So you do a Google search in Firefox and you get redirected to Happili.com or other websites. You have done the normal procedures to remove a redirect virus and you no longer have redirects in Internet Explorer (or you never had redirects in Internet Explorer), but you still have redirects to happili.com in Firefox.
Note: There is no warranty for the use of this information. Use at your own risk. I am not responsible for any damage or loss of data for the correct or incorrect usage of the information provided on this page.
The normal procedures you tried were possibly installing and running the following programs:
The above may have removed a few DLL files from your C:\Windows\System32 folder. One of the files may have been 114K and another may have been 236K. This may have solved the redirect problem in Internet Explorer. But you are still being randomly redirected to happili.com and other websites when doing a Google search in Firefox. You are told that the "only solution left is to completely uninstall and reinstall Firefox." But that is not the case. The reason for the redirects in Firefox is because of an Extension that was installed in Firefox. By disabling that extension you will not have redirects anymore.
To test Firefox to see if it is an extension that was maliciously installed, run firefox in safe mode by doing the following:
Look for the malicious extenstion that is causing redirects in firefox
Do the following steps to find the bad extension in Firefox:
Where is the extension folder located on my PC?
You may have to look in a few places to find out where a Firefox extenstion is located. We will look in the registry.
You may have to look at each folder value one at a time on the right hand side of the Registry Editor. A
quick way to go to the folder locations is to double click on the Name. This will bring up the Value Data
which contains the folder location for the extension. Press CTRL+C to copy the folder location and then
click on Start -> Run (If Windows XP) and type CTRL+P to paste the folder location and press
ENTER. Inside the folder should be a file named install.rdf. Double Click on install.rdf and then
if asked how to open click on Select the program from a list and then click on Notepad. Look in
the file for the same name of the offending extenstion name. It should be something like:
To find the bad extension you may have to look through all the extenstion folders that are listed in regedit. Once you have found the correct extension you can delete it from the registry and you can delete the folder. Before deleting the folder you may want to look at the date and time of the folder and the files within the folder, then you can search for the same date and time in browser history to find out where you may have caught the virus.
Where did I get the redirect extenstion from?
Protecting your Computer from Further Infection
Many redirect viruses are getting on computers without permission through exploits in the following programs: Java, Adobe Flash and Adobe Reader. My recommendation is to just uninstall these programs and never install them again. But if you really need one or all of these programs then you have to constantly update them because they are constantly being exploited because the programmers are constantly leaving holes in them.
And of course you need to constantly update Windows.
Back to www.seabreezecomputers.com