Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Browser Hijacked - links redirect


  • Please log in to reply
7 replies to this topic

#1 DonmeisterGeneral

DonmeisterGeneral

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:03 AM

Posted 28 September 2010 - 04:49 PM

Hi there, i'm new to this whole forum thing but I need some help removing some possible malware on my computer.

My situation started when links from google searches would take me to random website, as you can imagine this is really annoying. So I searched the net to see how to fix the problem.

I've run multiple anti-spyware/malware/virus scans and found a few files, which have been removed. But i'm still having the problem, so I downloaded and ran HijackThis. I now have a log file, but don't know what to do.

Could someone please have a look at my log file and see if theres anything that needs fixing.

I'm using firefox v3.6.10, and there doesn't seem to be a problem with IE.

Thanks thumbup2.gif

Attached Files


'Freedom of thought is best promoted by the gradual illumination of men's minds, which follows from the advance of science' - Charles Darwin

BC AdBot (Login to Remove)

 


#2 shelf life

shelf life

  • Malware Response Team
  • 2,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:@localhost
  • Local time:03:03 AM

Posted 03 October 2010 - 08:49 AM

hi DonmeisterGeneral,

Your log is a few days old. If you still need help post back. Re-directs only when using Fire Fox, not IE? Turn off Java in Fire Fox and see if the re-directs stop.
Tool>Options>Content> uncheck Enable Javascript.

How Can I Reduce My Risk to Malware?


#3 DonmeisterGeneral

DonmeisterGeneral
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:03 AM

Posted 03 October 2010 - 03:32 PM

Hey shelf life, thanks for the reply.

To answer your question, yes, only re-directs in Firefox, thats whats wierd, and not always, sometimes the google links go straight through and other times I keep getting re-directed and having to go back to google and repeatedly click the link till it goes through!
I read on another forum that my browser may be hijacked, hence the download of hijackthis.

I tried your solution for Javascript, it seemed to work, but as I said, it doesn't always re-direct. The only thing is, once I unchecked Javascript videos wouldn't load on youtube. So now I'm at a loose end.

Just for my own curiosity, what does javascript do?

Heres my new log from today:

Thanks cool.gif

Attached Files


'Freedom of thought is best promoted by the gradual illumination of men's minds, which follows from the advance of science' - Charles Darwin

#4 shelf life

shelf life

  • Malware Response Team
  • 2,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:@localhost
  • Local time:03:03 AM

Posted 03 October 2010 - 05:24 PM

Javascript is used by web browsers and web pages to provide functionality. With it off pages and there functions may not behave as expected or at all.

Try this first;


download GooredFix, close firefox and double click the icon.
follow the prompts, post the log it generates on your desktop, gooredFix.txt
restart firefox and check for re-directs.

How Can I Reduce My Risk to Malware?


#5 DonmeisterGeneral

DonmeisterGeneral
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:03 AM

Posted 04 October 2010 - 02:11 PM

GooredFix seems to have done the trick, it deleted a file in one of Firefox's folders and I havn't had a re-direction all day!

Just as a precaution, if I have this problem again are there any other tools that can be used to fix the problem?
'Freedom of thought is best promoted by the gradual illumination of men's minds, which follows from the advance of science' - Charles Darwin

#6 shelf life

shelf life

  • Malware Response Team
  • 2,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:@localhost
  • Local time:03:03 AM

Posted 04 October 2010 - 03:57 PM

Gooredfix is the only tool I know of, otherwise its going after the files manually and deleting them. There are some threads about it in the Mozilla forums.
If all is good, some tips to help you stay malware free:

10 Tips for Prevention and Avoidance of Malware:
There is no reason why your computer can not stay malware free.

No software can think for you. Help yourself. In no special order:

1) It is essential to keep your OS,(Windows) browser (IE, FireFox) and other software up to date to "patch" vulnerabilities that could be exploited. Visit Windows Update frequently or use the Windows auto-update feature. Staying updated is also essential for other web based applications like Java, Adobe Flash/Reader,iTunes etc. More and more third party applications are being targeted. Not sure if you are using the latest version of software? Check their version status here.

2) Know what you are installing to your computer. Alot of software can come bundled with unwanted add-ons, like adware, toolbars and malware. More and more legitimate software is installing useless toolbars if not unchecked first. Do not install any files from ads, popups or random links. Do not fall for fake warnings about virus and trojans being found on your computer and you are then prompted to install software to remedy this. See also the signs that you may have malware on your computer.

3) Install and keep updated: one antivirus and two or three anti-malware applications. If not updated they will soon be worthless. If either of these frequently find malware then its time to *review your computer habits*.

4) Refrain from clicking on links or attachments via E-Mail, IM, IRC, Chat Rooms, Blogs or Social Networking Sites, no matter how tempting or legitimate the message may seem. See also E-mail phishing Tricks.

5) Do not click on ads/pop ups or offers from websites requesting that you need to install software to your computer--*for any reason*. Use the Alt+F4 keys to close the window.

6) Don't click on offers to "scan" your computer. Install ActiveX Objects with care. Do you trust the website to install components?

7) Consider the use of limited (non-privileged) accounts for everyday use, rather than administrator accounts. Limited accounts can help prevent *malware from installing and lessen its potential impact.* This is exactly what user account control (UAC) in Windows Vista and Windows 7 attempts to address.

8) Install and understand the *limitations* of a software firewall.

9) A tool for automatically hardening and securing Internet Explorer 8.0. Requires site registration for downloading. Changes some of the default settings of IE 8.0, Read the FAQ's. Or see a slide show Here and do it yourself. How to harden FireFox. for safer surfing.

10) Warez, cracks etc are very popular for carrying malware payloads. If you look for these you will encounter malware. If you download/install files via p2p networks you will also encounter malware. Can you really trust the source of the file?

More info/tips with pictures in links below.
happy safe surfing




How Can I Reduce My Risk to Malware?


#7 DonmeisterGeneral

DonmeisterGeneral
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:03 AM

Posted 05 October 2010 - 05:58 PM

I'll have a good look at all of those points and secure my myself so this doesn't happen again!

Thank you for all th advice, you've been extremely helpful B-)

Lets hope I can stay malware free lol!!!

-Donmeister General
'Freedom of thought is best promoted by the gradual illumination of men's minds, which follows from the advance of science' - Charles Darwin

#8 shelf life

shelf life

  • Malware Response Team
  • 2,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:@localhost
  • Local time:03:03 AM

Posted 06 October 2010 - 05:45 PM

ok your welcome. happy safe surfing "out there"

How Can I Reduce My Risk to Malware?





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users