Jump to content

Recommended Posts

I am sure I can't be the only person in the world that has Malware on an Android device running Chrome!!!

Since the end of March, when I open Chrome I get redirected to:- hastopi.com/12199.htm (and other spurious sites).

In addition, if I go intoChrome settings and turn on the Home page setting, it keeps getting overridden.

As a separate issue, games like "Ducky" keep downloading themselves from the Google play store.

I have Malwarebytes,AVg, Bitdefender and Kaspersky installed but none of these are picking up and removing the issue permanently.

Can anyone offer any kind of permanent solution??

Link to post
Share on other sites

Hi Nathan 

Thanks for the reply.

No, it isn't a phone - it's a Virgin Telly Tablet running Android 7.

I have just done a complete factory reset and manually adding apps (the first thing it wanted was Wi-Fi) and as soon as I connected, I had a tarot card pop up. I aborted the set up and started again and got as far as installing Kaspersky which found three Trojans and " removed" them.

I then opened Chrome and got an immediate redirect.

I suspect it needs a firmware update so don't hold much hope.

Let's see if Firefox close better than Chrome!!

Cheers 

Mike

 

 

 

 

 

 

 

 

 

 

 

Link to post
Share on other sites

Hi,

 

I did have sync but have turned off. There has already been a game downloaded which I have uninstalled but all I get when I try and go to the Play Store I just get a blank screen!!

Link to post
Share on other sites
5 minutes ago, Tiesys2 said:

Hi,

 

I did have sync but have turned off. There has already been a game downloaded which I have uninstalled but all I get when I try and go to the Play Store I just get a blank screen!!

Sync brings back all previous browser settings.

 

Link to post
Share on other sites
  • Staff

HI @Tiesys2,

Okay, lets try this then.

Clearing your history and cache within the browser may help stop this from reoccurring.  In addition, clearing the Storage & Cache within the browser’s App Info itself also helps:

  1. Go to Settings > App Info
  2. Go to your browser app icon in App info list (such as Chrome) and click on it
  3. Once in your browser’s App info, go to Storage & cache
    1. Click Clear Storage
    2. Click Clear cache

In addition, if you could send an Apps Report I can check for malware.

To send an Apps Report with Malwarebytes for Android use the following instructions.

  1. Open the Malwarebytes for Android app.
  2. Tap the Menu icon.
  3. Tap Your apps.
  4. Tap three lines icon in upper right corner.
  5. Tap Send to support

Choose an email app to send Apps Report.

Your email app will open with the Apps Report included.

At this point, it would be very helpful to mention you are submitting via recommendation from the Malwarebytes forum.  This allows our support staff to know where to direct it.

By sending the Apps Report, you will create a ticket in our support system.

Private Message (PM) me the email used and/or the ticket number assigned.

Nathan

Link to post
Share on other sites

Hi Nathan

Thanks - I already have a ticket open (3428315),. 

Your colleague, Rocco has told me that there is something called com. redstone. ota.ui and has given me instruction on how to uninstal but to be honest, I haven't a clue on how to execute them and they may as well have been written in Martian!! 

Interestingly, if I use any browser other than Chrome, my Web pages don't get redirected and spurious games don't appear to get downloaded? 

Malwarebytes and Kaspersky both pick up threats but can't delete them - am I best ditching Android and moving to Apple?. 

Thanks

Mike

Link to post
Share on other sites
  • Staff

Hi @Tiesys2,

Actually, I stumbled across your ticket yesterday and was the one that told Rocco to send those instructions.  Sorry they are so complicated, but they are the best we have for now.  I also wrote a blog about the typical: https://blog.malwarebytes.com/android/2021/04/pre-installed-auto-installer-threat-found-on-android-mobile-devices-in-germany/

If you like to ditch the phone, but keep the costs down I would suggest buying a refurbished/renew phone of a reputable manufacturer. For example, a refurbished/renew Google Pixel 2.

Unfortunately, we are seeing a raise in pre-installed Android/PUP.Riskware.Autoins.Redstone on lesser known manufacturers phones.  We are hoping in the case of com.redstone.ota.ui there will be a fix by the companies involved.

Nathan

 

Link to post
Share on other sites

Hi Nathan,

Thanks for the update.

Just a quick point of note (not that it will make any difference). It is an Android device, but not  a phone it is a 14" tablet that I use mainly for browsing and web mail with the odd occasional game from the Game Store.

I am actually having to use my p.c. to reply to you as if I use the tablet, no matter what I type once I hit send, your security system flags as "spam" and refuses to send the reply!!

have a friend who is going to have a look at going through the process you have suggested.

By the way, I have only just purchased the Malwarebytes for Android subscription, if I went out and bought an Ipad, could I transfer the subscription?

Thanks

Mike

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.