Windows 8 and 8.1 Forums

Some kind of malware redirecting me to a website.

  1. #11

    Hmm I looked on startup programs. There is something called 'CLIstart' I searched it and apparently people with ATI cards have it, but I have a Nvidia card. Suspicious?

      My System SpecsSystem Spec

  2. #12

    What is the path to the file?

    If you aren't using it, Ccleaner gives a nice interface to starup entries and makes it easy to disable and delete entries. If you disable the entry does it stay disabled and does it resolve your issue?
      My System SpecsSystem Spec

  3. #13

    Try Hijack This. Look for anything in it's results relating to cmd.exe or just post your log here for analysis.
      My System SpecsSystem Spec

  4. #14

    Posts : 1
    Windows Vista

    That happened to me too, i got it fixed.

    Save this autorun.exe on your desktop Autoruns for Windows

    ◾Create a new folder on your hard drive called AutoRuns (C:\AutoRuns) and extract (unzip) the file there.
    ◾Open the folder and double-click on autoruns.exe to launch it.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
    ◾Please be patient as it scans and populates the entries.
    ◾When finished scanning, it will say Ready at the bottom and list all entries under the Everything tab.
    ◾In the top menu, click File > Find... and type the file name of the startup you want to remove, then click Find Next.
    ◾Alternatively, you can scroll through the list and look for any entry related to the file you need to remove.
    ◾If found, right-click on the entry and choose delete.
    ◾Exit Autoruns and reboot your computer when done

    or can try also to fix-it on hijackthis this run key O4 - HKLM\..\Run: [Babakan] cmd.exe /k if %date:~6,4%%date:~3,2%%date:~0,2% LEQ 20131027 (exit) else (start GameRoover - && exit)
      My System SpecsSystem Spec

  5. #15

    I had a similar (not exactly the same) prob a couple of weeks ago and, following advice on this excellent forum, I ran a full scan on malwarebytes. Job jobbed!
      My System SpecsSystem Spec

  6. #16

    Posts : 328
    Windows 8.1 (x64)

    Honestly if you have malware which isn't detected or hard to remove I would do a full reinstall of the OS. This might seem a bit too much but you never know if something isn't left even after a 3rd party software "cleaning". Once infected, other malware tend to pop-up and many silently (such as keyloggers that record your passwords). Especially in your case since it doesn't seem to be a simple homepage hijack, there's definitely something launched via cmd.
    After your reinstall use a disk imaging application to take a snapshot of your clean OS (save it to a safe location like a usb stick or external drive) and use it whenever there's a problem (takes minutes instead of a lengthy full installation).
      My System SpecsSystem Spec

Page 2 of 2 FirstFirst 12
Some kind of malware redirecting me to a website.
Related Threads
I have tried: Malware bites Google software remover "Remove google redirection" from the Chrome store a chrome website blocker acquired from the Chrome store I've looked under control panel and can't see anything new that's been added in the last day or two, since this started happening. ...
Hello all ! I've been having such an annoying problem for ages on my new computer. I've never had two drives before and whilst changing file locations to my HDD From my SSD some weird stuff started happening. My Downloads file is now recognised as My Documents file. Whenever I try to...
I have the Windows 8 Consumer build 8250 installed on my Toshiba NETBOOK. Everything is all dandy except certain features on certin websites. I am unable to actually upload pictures to flickr. Like when I click the "Choose files to upload" nothing happens, no box allowing me to choose the...
Eight Forums Android App Eight Forums IOS App Follow us on Facebook