Friday, November 8, 2013

Remove l.yimg.com—Effectively Get Rid of Redirect Virus

Complaints about l.yimg.com

When I try to go to Yahoo.com or Yahoo.mail, I see that it is trying to access another site >> l.yimg.com << but end result is I cannot access Yahoo anything. I am a novice at computer virus-spyware-adware detection and don't know what to do.

I have a pfsense firewall with a tunnelbroker IPv6 tunnel going to the ashburn endpoint. In the past few weeks, trying to load any Yahoo page that has l.yimg.com on it, fails to load. No text or images. Browser just sits there spinning its wheel. Refreshing the page doesn't help. Multiple browsers, same issue. Very similar issue to the Facebook problem there a few weeks ago, as noted in the forum here.

How can I get rid of this l.yimg.com thing that keeps popping up and asking me about the certificate. My browser is SO SLOW and it appears to be due to this l.yimg.com thing. Help me to get rid of it please

What is l.yimg.com?

Many computer users complaint that l.yimg.com pops up to load when they open Yahoo browser. And they tried many ways to solve this problem but failed such as reset the browser or delete l.yimg.com from control panel.

Actually, l.yimg.com is a secure site that belongs to Yahoo which may appear when the Yahoo server is overburdened.

To permanently get rid of the interruption of l.yimg.com, you can not  only rely on  the scan of antivirus software, as l.yimg.com redirect is so foxy that can use the advanced rootkit technique to escape from the clean of antivirus software. Therefore, you have to manual search the infected compute to find out all the files, processes and registries that relate to this redirect, and then delete all of them.

The screenshot of l.yimg.com:



Method one:l.yimg.com redirect manual removal instruction

1.Open Windows Task Manager to end processes related to the l.yimg.com virus. To do that, press Ctrl + Shift + ESC together or Ctrl + Alt + Delete together to unfold Window Task Manager; click Processes tab on top and scroll down the list to find out all the running processes of this virus and disable all of them.


2. Delete malicious registry entries related to this redirect.
Guide: open Registry Editor by pressing Window+R keys together.(another way is clicking on the Start button and choosing Run option, then typing into Regedit and pressing Enter. )

Delete all the vicious registries as below:
HKEY_CURRENT_USER\Software\[random]
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “[random].exe”
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\PhishingFilter “Enabled” = “0?
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyOverride” = “”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyServer” = “http=127.0.0.1:33921?
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyEnable” = “1?

3.Remove malicious files of this redirect infection.

%AllUsersProfile%\Application Data\
%AppData%Local[random].exe
%AllUsersProfile%\

4.Remove toolbars, plugins, extensions, add-ons
Internet Explorer users:
Go to TOOLS and then click MANAGE ADD-ON, From there, select Extensions, Toolbars and remove the gzj.jsopen.net if found. Make sure Google or other formal browsers are set as default search Provider.

Google Chrome Users:
Click SETTINGS icon and select SETTINGS, then open Extensions, toolbar, search provider options, remove the gzj.jsopen.net if listed there. Make sure Google or other formal browsers are set as default search Provider.

If the manual guide is kinda difficult for you, please feel free to download automatic removal tool SpyHunter to drive the self-invited guest away.

Method two: Automatically remove l.yimg.com with Spyhunter antivirus software:

 

Step 1: click the icon below to download automatic removal tool SpyHunter

 
http://www.pcresolvers.com/spyhunter.php

 

Step 2: follow the instructions to install SpyHunter

 



 

Step 3: run SpyHunter to automatically detect and uninstall l.yimg.com

 


Summary: Due to the changeable characters of l.yimg.com, you cannot be too careful to distinguish the harmful files and registries from the system files and registries. If you have spend too much time in manual removing l.yimg.com and still not make any progress, you can download and install Spyhunter antivirus software here to remove l.yimg.com automatically for you.

No comments:

Post a Comment