Google redirect: how to remove this virus

Google redirect is a serious problem, which results in continuous redirections to random pages having nothing in common with user’s search query on Google or other search engine. According to experts, it is closely related to browser hijacker, which is designed specifically to make the money – mostly, it generates web traffic and helps for its owners to collect the sales by leading people to suspicious sites. Besides, it may also show different kinds of advertisements that try to fool people into paying for useless software. So, having Google redirect virus on your computer means lots of serious problems that can be avoided only by removing this threat from the system.


Google redirect virus is mostly caused by a multi-faceted threat, variously called as TDSS, Alureon or Tidserv. As soon as this backdoor threat gets inside the machine, it restricts user’s web-surfing ability and disconnects him/her from many Internet browsing services. As a result, you will be continuously redirected to various sites that are either harmless commercial websites or associated with Internet criminals and used for malware distribution.


If your machine is normally protected by licensed version of anti-spyware and anti-virus programs, you can be calm that there is almost no risk to get Google redirect virus on your PC. However, failing to protect your machine opens the backdoors of the system and makes it vulnerable for this and other cyber threats.


If you have been suffering from Google redirect virus, follow the steps listed below and make your browsing activity normal again.

Step 1: Scan your computer with updated anti-spyware programs:

1) SpyHunter

2) STOPZilla

3) Malwarebytes Anti-malware

4) Windows Defender

5) TDSSKiller

Step 2: Check Hosts file for malicious entries:

Hosts file is on  C:\Windows\System32\Drivers\etc\hosts where Windows is your windows installation directory. On Windows 7/Vista/8, you should open your hosts file with administrative privileges. For that, use these steps:

  1. Click Start -> right-click on Notepad icon -> Run as administrator
  2. Click File with Notepad -> Open.

Windows hosts file location

It will look like this:

Windows hosts file

Pay attention to lines and IPs: if you see more, delete these, especially if they rewrite google or Microsoft subdomains.

Step 3: Check Domain Name Server (DNS) settings:

1) Go Control Panel-> Network Connections -> select Local Area Connection. Then you should right-click the icon and choose Properties.

Local Area Connection properties

2) You should see a window. Select Internet Protocol (TCP/IP) and click Properties as it is shown in a picture below:

Internet Protocol properties

3) New window (Internet Protocol window) will show up. Click? Obtain an IP address automatically and Obtain DNS server address automatically. Finally, click OK to save the changes:

DNS Settings

Step 4: Check your proxy settings:

For Internet Explorer
1) Launch IE, then go Tools ->Internet Options. Click Connections tab and press Local Area Network (LAN) Settings as it is shown is a picture:

Internet Explorer local area network settings

2) Unselect everything or enter parameters that were given by system administrator and press OK.

For Mozilla Firefox
1) Launch Mozilla Firefox, then go Tools ->Options. Additionally, press Advanced and open Network tab. Press Settings button.

Mozilla Firefox network settings

2) Select No proxy or enter parameters that were given by system administrator and press OK.

For Google Chrome:
1) Click Customize and Control Google Chrome menu -> Options.
2) Now under Google Chrome Options select Under the Hood tab -> Network –> Change proxy settings.
3) Now in the Internet Properties window, click Lan settings button -> Local Area Network (LAN) Settings
4) Uncheck the Use Proxy server for your LAN and click OK.

Step 5: Check your browser add-ons:

For Internet Explorer:
1) Launch IE, then select Tools->Manage Addons
2) Delete all add-ons that look spammy/unknown or simple are unverified (there might be some useful ones, but better re-install them after some time).

For Mozilla Firefox:
1) Launch Mozilla Firefox, select Tools -> Manage Add-ons
2) Disable add-ons that are unknown/unverified/spammy.

For Google Chrome:
1) Open Google Chrome, click on a wrench icon -> select Tools -> Extensions.
2) Locate unknown and unverified entries, select them and click on a trash can icon.

Besides, you may also need to change the settings of your default search engine/start page on each of these browsers.

Like us on Facebook
Spreading the knowledge: It is very hard to fight against computer parasites on the Internet alone. If you have a website, we would be more than happy if you would like to cooperate and help us spread the information about latest threats. Remember, knowledge is the most powerful weapon. Help your visitors protect their computers!