- Joined
- Dec 27, 2008
Two of my customers recently picked up some kind of browser home page redirect malware which would no allow them to operate their computers. She could not even close the browser and the message the malware was displaying was telling her to call such and such a number and not to restart her computer or she would lose everything. So this thing masqueraded as ransomware. It's easy to fix. Here's how I did it:
1. Disconnect from the Internet. Now the malware cannot connect to the server displaying the warning message and instructions to call the phone number.
2. Restart the computer. You may have to force a power down. I could not close the browser with Task Manager. But there are variants of this thing that may behave differently.
3. Restart Wifi or Nic services but do not open the infected browswer.
4. Using another brand of browser, download and install Ccleaner. Have Ccleaner clear out all history and cache for all browsers on the system.
5. Have Ccleaner also clean the Windows registry. This will hopefully purge any entries having to do with the infection.
6. Restart the computer. Open the previously infected browser and check to see that it now opens to the correct home page.
7. You may want to also scan for malware with Malwarebytes and/or other tools.
By the way, both of these customers had been frequenting places like Facebook and Pinterest.
1. Disconnect from the Internet. Now the malware cannot connect to the server displaying the warning message and instructions to call the phone number.
2. Restart the computer. You may have to force a power down. I could not close the browser with Task Manager. But there are variants of this thing that may behave differently.
3. Restart Wifi or Nic services but do not open the infected browswer.
4. Using another brand of browser, download and install Ccleaner. Have Ccleaner clear out all history and cache for all browsers on the system.
5. Have Ccleaner also clean the Windows registry. This will hopefully purge any entries having to do with the infection.
6. Restart the computer. Open the previously infected browser and check to see that it now opens to the correct home page.
7. You may want to also scan for malware with Malwarebytes and/or other tools.
By the way, both of these customers had been frequenting places like Facebook and Pinterest.
Last edited: