Solved

browser hijack with sweet page.com

Posted on 2014-09-22
11
464 Views
Last Modified: 2014-09-30
how to remove this from from IE and google chrome? tried some of the methods online doesn't work yet
0
Comment
Question by:grnow
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
  • 2
  • +2
11 Comments
 
LVL 95

Assisted Solution

by:John Hurst
John Hurst earned 125 total points
ID: 40336450
What is happening?  

Malwarebytes (malwarebytes.org) is one of the best way to get rid of malware. Scan with it and be sure IE and all other browsers are closed.
0
 
LVL 95

Expert Comment

by:John Hurst
ID: 40336457
If something is executing in the background, also try the following:

Download and install Process Explorer from Microsoft. Run it and look under Explorer on the left hand side. Are there any alphanumeric processes running?  If so, kill them and do NOT restart. Immediately scan with Malwarebytes to remove viruses.  Once done, then restart.
0
 

Assisted Solution

by:sonjabadenhorst
sonjabadenhorst earned 125 total points
ID: 40336595
I would run a virus scan in safe mode using Malwarebytes and then Avira both free to use. When running Malwarebytes, go to "Settings" "Detection and Protection" and make sure "Scan for rootkits" are checked. I would then restart and go to msconfig and kill any startup and service items you don't recognize, if unsure google it. Go to cmd and do a dns flush also check in the network and share under IP v4 and IPv6 to make sure there isn't a static DNS there. Unless your company use one and if they do just make sure it hasn't change. In chrome, go to settings and click on advance and go to the bottom of the page and click on "Reset Browser Settings". Also clear any home page you don't want your browser to go to. For IE go to the gear in the top right and go to internet option, go to the advanced tab and click on restore advanced settings and click reset also clear any home page. This should clear the browser of any adware. I would download ccleaner free and pay attention to cleaning your web browsers in the applications tab. Finally just for my sake, I would run a sfc /scannow in cmd to make sure the virus didn't do anything with my protected windows files. FYI if you can't get the browsers clean, just uninstall using ccleaner and reinstall it. Hope this helps.
0
Get Actionable Data from Your Monitoring Solution

Your communication platform is only as good as the relevance of the information you send. Ensure your alerts get to the right people every time with actionable responses. Create escalation rules that ensure everyone follows the process and nothing is left to chance.

 
LVL 28

Assisted Solution

by:Thomas Zucker-Scharff
Thomas Zucker-Scharff earned 125 total points
ID: 40336599
If you use Chameleon from Malwarebytes (malwarebytes.org/chameleon), and execute the svchost file it will disable any rogue processes update MBAM and then run it.  You also might want to try running spyBHORemover from securityxploded.com.
0
 
LVL 24

Assisted Solution

by:aadih
aadih earned 125 total points
ID: 40336634
It's prudent and doesn't take much time to scan also with AdwCleaner:

http://www.bleepingcomputer.com/download/adwcleaner/ >
0
 
LVL 28

Expert Comment

by:Thomas Zucker-Scharff
ID: 40336640
And although MBAM does have the ability to scan for rootkit activity, it is not the best (even their beta rootkit scanner is better).  If you suspect a rootkit please look at my article on rootkits and anti rootkit scanning tools.
0
 
LVL 24

Expert Comment

by:aadih
ID: 40336651
For root kits, please scan with TDSSKiller:

http://www.bleepingcomputer.com/download/tdsskiller/ >

It takes only a few minutes.
0
 

Accepted Solution

by:
grnow earned 0 total points
ID: 40336923
tried the 2 softwares (Adwcleaner, Malwarebytes Anti-Malware) mentioned above and instructions from this link http://www.repairwin.com/remove-uninstall-sweet-page-com-browser-hijacker/

so far it seemed to be resolved. monitor for another day to see
0
 
LVL 28

Expert Comment

by:Thomas Zucker-Scharff
ID: 40336996
great!
0
 
LVL 24

Expert Comment

by:aadih
ID: 40337154
Great. :-)
0
 

Author Closing Comment

by:grnow
ID: 40351799
2 software used to remove, Adwcleaner and Malwarebytes Anti-Malware
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Did you know SD-WANs can improve network connectivity? Check out this webinar to learn how an SD-WAN simplified, one-click tool can help you migrate and manage data in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you come here a lot? Are you lazy like me and don't want to go through the "trouble" of having to click your Dock's Safari icon and then having to click your Experts Exchange Favorites bookmark to get here? Well then this article is for you.
You cannot be 100% sure that you can protect your organization against crypto ransomware but you can lower down the risk and impact of the infection.
Google currently has a new report that is in beta and coming soon to Webmaster Tool accounts. This Micro Tutorial will highlight new features for Google Webmaster Tools.
Shows how to create a shortcut to site-search Experts Exchange using Google in the Chrome browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch the Search Engine Menu: In chrome, via you…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question