Author Topic: Malware  (Read 1325 times)

Offline RealOldNick

  • Comodo's Hero
  • *****
  • Posts: 240
Malware
« on: October 20, 2017, 09:38:40 AM »
We had BOClean, but it seems to be DITW. I have just had to use a FireFox addin to stop a really nasty malware (newtab.club).  All this does is top it in FF, but the evil POC is still there on my PC. I wish I could sit happy with CIS++ looking after me.

Nick
Nick

Offline EricJH

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 24401
Re: Malware
« Reply #1 on: October 27, 2017, 10:16:40 PM »
Doesn't seem that hard to remove judging by http://www.free-uninstall.org/how-to-uninstall-remove-newtab-club/ .

Do you have an installer that installs this badware alongside another program? Then please submit it to Comodo.

Offline RealOldNick

  • Comodo's Hero
  • *****
  • Posts: 240
Re: Malware
« Reply #2 on: November 02, 2017, 02:38:54 AM »
Thanks for the reply.

I ran SpyHunter 4 and it found a heap...but not Newtab Club. It took hours to check. You have to buy to do any removal. When I get some time I will try one of the other ones.

I have no idea if I have an installer that did this. I assume I have, but by nature of these many are secretive. Sorry.

Trying to dl Malwarebytes Antimalware, the third one suggested, resulted in an ad page, with what seemed no way past. Comodo detected malware!  :o

Not so easy it would seem

newtab.club is now a serious pest. if I try to set option, I just get newtab.
« Last Edit: November 02, 2017, 02:47:16 AM by RealOldNick »
Nick

Offline BlueTesta

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 451
Re: Malware
« Reply #3 on: November 02, 2017, 07:04:00 AM »
I would stay away from Spyhunter 4.
https://malwaretips.com/threads/spyhunter-4-is-it-a-fake-software.26301/
https://blog.malwarebytes.com/security-world/2016/02/bleepingcomputer-defends-freedom-of-speech/


It would be great if you could find it and submit it to Comodo so it will help other users from being infected by this in the feature.


Some other tools that might work.
(i havent seen Newtab.club b4, so cant confirm if these tool will work)
I would recommend you do a system restore point b4 every tool.

AdwCleaner
Emsisoft Emergency Kit
HitmanPro
Junkware Removal Tool
Zemana AntiMalware
« Last Edit: November 02, 2017, 08:56:29 AM by BlueTesta »
"Everybody is a genius. But if you judge a fish by its ability to climb a tree, it will live its whole life believing that it is stupid."

Offline RealOldNick

  • Comodo's Hero
  • *****
  • Posts: 240
Re: Malware
« Reply #4 on: November 04, 2017, 06:22:59 PM »
OK. Thanks for the replies.

Firstly I have no idea how to find the source of this. Do not even know where to start. If I knew that, I may not be here! :)

However, I used Zemano and it found and removed newtab.club. It is a paid programme if you want its full power and more than a time trial.

Junk Remover tool is BTW now discontinued, replaced by ADWCleaner, from the same organisation.

But then I faced a problem. newtab.club had gone from IE, but was still interfering with Firefox. Apparently the calls it made were still stored in FF's profile. So it would still seem to be there, but FF was unable to search at all. I created a new profile, losing all my settings, passwords etc and it went away. I was offered less brutal methods, but IME with Windows one can spend hours trying finesse when I simple bludgeoning is best! 88)
Nick

Offline RealOldNick

  • Comodo's Hero
  • *****
  • Posts: 240
Re: Malware
« Reply #5 on: November 04, 2017, 06:30:26 PM »
I also have a question:

If I _do_ find the source of newtab.club, it will most likely be a freeware or W.H.Y. Finding one such source is surely not going to stop newtab.club infection is it? Can'r newtab.club be found by Comodo the same way a malware application finds it; the entity itself, rather than the source?

IIRC Comodo had a malware section that is now gone....
Nick

Offline BlueTesta

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 451
Re: Malware
« Reply #6 on: November 07, 2017, 09:50:47 AM »
I also have a question:

If I _do_ find the source of newtab.club, it will most likely be a freeware or W.H.Y. Finding one such source is surely not going to stop newtab.club infection is it? Can'r newtab.club be found by Comodo the same way a malware application finds it; the entity itself, rather than the source?

IIRC Comodo had a malware section that is now gone....


I installed Youtube downloader that installed pup on my virtualbox, i submited that pup file to comodo and a pup signature was created for it, next time i installed the Youtube downloader, the pup was quarantined during the install.
« Last Edit: November 07, 2017, 09:52:40 AM by BlueTesta »
"Everybody is a genius. But if you judge a fish by its ability to climb a tree, it will live its whole life believing that it is stupid."

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek