New malware redirects all major search engine results to Gala search

If you are being redirected to galasearch every time you search for something it may be because this shitworm planted few manual hosts on the hosts file. First thing it does is hide the host file, so by going to C:WINDOWSSYSTEM32DRIVERSETC you will not see hosts at all. To show hosts, click on Tools from any open folder, and then go to Folder Options, switch to View tab and check “show hiden files and folders” and also uncheck “hide extension…” and ” hide protected operating system files”. At this point you should see hosts file, but you may not be able to change it, or delete it. Rename it to some random name and create a new empty hosts file. Here’s the list of infected or modified hosts:


  • I got this problem, But nothing changed my host file… Tried so much nothing works…
    Im going to jump of the bridge, cause i cant google.

    • make sure your DNS settings are not highjacked on your router. Find out your routers IP address (usualy and change DNS to I’ve seen this kind of stuff at router level.

    • I had this problem on my daughters computer and I couldn’t delete the host file. I just copied the file from another PC onto a flash drive and replaced the one on my daughters PC. When you copy it to the System 32 folder it asks if you want to replace the existing file and that fixed the problem.

Leave a Comment

Your email address will not be published. Required fields are marked *

Subscribe to our newsletter
GoogleSidebar Office365Sidebar DellSidebar MicrosoftSidebar auth