Jump to content

Possible Malware or Virus Attack...

AmateurPCGuy
By AmateurPCGuy
in Troubleshooting
 Share
Go to solution Solved by mxas6530,

remove adblock and install the extension Adguard AdBlocker , does the issue remain ?

Nah, ublock is WAY better

Posted

Casual browsing of stuff (I have FB, Twitter, Twitch and Vessel on) and suddenly on the Twitch window, I saw an ad, which is 100% unlikely since I have AdBlock on. But that's not all... from time to time,  the twitch window suddenly reloads and redirects me to a porn site. It primarily happens on the Twitch window and nothing else. Anyone got a solution?

 

PS: I'm currently running a Malwarebyte scan to see if its a Malware that's causing it. I'll follow it with a through AVG scan to see if a virus has infected the PC...

Project RYZENONE: https://pcpartpicker.com/user/gameaddict12345/saved/9HsVYJ

Link to comment
https://linustechtips.com/topic/335433-possible-malware-or-virus-attack/
Share on other sites
Link to post
Share on other sites
Posted

Could be a lot of things, the adblock you have installed contains that backdoor, or twitch is having advertising issues.

What concerns me is that it redirects him completely from twitch, that's pretty sketchy. But yeah it could be something else too.

Link to post
Share on other sites
Posted
  • Author

Could be a lot of things, the adblock you have installed contains that backdoor, or twitch is having advertising issues.

Its a possibility... but I got AdBlock from the the Google Chrome web store...

Project RYZENONE: https://pcpartpicker.com/user/gameaddict12345/saved/9HsVYJ

Link to post
Share on other sites
Posted

Casual browsing of stuff (I have FB, Twitter, Twitch and Vessel on) and suddenly on the Twitch window, I saw an ad, which is 100% unlikely since I have AdBlock on. But that's not all... from time to time,  the twitch window suddenly reloads and redirects me to a porn site. It primarily happens on the Twitch window and nothing else. Anyone got a solution?

 

PS: I'm currently running a Malwarebyte scan to see if its a Malware that's causing it. I'll follow it with a through AVG scan to see if a virus has infected the PC...

Google adware removal and try that. Worked for me.

CPU: Ryzen 5 5600 Motherboard: MSI B550 Tomahawk RAM: 32Gb DDR4  GPU(s): MSI 6800-XT Case: NZXT H440 Storage: 4x 250gb SSD + 2TB HDD PSU: Corsair RM850x with CableMod Displays: 1 x Asus ROG Swift And 3 x 24" 1080p Cooling: H100i Keyboard: Corsair K70 RGB Mouse: Corsair M65 RGB Sound: AKG 553 Operating System: Windows 10

 

Current PC: 

http://i.imgur.com/ubYSO3f.jpg          http://i.imgur.com/xhpDcqd.jpg

Link to post
Share on other sites
Posted
  • Author

Sounds like a virus/malware to me, report back after scans.

 

Google adware removal and try that. Worked for me.

okay, did Malwarebytes, AVG and Bitdefender AdwareRemover, they all reported back that the PC is clean...

Project RYZENONE: https://pcpartpicker.com/user/gameaddict12345/saved/9HsVYJ

Link to post
Share on other sites
Posted

Ummm.. . dude. Are your router settings at default? Because this is most likely a network thing in my opinion , considering Twitch was hacked recently... Take a look at this it might help :)http://aralabs.com/blog/2015/03/25/ad-fraud-malware-hijacks-router-dns-injects-ads-via-google-analytics/

Spoiler

PRE-BUILT DESKTOP | CPU: Intel Core 2 Duo E8400 @ 3GHz | RAM: 4GB DDR2 @ 800MHz (2GBX2) | GPU: NVIDIA GeForce GT 430 w/ 2GB VRAM | HDDs: 3.5" Samsung HD501LJ ATA 500GB 7200rpm & 3.5" Samsung 502IJ ATA 500GB 7200rpm | PSU: MODECOM Feel III-500Watt ATX | Displays: Samsung SyncMaster T22B350 (1920x1080) & LG Flatron W2234S (1680x1050) | OS: Windows 8.1 Pro 64-bit & Ubuntu Linux 14.04 LTS | Peripherals: Logitech M90 gray mice & Acme KM10 keyboard | Sound: HDMI 2.0

