Friday, June 7, 2013

En.v9.com Portal Site Hijacks Search Engine! Remove V9 Redirect Search Virus

en.v9.com becomes your default homepage all of a sudden and it stops other search engine/ search tools just to make sure that v9 is the only working search engine. Some PC user would not hate it as it does usual search but with its domain on; while others get irritated because of v9 portal site malware as it redirect every search result and it is increasing into frequency. En.v9.com simply become interrupting, making almost all running program tumbled. It can be imagined that many PC user would run a couple scans of various anti-virus/anti-malware tools, however, the result turns out to be clean! Control Panel seems to be disabled as it helps nothing either. 

En.v9 is an aggressive search engine virus that would open up a backdoor by inserting its malevolent items to delete systematic items. By doing so, tracking cookies can be allowed to collect your privacy to report it to its remote spammer.

PS: many people would thought that en.v9 is gone for good because its Rookit is ‘removed’ by your trusted security tools (if you are lucky to find one). Guess what, v9 is a sneaker and lurker that it keep silent sometime just to prepare a mess in a near future. 



Any Best/ Most Secure Browser to Avoid Being Attacked?



There’s no such browser. As a matter of fact, browser malware gets in by many ways, including:
Exploit vulnerability on web apps/add-ons/plug-ins/extensions;
  • Piggyback on shareware/freeware;
  • Attack well-known website and its videos;
  • Bundle with fake update message;
        Etc..

To avoid being harassed by deadly search engine virus like en.v9, PC users play an important part in it. There are tips for future virus prevention. But what we need to do now is to get rid of v9 search engine and its affiliate items like its toolbar/search bar before it adds new characteristics via the backdoor it chisels up. If you need professional assistance, please start a live chat with online technicians 24/7 here. Good luck!




1. Disable any suspicious startup items.

For Windows XP:

Click Start menu -> click Run -> type: msconfig in the search bar -> open System Configuration Utility -> Disable all possible startup items including those of en.v9.com.

2. Show hidden files 

a) open Control Panel from Start menu and search for Folder Options;
b) under View tab to tick Show hidden files and folders and non-tick Hide protected operating system files (Recommended) and then click OK;
c) click on the “Start” menu and then click on the “Search programs and files” box, Search for and delete these files created by v9.com:
  • C:\Documents and Settings\user account\Application Data
  • C:\Documents and Settings\user account\Local Settings\Application Data
  • C:\Documents and Settings\user account\Local Settings\Temp
  • C:\Documents and Settings\user account\My Documents
3. Delete all registry values related to en.v9 in your local hard disk C.
  • HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{numbers
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{numbers
  • HKCR\CLSID\{numbers}
  • HKCR\TypeLib\{numbers
  • HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{numbers}
4. Remove add-ons:

Internet Explorer:
1) Go to Tools -> ‘Manage Add-ons’;
2) Choose ‘Search Providers’ -> choose ‘Bing’ search engine or ‘Google’ search engine and make it default;
3) Select ‘Search Results’ and click ‘Remove’ to remove it;
4) Go to ‘Tools’ -> ‘Internet Options’; select ‘General tab’ and click website, e.g. Google.com. Click OK to save changes.

Google Chrome
1) Click on ‘Customize and control’ Google Chrome icon, select ‘Settings’;
2) Choose ‘Basic Options’;
3) Change Google Chrome’s homepage to google.com or any other and click the ‘Manage Search Engines…’ button;
4) Select ‘Google’ from the list and make it your default search engine;
5) Select ‘Search Result’ from the list to remove it by clicking the ‘X’ mark.    

Mozilla Firefox
1) Click on the magnifier’s icon and select ‘Manage Search Engine…’;
2) Choose ‘Search Results’ from the list and click ‘Remove’ and OK to save changes;
3) Go to ‘Tools’ -> “Options”. Reset the startup homepage or change it to google.com under ‘General tab;  

5. Disable proxy
  1. Click on Tools on the menu bar
  2. select Internet options
  3. go to Connections tab
  4. select LAN settings at the bottom of the dialog
  5. under the Proxy sever, untick 'use a proxy server for your LAN (These settings will not apply to dial-up or VPN connections).'
  6. Click OK 

Here are some tips for future virus prevention: 1) be cautious when clicking links. It can point your browser to download threats or visit malicious web site. 2) Don’t download unkown "free" software. 3) avoid opening unknown e-mail attachments. 4) Keep updating patches if there is any after you run a scan.  



No comments:

Post a Comment