or Yahoo to do a search I was brought up results. However when you click on these results they go to adsense / ad sites encouraging you to click.
After looking in my status bar over the links I noticed that went to something called Go.Google I highly doubt this is a google service but it did seem a tad fishy. Basically I could not look up any information on how to remove it either because the results are brought up.
However if I knew a direct website url I could go to any website I wanted. I ended up going onto another PC and searching for go.google malware removal and I found a site which had the basic instructions on how to remove it.
Here is how:
Awnser to the problem guys…. worked for me….
1.Go to http://www.download.com in the search bar.
2.Search for Malwarebytes.
3.Download the version there (try using firefox because the download manager on IE7 gets infected)
4.When downloaded, install and check for updates.
5.Run the scan which will last approx 30 mins.
6.When you finish this, remove it all and you might be asked to restart your computer.
It worked for me and i had this virus for about a month! Let me know it it helps, thanks guys.
Feel free to ask any quesions.
Some guy named Max posted in and I am grateful he did, I wanted to let you all know about this because I believe some of you may have it and you don’t even know! The real bummer about this malware is nobody seems to know how someone gets it.
I don’t go to any bad sites or anything on my pc’s so I am very interested to know how it first of all got past my full paid version of Eset Smart Security and secondly how-come the only way to remove it is with a specific malware removal tool as the instructions above state.
Any ideas guys?
Filed under: Personal Posts
Like this post? Subscribe to my RSS feed and get loads more!
Better make sure you have your virus definitions up to date and download the latest patches from MS (if you’re on a MS OS). Conficker C is nasty. I’m putting together a blog to help people remove & protect themselves against it if the SHTF.
Wow surprised norton antivirus couldn’t pickit up for people. Thanks for alerting me. Now I know to look out for go.google
Malwarebytes is great and will find almost anything it seems. Thanks for the info.
I’ve visited frequently today but I wanted to read some past posts. I wish I had know about your blog long ago.
not sure where mine came from but started after updating Google Earth… strange.
Malwarebytes is a great program for removing badware.
Thanks for the tip!
I try this program too. It is very useful and lightweight than another solution like sophos or what else.
Thank you.
I am using malware+avast+adaware for my PC. I don’t have any problem encountered like this on my PC.
Great blog good work
jill xx
I have also used this software.I think Malwarebytes is a very good software.But anti-virus software often decrease my computer speed so I tried to use computer without anti virus.If some virus I found I used anti-virus just for once and then removed it.
Looks like the problem was originated from a vulnerability on the Layered Tech Help Desk…
Here is the email I just received from LayeredTech:
[PLEASE READ]
Dear Layered Tech Customer ~
As a result of a routine internal security analysis, a vulnerability was detected which allowed certain communications between the Layered Tech help desk and clients to be vulnerable to interception. While normal help desk communications are not a source of concern, occasionally LT clients submit unencrypted passwords via e-mail or the help desk ticketing system which could result in unauthorized system access by 3rd parties.
As a result, we strongly advise all customers to take proactive measures and change user and system credentials.
Given the overall industry rise in security issues, it is best to err on the side of caution and maintain robust security procedures. Layered Tech also recommends the following security practices:
1) Always change passwords after sharing them via e-mail, or upon receipt of new system login details.
2) Ensure that you have a defined interval for password changes (every 30, 60, or 90 days)
3) Disable/remove non-essential applications, services, and user accounts
4) Set regular maintenance intervals to update core applications and kernels, to address known security issues
5) Change default ports for administration and remote access to non-standard so they are not easily identifiable
We value your business, and will continue working diligently to safeguard against any future vulnerabilities. Please note that SSL is now required to access the LT help desk system. Clients who are unable to gain access to the system should contact our Client Services team.
Should further information become available following our extensive security review and analysis, we will update you.
Thank you,
Layered Tech, Client Services
accounts@layeredtech.com
(866) 584-6784 or (972) 398-7000
I didnt face this problem yet but thank lots sharing this. Also i have got AVG antivurs so that display everything (Ip address, either its virus link or not etc.) on search result before we click on link.
I got Avast and it shows all the details…..
I know how you get it!
i got the same problem im still trying to get rid of it
but i looked into it and you get it from when you go on
a certain advertisment and end up having a virus sneaking through the advertisment into your hidden files!
thats why you need to go into your hidden files just to deactivate it
These viruses drive me nuts. Sometimes they block access to sites that can help you remove them! I do like XoftSpy (I had it on my old computer but it’s not compatible with Vista
)
I am a computer tech with years of experience. I recommend Malwarebyte and Kaspersky Internet Security for all computers still running XPs. XP is great, however, it is much less secure than Vista (for whatever reason you hate it) and thus requires a much stronger security sofware than the free AVG. KIS is the best so far.