DELL INSPIRON 15 7000 SERIES (7537) LAPTOP | CPU: Intel i7-4510U @ 2GHz | RAM: 8GB DDR3 @ 1600MHz (4GBX2) | GPU: NVIDIA GeForce GT 750M w/ 2GB VRAM | SSHD: 2.5" 1TB + 8GB Flash | Display: 15.6" 1920x1080 IPS w/ Multi-Touch | OS: Windows 8.1 Pro 64-bit | Peripherals: Logitech M100 white mice | Sound:  Logitech Z130 2.0

OTHER DEVICES | Phone: Samsung Galaxy Alpha 32GB

Link to post
Share on other sites
Posted
  • Author

Ummm.. . dude. Are your router settings at default? Because this is most likely a network thing in my opinion , considering Twitch was hacked recently... Take a look at this it might help :)http://aralabs.com/blog/2015/03/25/ad-fraud-malware-hijacks-router-dns-injects-ads-via-google-analytics/

So I also added AdwCleaner to the lists of scanners I tried... It eliminated some things, but my problem still exists... Here are some websites where the ads appear:

 

zaLRSbk.png

 

mpPpVzB.png

 

ktFtho9.png

 

fxJ7t6v.png

 

9rwdrJ0.png

 

Is there any way I can purge this "sality" adware out of my network?

Project RYZENONE: https://pcpartpicker.com/user/gameaddict12345/saved/9HsVYJ

Link to post
Share on other sites
Posted

remember adblock lets advertisers pay to get around the extension so expect to see some adds.

 

anyway, in Chrome, menu > settings > extensions 

 

are there any extensions there that should not be, perfectly possible you have a rough add extension.

 

Do you only get these issues with Chrome or with other browsers too ?

 

Have you checked installed programs, installed recently that are odd ?

 

When the adds are served have you checked running programs for odd ones ?

 

Ed

Link to post
Share on other sites
Posted

Sorry, I fell asleep last night and stopped replying. xD

So I also added AdwCleaner to the lists of scanners I tried... It eliminated some things, but my problem still exists... Here are some websites where the ads appear:

Is there any way I can purge this "sality" adware out of my network?

I acutually think it might just be something as simple as a program installed. Can you go to the control panel and then to uninstall programs? Look for anything fishy or anything you didn't install. If something catches your eye Google what it does and then uninstall. Something's similar like this happened to my mother's computer.
Link to post
Share on other sites
Posted
  • Author

Sorry, I fell asleep last night and stopped replying. xD

I acutually think it might just be something as simple as a program installed. Can you go to the control panel and then to uninstall programs? Look for anything fishy or anything you didn't install. If something catches your eye Google what it does and then uninstall. Something's similar like this happened to my mother's computer.

I actually did that pretty recently and everything that's on the Control Panel list is a program that I know.

Project RYZENONE: https://pcpartpicker.com/user/gameaddict12345/saved/9HsVYJ

Link to post
Share on other sites
Posted
  • Author

Sorry, I fell asleep last night and stopped replying. xD

I acutually think it might just be something as simple as a program installed. Can you go to the control panel and then to uninstall programs? Look for anything fishy or anything you didn't install. If something catches your eye Google what it does and then uninstall. Something's similar like this happened to my mother's computer.

 

remember adblock lets advertisers pay to get around the extension so expect to see some adds.

 

anyway, in Chrome, menu > settings > extensions 

 

are there any extensions there that should not be, perfectly possible you have a rough add extension.

 

Do you only get these issues with Chrome or with other browsers too ?

 

Have you checked installed programs, installed recently that are odd ?

 

When the adds are served have you checked running programs for odd ones ?

 

Ed

 

Ummm.. . dude. Are your router settings at default? Because this is most likely a network thing in my opinion , considering Twitch was hacked recently... Take a look at this it might help :)http://aralabs.com/blog/2015/03/25/ad-fraud-malware-hijacks-router-dns-injects-ads-via-google-analytics/

Okay, here's an update:

 

I accessed the aforementioned websites on other browsers(Firefox, IE, Maxthon)... and the ads don't appear. I also accessed them from another laptop, also no ads. Therefore, I can conclude that this is probably AdBlock giving me a hard time. However, what's intriguing is the fact that the page on the ad somehow reloads and redirects to another site. (In my case, a porn site)...

 

(PS: @mvilcis, when was Twitch hacked?)

Project RYZENONE: https://pcpartpicker.com/user/gameaddict12345/saved/9HsVYJ

Link to post
Share on other sites
Posted

I actually did that pretty recently and everything that's on the Control Panel list is a program that I know.

