Remove Computer Threats

Having troubles with PC threats and malwares? Get Help Now!

How To Remove Google Redirection Virus – Manually Get Rid of it

1 Comment

Hi people, today one of customers of Tee Support reports that keeps attacking his computer and all of his Google search results are redirected to ads sites including so I would like to start a topic of it.

What is actually?

The domain of is defined as a fishy site that can hijack your web browsers and lead all of your internet traffics to its site that replaces legit sites available to be found on Google search engine. You can browse a site by typing its address on your web browser’s address bar directly but you are not allowed to click and visit the sites found on Google directly. An exception is that you cannot type FaceBook’s address on the address bar and visit Facebook directly because has listed Facebook on its blacklist. The Google redirection is only the iceberg of the problems. On the background, keeps tracing your computer activities and communicates with remote server to try to send your personal info to cyber criminals. Nobody will be comfortable with privacy violation so it is a wise choice to remove infection from your computer immediately.

What is the technology that created’s designer used rookit technology which is very popular recently for rookit can easily break the antivirus’s protection and prevent from antivirus scanning and removal. The rookit that caused Google redirection symptoms is good at hiding deep on your system and it scatters its malicious files in different corners of your computer.

How to remove completely if your antivirus failed to work? – You can follow the manual removal instructions provided on this post to get rid of thoroughly

Step one – Boot your computer into safe mode with networking

Boot your computer into Safe Mode with Networking. To perform this, please restart your computer. -> As your computer restarts but before Windows launches, tap “F8″ key constantly. -> Use the arrow keys to highlight the “Safe Mode with Networking” option and then press ENTER. -> If you don’t get the Safe Mode with networking option, please restart the computer again and keep tapping “F8″ key immediately.

Step two: open your Task Manager by pressing Ctrl+Alt+Delete keys and then stop the rookit process:

[random name].exe of
[random].dll of

Step three- delete the following files created by in Local disk C hard drive:

%AllUsersProfile%\Application Data\[random name].exe
%AllUsersProfile%\Application Data\[random name].dll
%System%\drivers\UAC[RANDOM CHARACTERS].sys
%Temp%\tmp[RANDOM NUMBERS].tmp

Step four – open your Registry Editor by typing Regedit in your search bar on Start menu and then delete the malicious registry entries of

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “CertificateRevocation” = ’0′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “WarnonBadCertRecving” = ’0′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations “LowRiskFileTypes” = ‘/{hq:/s`s:/ogn:/uyu:/dyd:/c`u:/bnl:/ble:/sdf:/lrh:/iul:/iulm:/fhg:/clq:/kqf:/`wh:/lqf:/lqdf:/lnw:/lq2:/l2t:/v`w:/rbs:’
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments “SaveZoneInformation” = ’1′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System “DisableTaskMgr” = ’1′
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search\CustomizeSearch=[site address]
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\CustomizeSearch=[site address]
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar=[site address]
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SearchAssistant=[site address]

What if you cannot manually remove on your own due to you are not good at computer’s rookit removal?

Tee Support, my company, is created to fix your various computer problems according to your concrete conditions always. We can provide step-by-step guide or secure remote tech support assistance (if you like) to help you fix your computer and Mac problems anywhere anytime. If you cannot remove, you can click here: Start a live chat with online expert to contact us to solve virus problems immediately!

One thought on “How To Remove Google Redirection Virus – Manually Get Rid of it

  1. Omg thank you soo much you re my new hero!! <3 helped me fix my laptop I love you!!!

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


Get every new post delivered to your Inbox.