Link to home
Create AccountLog in
Avatar of GTsafas
GTsafas

asked on

[MALWARE REMOVAL] websiteconfirmreq

I recently got infected by this malware named websiteconfirmreq it peridocially redirects pages to spam. Googling has only turned up things I assume would infect me further if I install. Does anyone know how to remove this?
ASKER CERTIFIED SOLUTION
Avatar of Chris Millard
Chris Millard
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of GTsafas
GTsafas

ASKER

Should mention im 64bit windows7 combofix was a no go. Isnt malware bytes paid?
I strongly recommend Panda AV 2011 , its has all the solution, actually i trust its cleaning engine more than any other AV.
MalwareBytes is free for non-commercial use as is SuperAntiSpyware. ComboFix and Rootalyzer are free anyway.
suggest you try running antimalware in safe mode
I would recommend malwarebytes and there is a free version http://www.malwarebytes.org/mbam.php to see downlaod free version which takes you here http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html (labelled as freeware)
With a 're-direct', your first action should be to download TDSSKiller , extract and run the TDSSKiller.exe

Great Article here on EE by the Malware Zone Advisor:
https://www.experts-exchange.com/Virus_and_Spyware/Latest_Threats/A_3299-Google-Hijack-Google-Search-Gets-Redirected.html
Could be a bootkit
Try Hitmanpro 64bit
http://www.surfright.nl/en/hitmanpro
http://dl.surfright.nl/HitmanPro35_x64.exe direct link. If you cant reach it, type it directly into address bar or download on another machine and transfer
Sorry to hear of your problems, but I had the same issues a little while ago on a customers laptop.  I tried several things including the usual,  Malware Bytes, combo etc..

After several attempts and also failures, I tried this site

http://onecare.live.com/site/en-us/default.htm

I know god damned Micro$oft but low and behold it worked.  Let em know how you get on.
Avatar of GTsafas

ASKER

Thank you for all your suggestions, I will try them all after work today and report back.
Download Hostsxpert.
Follow the instructions to restore MS original hosts back from the link below which has the software download link too.

http://www.funkytoad.com/index.php?option=com_content&id=13

Download & Install Hijackthis
Run & scan then post your log here.

http://www.hijackthis.de/downloads/HJTInstall.exe