Jump to content
Sign in to follow this  

Recommended Posts

Hi folks!


As in the topic. I had a very weird experience today. My browser (Google Chrome 55.0) started randomly redirecting me to suspicious sites (most of tem with .xyz extension although none of them were porn sites. Just some fake "You've won a prize" etc etc etc stuff)


Thinking it may be a virus I've performed scans with both MBAM and KIS 2017 (both up to date) and aside from some game trainers that MBAM flagged as malware (CheatTool) no malware was detected. I've also performed a scan with both TDSSKiller and ADWCleaner. TDSS didn't detect anything but ADWCleaner detected and deleted something called C:\END Despite the scans my browser kept redirecting me (both during page load and when I tried to click on links) so I performed a browser reset and (knock on wood) it stopped happening. Can someone tell me what I can turn on in KIS 2017 to prevent future hijack attempts? I have Incognito Surfing enabled for instance


I am generating a GSI report. Will include it as soon as it finishes.


Apparently I can't upload it here because it's too large :(


Thank you

Edited by darcorn

Share this post

Link to post

Kaspersky Settings > Additional > Threats and exclusions > Detection types > Settings > enable Detect Other Software.

and do a databases update > reboot, then do a scan.


Clear the contents of your Temp folder, instructions: http://support.kaspersky.com/1161 and then reboot.


After that, uninstall any recently installed junk > reboot.


After that, uninstall any and all junk toolbars > reboot.


Uninstall/disable any and all junk browser add-ons and extensions and plugins in all of your browsers.


Remove the junk argument from the target field of the browser shortcut properties.


Remove any and all junk search providers in all of your browsers.


Then if need be, change your home page, in all of your browsers.


How to clean up your browsers: http://support.kaspersky.com/us/viruses/solutions/10319


If you are using a router, reset the router, change the router password to a strong password, enter the correct information according to your internet providers instructions, then clear browser cache and cookies, reboot.


Any better after that?


If still no go, please see: Kaspersky Lab Forum > English User Forum > Virus-related issues > the fifth Important topic. There, you will find instructions for GSI and AVZ logs.


Please see the small print that is located at the bottom of this message.

Share this post

Link to post

Thanks richbuff!


The scan I did after turning the "other programs" in Threats and exclusions didn't detect anything suspicious.


As for any toolbars I have none thankfully


I am inclined to think that something was caught in the browser's cache and then disappeared after I did a browser reset :)



Share this post

Link to post
Sign in to follow this  

  • Create New...

Important Information

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.