Huh, so is it only redirecting you when your on twitch then? Otherwise this is such a weird issue. It would have to be adware/malware whatever you wanna call it but I don't get why the scans don't pick anything up. Let me get back to you in a bit.

Edit: did you say then only chrome has the redirecting issue?

Link to post
Share on other sites
Posted
  • Author

Huh, so is it only redirecting you when your on twitch then? Otherwise this is such a weird issue. It would have to be adware/malware whatever you wanna call it but I don't get why the scans don't pick anything up. Let me get back to you in a bit.

Edit: did you say then only chrome has the redirecting issue?

yes, only Chrome has the re-directing issue... and it happens occasionally... on this laptop at least. The chrome on my other laptop doesn't show ads and doesn't redirect me...

Project RYZENONE: https://pcpartpicker.com/user/gameaddict12345/saved/9HsVYJ

Link to post
Share on other sites
Posted
  • Author

So here's another update:

 

So I tried browsing the affected sites on another account that's logged into Chrome, and surprisingly, no ads have appeared. Same thing when I browsed as Guest. So the ads only happen on my Google Chrome account... which is awkward.

Project RYZENONE: https://pcpartpicker.com/user/gameaddict12345/saved/9HsVYJ

Link to post
Share on other sites
Posted

So here's another update:

 

So I tried browsing the affected sites on another account that's logged into Chrome, and surprisingly, no ads have appeared. Same thing when I browsed as Guest. So the ads only happen on my Google Chrome account... which is awkward.

I have no idea what to say, lol. You seem to have an odd problem.

Link to post
Share on other sites
Posted
  • Solution

remove adblock and install the extension Adguard AdBlocker , does the issue remain ?

Nah, ublock is WAY better

Spoiler

PRE-BUILT DESKTOP | CPU: Intel Core 2 Duo E8400 @ 3GHz | RAM: 4GB DDR2 @ 800MHz (2GBX2) | GPU: NVIDIA GeForce GT 430 w/ 2GB VRAM | HDDs: 3.5" Samsung HD501LJ ATA 500GB 7200rpm & 3.5" Samsung 502IJ ATA 500GB 7200rpm | PSU: MODECOM Feel III-500Watt ATX | Displays: Samsung SyncMaster T22B350 (1920x1080) & LG Flatron W2234S (1680x1050) | OS: Windows 8.1 Pro 64-bit & Ubuntu Linux 14.04 LTS | Peripherals: Logitech M90 gray mice & Acme KM10 keyboard | Sound: HDMI 2.0

DELL INSPIRON 15 7000 SERIES (7537) LAPTOP | CPU: Intel i7-4510U @ 2GHz | RAM: 8GB DDR3 @ 1600MHz (4GBX2) | GPU: NVIDIA GeForce GT 750M w/ 2GB VRAM | SSHD: 2.5" 1TB + 8GB Flash | Display: 15.6" 1920x1080 IPS w/ Multi-Touch | OS: Windows 8.1 Pro 64-bit | Peripherals: Logitech M100 white mice | Sound:  Logitech Z130 2.0

OTHER DEVICES | Phone: Samsung Galaxy Alpha 32GB

Link to post
Share on other sites
Posted

Okay, here's an update:

I accessed the aforementioned websites on other browsers(Firefox, IE, Maxthon)... and the ads don't appear. I also accessed them from another laptop, also no ads. Therefore, I can conclude that this is probably AdBlock giving me a hard time. However, what's intriguing is the fact that the page on the ad somehow reloads and redirects to another site. (In my case, a porn site)...

(PS: @mvilcis, when was Twitch hacked?)

This week if I'm correct. You should have like an email notification to the corresponding account

Spoiler

PRE-BUILT DESKTOP | CPU: Intel Core 2 Duo E8400 @ 3GHz | RAM: 4GB DDR2 @ 800MHz (2GBX2) | GPU: NVIDIA GeForce GT 430 w/ 2GB VRAM | HDDs: 3.5" Samsung HD501LJ ATA 500GB 7200rpm & 3.5" Samsung 502IJ ATA 500GB 7200rpm | PSU: MODECOM Feel III-500Watt ATX | Displays: Samsung SyncMaster T22B350 (1920x1080) & LG Flatron W2234S (1680x1050) | OS: Windows 8.1 Pro 64-bit & Ubuntu Linux 14.04 LTS | Peripherals: Logitech M90 gray mice & Acme KM10 keyboard | Sound: HDMI 2.0

