Internet explorer redirects to a website an prompts for openeing an exe file

Hi My ie redirects to different website and prompts to opena n exe file.

please advise to resolve the issue

--Thanks
NetworkAdmin24Asked:
Who is Participating?
 
NetworkAdmin24Author Commented:
removed the exe prompted for run every time from the download folder and recreated new profile for the same user.

0
 
newmathCommented:
You're likely infected with some sort of malware. Install AV and run a scan.
0
 
NetworkAdmin24Author Commented:
is there any other settings which i have to follow up ,

have already started the scan using our AV

--Thanks
0
How do you know if your security is working?

Protecting your business doesn’t have to mean sifting through endless alerts and notifications. With WatchGuard Total Security Suite, you can feel confident that your business is secure, meaning you can get back to the things that have been sitting on your to-do list.

 
NetworkAdmin24Author Commented:
Have tried to change the registry value for the hkey current user\software\microsoft \internet explorer\main and start page still the webredirection link comes back to the registry.

--Thanks
0
 
WORKS2011Austin Tech CompanyCommented:
go into msconfig / startup and see if you can locate the bug there, if so uncheck restart then go to the link below to download Malwarebytes, run and perform a full scan.

http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html 

Let me know what the scan turns up.
0
 
WORKS2011Austin Tech CompanyCommented:
if you have a zip drive and another computer download Malwarebytes to it and run it this way.
0
 
Brad Sims, CCNANetwork AdministratorCommented:
The good scanners will remove the infection and fix it for you.  I like ComboFix, but Malwarebytes is good as well.

http://www.bleepingcomputer.com/download/anti-virus/combofix
0
 
younghvCommented:
In all likelihood, you will have to do more than just run a scanner. Many variants of malware modify your registry so that that only the malware will start when you try to open any executable. Also, many will block the better known scanner tools from actually functioning.

Please review the information in the following EE Articles for the proper tools and (sequential) steps to identify and resolve malware infections.

Be sure to post the logs from the tools you use.

Stop-the-Bleeding-First-Aid-for-Malware
Rogue-Killer-What-a-great-name
2012-Malware-Variants

Please note that most of the infections I've had in my shop lately also have one of the 'rootkit' variants tagging along. Very important to follow up with TDSSKILLER to check.
0
 
WORKS2011Austin Tech CompanyCommented:
update: I wrote "if you have a zip drive..." I meant USB drive, I'm sure you realized this.

Something else I've done is download Firefox to the USB and install, if Firefox works then you can assume (use this word lightly) that only Internet Explorer is infected. If this is the case usually re installing the latest version of IE fixes the problem.
0
 
younghvCommented:
Please understand that reinstalling IE on an infected system has absolutely nothing to with "fixing" the problem.

Treating malware properly requires a systematic approach using the proper tools and procedures. Anyone not properly trained and experienced in the proper procedures should really avoid offering advice.
0
 
WORKS2011Austin Tech CompanyCommented:
get over yourself young, until I finalize my resolution I appreciate you keeping your ego to yourself. These are steps in a process of troubleshooting.
0
 
younghvCommented:
WORKS2011 -
There is no need for rudeness.

Based on your comments so far, you clearly have no idea about the proper steps for trouble-shooting and repairing malware infections.

Posting advice in the Virus & Spyware Zones is quite different from most other Zones on EE in that poor advice can lead much worse problems for our Members.

If there are any of our Zones where you have actual training, experience, and expertise, you might do well to focus on them.
0
 
BoxunloXCommented:
As a first step I would run the Microsoft Mailicious Software Removal Tool. Open the Start menu and in the search box type MRT and the press Enter. Run a full system scan and let us know what the results are.
0
 
BoxunloXCommented:
Also, youngghv is correct in saying that a simple scanner  nor reinstalling IE will fix the problem. Often scanners will fix one problem while creating another. For example, many viruses install their files into multiple directories. Many scanners will find some of the malicious files but not all. Yesterday my neighbor had a machine that got infected and he told me that his anitvirus had found and deleted some of the malicious files. This in turn caused another problem in that each time he started his machine the Virus would try to start but could not find some of the required files needed to start. This brought error messages upon startup and was only fixed when I deleted the Registry keys that were created by the istallation of the virus.
0
 
rpggamergirlCommented:
Have you tried the tools that were already mentioned epecially combofix?

Also try TDSSKiller.
http://support.kaspersky.com/viruses/solutions?qid=208280684

Also post the combofix log.
If the problem persists, also post a screenshot of the Disk Management window.
0
 
harryhelpCommented:
I would suggest trying Dr Web CureIt! I have tried before when nothing else seemed to work and the virus kept recreating itself in the user's profile, Windows directory, all users profile and registry. This put the computer in a 'safe' mode where the virus can't run and removes it. Highly recommend if Malwarebytes' doesn't help.
http://www.freedrweb.com/cureit/?lng=en
0
 
NetworkAdmin24Author Commented:
After deleting the default website fro ie dint help found a file in the download folder which was always prompted to either run or save everytime the ie is opened.
Deleted the file and re created the new profile
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.