SEARCH

The How-To Geek Forums Have Migrated to Discourse

How-To Geek Forums / Tutorials

Happili Redirect Virus Removal Process

(3 posts)
  • Started 2 years ago by Ronjonss04
  • Latest reply from whs
  • Topic Viewed 4630 times

Ronjonss04
Posts: 129

Hello folks,
I have recently remove the virus that is Happili redirect, it's pretty tedious process and took me awhile to get it all figured out. I'm going to share the steps with fellow how to geekers, hopefully this helps out. While there are many variants out there, this process seems to get the job done in most cases.

1.) If you're computer is clickjacking or redirecting to happili/givemeanswers you may have this infection, there are some other symptoms out there but these were the ones specific to my case.

2.) Have a thumbdrive readily available, you're going to need to download a few tools to get things started

3.) Download these tools to thumbdrive
http://support.kaspersky.com/faq/?qid=208283363
http://www.malwarecity.com/com.....howfile=34 (32 bit only)
http://www.superantispyware.co.....anner.html
http://www.piriform.com/ccleaner/builds (portable version)

4.)Also make sure you have some other malware/virus detection software for after the use of the above tools, I used microsoft security essentials (http://windows.microsoft.com/en-US/windows/products/security-essentials)

5.) Reboot computer in to safe mode with networking, on most computers this is done by hitting the F5 key during the boot process. If not do a quick google on how to get in to safe mode with networking on your machine.

6.) Now that you're in safe mode turn off your wi-fi adapter

7.) Run TDSSKILLER first, after that IF ON A 32BIT SYSTEM run the zero-access removal tool, and then finally fin Superantispyware (Make sure to select complete scan, and have it scan all partitions on the HD)

8.)While I'm not sure if this matters, during the process of these tools running I removed all internet browsers from my computer besides internet explorer.

9.) After these tools are done running use CCleaner, run the actual cleaner tab first, and then run the registry cleaner tab (make a back up to your thumbdrive)

10.) Once in windows you must make sure your virus/malware program is up to date, disable your wi-fi adapter again and run a full scan

11.) Again run Ccleaner after the fact

12.)Lastly create a notepad file, name it flushdns.bat
Copy and paste this in to the file and make sure to save it with the .bat extension
@Echo on
pushd\windows\system32\drivers\etc
attrib -h -s -r hosts
echo 127.0.0.1 localhost>HOSTS
attrib +r +h +s hosts
popd
ipconfig /release
ipconfig /renew
ipconfig /flushdns
netsh winsock reset all
netsh int ip reset all
shutdown -r -t 1
del %0

13.) Run the file you just created, it will force a restart flush your dns cache./ip confingurations.

14.) At this point you can run one more full scan on your computer just to make sure its clean, if the scan comes up clean you should be in the clear :)

Hope this helps some folks out, and feel free to add anything if you have some knowledge that is missing from the post.
Thanks,
Matt

Posted 2 years ago
Top
 
Ronjonss04
Posts: 129

Can someone move this to tutorials, put it in wrong section.

Posted 2 years ago
Top
 
whs
Posts: 17584

Great, thanks for sharing.

Posted 2 years ago
Top
 



Topic Closed

This topic has been closed to new replies.