I agree with you Al. Malwarebyte and Kaspersky are the best internet seucurity for XPs.
one day one day i went shopping outside ?and in an UGG store?I found some kinds of uggs i love most?they are: womens tall classic ugg boots discount womens tall classic ugg boots discount womens tall classic ugg boots discount womens tall classic ugg boots discount womens tall classic ugg boots discount womens tall classic ugg boots discount uggs chestnut classic tall uggs chestnut classic tall uggs chestnut classic tall uggs chestnut classic tall uggs chestnut classic tall uggs chestnut classic tall uggs black classic tall uggs black classic tall uggs black classic tall uggs black classic tall uggs black classic tall uggs black classic tall
sale ugg cardy man is not made for defeat. a ugg bailey button man can be destroyed but not defeated.No rational man can die without cheap ugg uneasy apprehension. Better ugg classic mini be unborn than untaught,for ignorance is the root of misfortune.Genius17 without education is like silver in the ugg classic cardy mine.
The only ones ghd hair iron among you who will be really happy ghd mk4 iron are those who will have sought and foundhow to serve. When the fight begins ghd iv dark styler within ghd iv kiss styler himself, a man’s worth something ghd hair iron .
The supreme happiness of timberland men’s 6 inch life is the conviction that we are sale timberland loved.There is nothing permanent except change timberland classic There is no such timberland boots uk thing as darkness; only a failure to see. No man is happy cheap timberland boots who does not think himself so.
Good movie, veryLouis Vuitton good
Ah well this Louis Vuittonvideo
Have you worn boots in summer? [url=http://www.homeugg.com]Ugg boots[/url] can be worn at any time of the year. You don’t need to pay for extra taxes in solid stores that are so stupid. Why you must to buy the expensive price with original[url=http://www.megaugg.com] Ugg boots[/url]? I think the replica[url=http://www.ugg-store.net] Ugg boots [/url]are also can dress up well.Despite the popularity of [url=http://www.landugg.com]Ugg boots[/url], they’ve recently been drawing criticism for potentially harmful effects on the feet. Specialists have said that the flat-foot design of Uggs can cause serious pain, discomfort, arch problems and even shin splints over
time. This is due to the fact that the muscles in the leg from the knee down would have to work particularly hard to stabilize the body in an unsupportive environment.
Is it an anti virus software? I will download and see the result!
An ugg lo pro button man is not made for defeat.An ugg bailey button man can be destroyed but not defeated.No rational man can die without ugg boots uneasy apprehension.Better ugg knightsbridge be unborn than untaught,for ignorance is the root of misfortune.Genius17 without education is like silver in the uggs boots mine.
My computer started freaking out on me four days ago, I didn’t visit any abnormal websites or anything. My avast antivirus kept warning me about viruses and I would delete them or ‘move to chest’ and they would keep coming every 30 seconds. Then, a mysterious anti-virus program that I don’t have started telling me my computer was infected and wanted me to use it to scan my computer. This mysterious anti-virus program would not allow me to open anything, including task manager. I did multiple Avast boot-scans, started my computer in safe-mode to download Spyware Doctor (which is not free, they lie.) I ran multiple scans on Spyware Doctor, eventually they were clean. Everything seemed fine, until I’d try to get on my school’s webpage or google; I couldn’t get on blackboard to download powerpoints for class, and I couldn’t google search anything plus random ads popped up when not even on google (which normally my Bsecure program stops most). I ran another Avast boot scan and there was this one infected file, that nothing would touch: hiberfil.sys infected by zipper-2778. I went and disabled hibernation mode, but I was still having the internet problem. I read about the google problem on other blogs and did a registry scan and repair, also didn’t work. I am currently running the full Malwarebytes’ scan, 45 minutes into it and 46 objects infected…so far. If this does work does anybody have suggestions on what to do next? (Free would be the best, because I’m a college student.) I really don’t want to have to ‘start over’ and re-install windows, I am 8 hours away from my windows cd and would like to be able to access my online class before I can get my windows cd from my dad at Thanksgiving, in two weeks.
If this *doesn’t work….sorry
OH MY GOSH, I think it worked!!! I felt like I was on an episode of House! THANK YOU
Thanks for sharing the instructions on how to remove malware. My PC is experiencing this right now and I have no idea at first that malware may be causing the problem. At least now I know.
wow, my friends having this same problem. thank you so much =}
I have the go.google bug but malwares was unable to remove it. Now I’m tired of it and frustrated. Any suggestions??
Thank you so much for this post, I have been looking for hours or even days now for a simple method to remove this malware. I followed these simple 6 steps and can now freely use google again
Thank you thank you thank you!
Hello there,
Thanks for the information. I will be buying a computer soon and it will be a great help for me. I’m really familiar with go.google virus/malware removal. All I know is trojans and some type of viruses. So, thank you for the great tip.