DELL INSPIRON 15 7000 SERIES (7537) LAPTOP | CPU: Intel i7-4510U @ 2GHz | RAM: 8GB DDR3 @ 1600MHz (4GBX2) | GPU: NVIDIA GeForce GT 750M w/ 2GB VRAM | SSHD: 2.5" 1TB + 8GB Flash | Display: 15.6" 1920x1080 IPS w/ Multi-Touch | OS: Windows 8.1 Pro 64-bit | Peripherals: Logitech M100 white mice | Sound:  Logitech Z130 2.0

OTHER DEVICES | Phone: Samsung Galaxy Alpha 32GB

Link to post
Share on other sites
Posted

So I also added AdwCleaner to the lists of scanners I tried... It eliminated some things, but my problem still exists... Here are some websites where the ads appear:

zaLRSbk.png

mpPpVzB.png

ktFtho9.png

fxJ7t6v.png

9rwdrJ0.png

Is there any way I can purge this "sality" adware out of my network?

oh and out of curiosity what chrome extensions do you have?

Spoiler

PRE-BUILT DESKTOP | CPU: Intel Core 2 Duo E8400 @ 3GHz | RAM: 4GB DDR2 @ 800MHz (2GBX2) | GPU: NVIDIA GeForce GT 430 w/ 2GB VRAM | HDDs: 3.5" Samsung HD501LJ ATA 500GB 7200rpm & 3.5" Samsung 502IJ ATA 500GB 7200rpm | PSU: MODECOM Feel III-500Watt ATX | Displays: Samsung SyncMaster T22B350 (1920x1080) & LG Flatron W2234S (1680x1050) | OS: Windows 8.1 Pro 64-bit & Ubuntu Linux 14.04 LTS | Peripherals: Logitech M90 gray mice & Acme KM10 keyboard | Sound: HDMI 2.0

DELL INSPIRON 15 7000 SERIES (7537) LAPTOP | CPU: Intel i7-4510U @ 2GHz | RAM: 8GB DDR3 @ 1600MHz (4GBX2) | GPU: NVIDIA GeForce GT 750M w/ 2GB VRAM | SSHD: 2.5" 1TB + 8GB Flash | Display: 15.6" 1920x1080 IPS w/ Multi-Touch | OS: Windows 8.1 Pro 64-bit | Peripherals: Logitech M100 white mice | Sound:  Logitech Z130 2.0

OTHER DEVICES | Phone: Samsung Galaxy Alpha 32GB

Link to post
Share on other sites
Posted

Disabled AdBlock and instaled uBlock.... the ads have disappeared!

Much wow such happy.

Spoiler

PRE-BUILT DESKTOP | CPU: Intel Core 2 Duo E8400 @ 3GHz | RAM: 4GB DDR2 @ 800MHz (2GBX2) | GPU: NVIDIA GeForce GT 430 w/ 2GB VRAM | HDDs: 3.5" Samsung HD501LJ ATA 500GB 7200rpm & 3.5" Samsung 502IJ ATA 500GB 7200rpm | PSU: MODECOM Feel III-500Watt ATX | Displays: Samsung SyncMaster T22B350 (1920x1080) & LG Flatron W2234S (1680x1050) | OS: Windows 8.1 Pro 64-bit & Ubuntu Linux 14.04 LTS | Peripherals: Logitech M90 gray mice & Acme KM10 keyboard | Sound: HDMI 2.0

DELL INSPIRON 15 7000 SERIES (7537) LAPTOP | CPU: Intel i7-4510U @ 2GHz | RAM: 8GB DDR3 @ 1600MHz (4GBX2) | GPU: NVIDIA GeForce GT 750M w/ 2GB VRAM | SSHD: 2.5" 1TB + 8GB Flash | Display: 15.6" 1920x1080 IPS w/ Multi-Touch | OS: Windows 8.1 Pro 64-bit | Peripherals: Logitech M100 white mice | Sound:  Logitech Z130 2.0

OTHER DEVICES | Phone: Samsung Galaxy Alpha 32GB

Link to post
Share on other sites
Posted
  • Author

oh and out of curiosity what chrome extensions do you have?

I have FrankerFaceZ, BetterTwitchTV, Google Docs, Google Sheets, Google Slides and Logitech Smooth Scrolling. I also have the LTT Notifications Extension and Chrome Stylist but they're disabled.

Project RYZENONE: https://pcpartpicker.com/user/gameaddict12345/saved/9HsVYJ

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Troubleshooting

×