Solved

browser hijack with sweet page.com

Posted on 2014-09-22
11
450 Views
Last Modified: 2014-09-30
how to remove this from from IE and google chrome? tried some of the methods online doesn't work yet
0
Comment
Question by:grnow
  • 3
  • 3
  • 2
  • +2
11 Comments
 
LVL 92

Assisted Solution

by:John Hurst
John Hurst earned 125 total points
ID: 40336450
What is happening?  

Malwarebytes (malwarebytes.org) is one of the best way to get rid of malware. Scan with it and be sure IE and all other browsers are closed.
0
 
LVL 92

Expert Comment

by:John Hurst
ID: 40336457
If something is executing in the background, also try the following:

Download and install Process Explorer from Microsoft. Run it and look under Explorer on the left hand side. Are there any alphanumeric processes running?  If so, kill them and do NOT restart. Immediately scan with Malwarebytes to remove viruses.  Once done, then restart.
0
 

Assisted Solution

by:sonjabadenhorst
sonjabadenhorst earned 125 total points
ID: 40336595
I would run a virus scan in safe mode using Malwarebytes and then Avira both free to use. When running Malwarebytes, go to "Settings" "Detection and Protection" and make sure "Scan for rootkits" are checked. I would then restart and go to msconfig and kill any startup and service items you don't recognize, if unsure google it. Go to cmd and do a dns flush also check in the network and share under IP v4 and IPv6 to make sure there isn't a static DNS there. Unless your company use one and if they do just make sure it hasn't change. In chrome, go to settings and click on advance and go to the bottom of the page and click on "Reset Browser Settings". Also clear any home page you don't want your browser to go to. For IE go to the gear in the top right and go to internet option, go to the advanced tab and click on restore advanced settings and click reset also clear any home page. This should clear the browser of any adware. I would download ccleaner free and pay attention to cleaning your web browsers in the applications tab. Finally just for my sake, I would run a sfc /scannow in cmd to make sure the virus didn't do anything with my protected windows files. FYI if you can't get the browsers clean, just uninstall using ccleaner and reinstall it. Hope this helps.
0
 
LVL 26

Assisted Solution

by:Thomas Zucker-Scharff
Thomas Zucker-Scharff earned 125 total points
ID: 40336599
If you use Chameleon from Malwarebytes (malwarebytes.org/chameleon), and execute the svchost file it will disable any rogue processes update MBAM and then run it.  You also might want to try running spyBHORemover from securityxploded.com.
0
 
LVL 24

Assisted Solution

by:aadih
aadih earned 125 total points
ID: 40336634
It's prudent and doesn't take much time to scan also with AdwCleaner:

http://www.bleepingcomputer.com/download/adwcleaner/ >
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 
LVL 26

Expert Comment

by:Thomas Zucker-Scharff
ID: 40336640
And although MBAM does have the ability to scan for rootkit activity, it is not the best (even their beta rootkit scanner is better).  If you suspect a rootkit please look at my article on rootkits and anti rootkit scanning tools.
0
 
LVL 24

Expert Comment

by:aadih
ID: 40336651
For root kits, please scan with TDSSKiller:

http://www.bleepingcomputer.com/download/tdsskiller/ >

It takes only a few minutes.
0
 

Accepted Solution

by:
grnow earned 0 total points
ID: 40336923
tried the 2 softwares (Adwcleaner, Malwarebytes Anti-Malware) mentioned above and instructions from this link http://www.repairwin.com/remove-uninstall-sweet-page-com-browser-hijacker/

so far it seemed to be resolved. monitor for another day to see
0
 
LVL 26

Expert Comment

by:Thomas Zucker-Scharff
ID: 40336996
great!
0
 
LVL 24

Expert Comment

by:aadih
ID: 40337154
Great. :-)
0
 

Author Closing Comment

by:grnow
ID: 40351799
2 software used to remove, Adwcleaner and Malwarebytes Anti-Malware
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Microsoft edge browser 7 62
Fire Fox doesn't show calendar on html page ? 5 63
How to specify a browser 14 55
Google Chrome Profile Errors in Windows 10 9 5
Internet is a big network which is formed by connecting multiple small networks.It is a platform for all the users which are connected to it.Internet act as platform in different fields. Such as: Internet  as a collaboration platform. Internet  as…
You cannot be 100% sure that you can protect your organization against crypto ransomware but you can lower down the risk and impact of the infection.
Google currently has a new report that is in beta and coming soon to Webmaster Tool accounts. This Micro Tutorial will highlight new features for Google Webmaster Tools.
This Micro Tutorial will demonstrate how nuggets on the Web are formatted by using Chrome Developer Tools. These tools would not only view the site's CSS but it can also modify it and save the CSS to use on your own site.

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now