I have been having the same issues with Find-Fast-Answers. Have scanned with various AV products including what I use at work - VirusScan Enterprise + AntiSpyware Enterprise 8.7i
Is there a manual way to remove this rather annoying redirect?
OS: Windows 7 x64
I'd like to add this is happening to both IE and Firefox - thanks
we will check for possible Rookit infections on the machine-
Running a Rookit scan using -----
Rootkits are programs that try to hide themselves or other programs so that they are not easily removed. As rootkits have become such a common problem, it is important to run a utility that will show rootkits that may reside on your computer. Please note that if you are running a 64-bit version of Windows you will not be able to run GMER and should skip to the next step.
- To start this process, download GMER from the following location and save it to your desktop.
- GMER Download Link 1
- GMER Download Link 2 (Only use if the previous link does not work)
- When you click on the above link you will see a download prompt
- Click on the Save button. You will now be presented with a screen asking where you would like to save the file.
- Click once on the Desktop button, designated by the red arrow in the figure above, to save the file to your Desktop and then press the Save button. Your computer will now download the file to your computer and save it on your Desktop. When it is done downloading you will now find an icon on your desktop.
- Right-click on the gmer.zip icon and select the Extract all... from menu option
- You will be shown a screen asking how you would like to extract the file. Just keep pressing the Next button until you geto the last screen and then press the Finish button to finish the extraction process. The GMER folder should automatically open and you will see that it contains the file called gmer.exe. Please double-click on the gmer.exe program. Once you double-click the icon a Windows security warning may appear asking if you are sure you would like to run the program. If this warning appears, please click on the Run button to allow GMER to start. If no warning appeared then you should just continue with the guide.
- You will now see the main GMER window. If it gives you a warning about rootkit activity and asks if you want to run a full scan, please click on the NO button. We now need to configure GMER to not use some settings. Please uncheck the following settings that we do not want in our scan.
Show all ( critical do not miss)
After ensuring the above 5 items are unchecked- Right click on the White screen of Gmer and Select - Options
You would see few more options getting listed there.
Select the following Two Alone
NTAPI Registry Scan
One these are selected-
Click on the Scan button to scan your computer for rootkits. This may take a while, so please be patient. When it has finished you will be back at the main screen
You now need to save the rootkit scan report to your Desktop by clicking on the Save ... . A screen will open asking where you would like to save the report. Click once on the Desktop button to change to the Desktop folder and then in the File name: field enter ark.txt. Finally, press the Save button to save the report to your desktop. Please do not act on any of the information you find in this report as many legitimate programs could be listed in it.
Attach the Log file thus created in your next post for verification by an expert here.
Same issue here in IE and Firefox. I was running Mcafee and zonealarm firewall.
Edit - Very long GMER output extracted to a file and added back in as a .txt attachment
GMER 1a.txt.zip 8.1 K
I have the same problem, though I'm using Win7 64bit. Vinod_r2 posted 'GMER will not run with 64bit system and you should skip to the next step. What is the next step?
There isn't one if GMER won't run on 64-bit systems, and it appears that it won't according to this post from BleepingComputer.
If you believe you have a rootkit infection you will probably need TDSSKiller (which seems to work reasonably well but is not perfect - see http://www.techsupportalert.com/best-free-rootkit-scanner-remover.htm)
If you go to BleepingComputer someone there will guide you through the use of this tool.
I checked you GMER logs and it has not collected enough information to explain the redirection problem. I suggest that you proceed with what my Hayton had posted. Go ahead and check those forums and once you are done with them do let us know what happened.
You might need to run additional diagonstic tools