Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Random Malware Infections


  • Please log in to reply
10 replies to this topic

#1 Bad-People

Bad-People

  • Members
  • 89 posts
  • OFFLINE
  •  
  • Local time:09:59 PM

Posted 08 February 2015 - 06:12 PM

I know you have to be careful when downloading or installing thing from the internet in order to protect yourself from malware but occasionally I'll get it installed without downloading anything. I'll just be browsing when suddenly my browser crashes and when I bring it back up lo and behold I have a new homepage. How does this happen and how do I prevent it in the future?

 

Windows Vista Home Basic

Google Chrome

Firefox (Though I don't ever remember being on anything but Chrome when it happens)



BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,749 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:59 AM

Posted 08 February 2015 - 06:38 PM

In many cases these issues are the result of unwanted toolbars, add-ons/plug-ins, and browser extensions which come bundled with other free software (often without the knowledge or consent of the user). They can be the source of various issues and problems to include adware, pop-up ads, browser hijacking which may change your home page/search engine, and cause user profile corruption.  

As such they are generally classified as Potentially Unwanted Programs (PUPs) and many of them can be removed from within its program group Uninstall shortcut in Start Menu > All Programs or by using Programs and Features (Add/Remove Programs) in Control Panel, so always check there first. With most adware/junkware it is strongly recommended to deal with it like a legitimate program and uninstall from Programs and Features or Add/Remove Programs in the Control Panel. In most cases, using the uninstaller of the adware not only removes it more effectively, but it also restores many changed configuration settings.

Alternatively, you can use a third-party utility like Revo Uninstaller Free or Portable and follow these instructions for using it. Revo will do a more thorough job of searching for and removing related registry entries, files and folders.

After uninstallation, then you can run specialized tools like Malwarebytes Anti-Malware, AdwCleaner and JRT (Junkware Removal Tool) to fix any remaining entries they may find. These tools typically search for and remove related registry entries, files and folders wherever they hide...to include those within the AppData folder and elsewhere.

Remove anything else (newly installed programs) you do not recognize.

The next place to check is your browser extensions and add-ons/plug-ins.

To reset your browser settings to default:

To reset the browser home page if it was changed, please refer to:

 

To learn more about PUPs and how you get them, please read: About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs)

Folks need to take some personal responsibility and educate themselves about the practice of bundling software.


 


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 Bad-People

Bad-People
  • Topic Starter

  • Members
  • 89 posts
  • OFFLINE
  •  
  • Local time:09:59 PM

Posted 09 February 2015 - 12:33 AM

But I'm not even downloading or installing or even LOOKING at any software, free or otherwise. I might just be reading a wiki and my browser crashes. Next thing I know there's a new homepage and search engine on me browser. 



#4 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,681 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:59 AM

Posted 09 February 2015 - 06:39 AM

Then it seems that you already have an active infection on your system at the moment. You could be hit by an Exploit Kit, but those are usually not used to deliver something as small as a browser hijacker. My guess is that you are already infected with a browser hijacker, and maybe adwares, but you don't know it yet. Did you get checked here for malware recently?

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#5 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,749 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:59 AM

Posted 09 February 2015 - 07:12 AM

Aura is correct. I will move this topic to another forum where assistance can be provided with checking for malware.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#6 Bad-People

Bad-People
  • Topic Starter

  • Members
  • 89 posts
  • OFFLINE
  •  
  • Local time:09:59 PM

Posted 09 February 2015 - 08:12 PM

Then it seems that you already have an active infection on your system at the moment. You could be hit by an Exploit Kit, but those are usually not used to deliver something as small as a browser hijacker. My guess is that you are already infected with a browser hijacker, and maybe adwares, but you don't know it yet. Did you get checked here for malware recently?

Okay, but it's been different every time. Different homepage, different default search engine. Is that normal?



#7 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,681 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:59 AM

Posted 09 February 2015 - 09:03 PM

Then it means that you get re-infected or you have some kind of dropper-like malware on your system that keeps on dropping a new browser hijacker.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#8 Bad-People

Bad-People
  • Topic Starter

  • Members
  • 89 posts
  • OFFLINE
  •  
  • Local time:09:59 PM

Posted 25 February 2015 - 06:35 PM

Okay, but I've cleaned my system a number of times since this started and it still happens. 



#9 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,681 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:59 AM

Posted 25 February 2015 - 06:37 PM

Which means that there's probably something that you're not doing right and you get infected over and over again. Malware don't appear on a system, they were either left from a previous infection or they were dropped. And the later ensures the first.


unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#10 Bad-People

Bad-People
  • Topic Starter

  • Members
  • 89 posts
  • OFFLINE
  •  
  • Local time:09:59 PM

Posted 25 February 2015 - 06:47 PM

Which means that there's probably something that you're not doing right and you get infected over and over again. Malware don't appear on a system, they were either left from a previous infection or they were dropped. And the later ensures the first.

Look, I don't know what that means but the same one just got left on my control panel twice in the last fifteen minutes and now I can't uninstall it at all.



#11 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,681 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:59 AM

Posted 25 February 2015 - 07:19 PM

I'll ask you to get checked in the malware removal section of BleepingComputer. There you'll be assisted by a trained malware removal helper that will help you get rid of every infection on your system. In order to do that, you have to post a thread in the Virus, Trojan, Spyware, and Malware Removal Logs section. You have to follow the instructions in the preparation guide prior to posting your thread, since it contains the steps to follow when posting it. Once you've been declared clean by your helper, you are free to comeback in this thread so we can continue working on your current issue, if it wasn't solved during your malware clean-up, but I'm sure that it will.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users