CrimsonMoon Posted August 28, 2016 ID:1058769 Share Posted August 28, 2016 Hello this is in regards with my previous topic just now i've noticed that when I open google chrome's browser history this appears. I didn't even search for terraclicks using google and my chrome is set to "open the new tab page" i've also run scans using MBAM and nothing is out of the ordinary. is this maybe because i previously searched for terraclicks when I had that dilemma regarding the site? Link to post Share on other sites More sharing options...
CrimsonMoon Posted August 28, 2016 Author ID:1058770 Share Posted August 28, 2016 It's when i go to google.com that it pops up on my chrome's history. Link to post Share on other sites More sharing options...
CrimsonMoon Posted August 28, 2016 Author ID:1058772 Share Posted August 28, 2016 7 minutes ago, CrimsonMoon said: It's when i go to google.com that it pops up on my chrome's history. Now it's suddenly gone, could it have been just an old cache or my browser remembering the search? Link to post Share on other sites More sharing options...
CrimsonMoon Posted August 28, 2016 Author ID:1058801 Share Posted August 28, 2016 or could it have been that google.com generated the same URL hence it popping out in my "history" since that search hasn't been deleted in my previous history. Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted August 29, 2016 Root Admin ID:1058956 Share Posted August 29, 2016 Hello @CrimsonMoon Just checking to see if you still need any help or not. Thanks Link to post Share on other sites More sharing options...
CrimsonMoon Posted September 3, 2016 Author ID:1060123 Share Posted September 3, 2016 Not seeing it anymore though I wanted clarification what happened? Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted September 6, 2016 Root Admin ID:1060390 Share Posted September 6, 2016 Don't know what or how it gone on. There are hundreds if not thousands of these redirect javascripts that cause this issue. Generally, we just remove them. It takes many hours to do forensic analysis of how a specific infection got on the box and it needs to be done before removing, not after. Typically a firm that specializes in forensics may charge you $200+ an hour to try to track it down. Most people just want it removed. Here is a typical cleanup speech with detail on how to help improve your chances of not becoming a victim of such attacks. At this time there are no more signs of an infection on your system.However if you are still seeing any signs of an infection please let me know. Let's go ahead and remove the tools and logs we've used during this process. Most of the tools used are potentially dangerous to use unsupervised or if ran at the wrong time. They are often updated daily so if you went to use them again in the future they would be outdated anyways. The following procedures will implement some cleanup procedures to remove these tools. Download Delfix from here and save it to your desktop. (you may already have this) Ensure Remove disinfection tools is checked. Click the Run button. Reboot Any other programs or logs that are still remaining, you can manually delete. (right click.....Delete) IE: RogueKiller.exe, RKreport.txt, RK_Quarantine folder, C:\FRST folder, FRST-OlderVersion folder, MBAR folder, etc....AdwCleaner > just run the program and click uninstall. If there are any other left over Folders, Files, Logs then you can delete them on your own. Please visit the following link to see how to delete old System Restore Points. Please delete all of them and create a new one at this time.How to Delete System Protection Restore Points in Windows 7 and Windows 8 Remove all but the most recent Restore Point on Windows XP As Java seems to get exploited on a regular basis I advise not using Java if possible but to at least disable java in your web browsersHow do I disable Java in my web browser? - Disable Java A lot of reading here but if you take the time to read a bit of it you'll see why/how infections and general damage are so easily inflicted on the computer. There is also advice on how to prevent it and keep the system working well. Don't forget about good, solid backups of your data to an external drive that is not connected except when backing up your data. If you leave a backup drive connected and you do get infected it can easily damage, encrypt, delete, or corrupt your backups as well and then you'd lose all data. Nothing is 100% bulletproof but with a little bit of education you can certainly swing things in your favor. How Malware Spreads - How did I get infected Best Practices for Safe Computing - Prevention of Malware Infection Avoiding those unwanted free applications A close look at how Oracle installs deceptive software with Java updates IAC / Ask.com toolbars Malwarebytes Unpacked Blog If you're not currently using Malwarebytes Premium then you may want to consider purchasing the product which can also help greatly reduce the risk of a future infection. Link to post Share on other sites More sharing options...
Recommended Posts