Author Topic:  (Read 1383 times)

0 Members and 1 Guest are viewing this topic.

Offline Luita

  • Newbie
  • *
  • Posts: 1
« on: October 03, 2023, 05:24:29 PM »
How do I get rid of this obnoxious thing?

Offline DavidR

  • Avast Ɯberevangelist
  • Certainly Bot
  • *****
  • Posts: 89260
  • No support PMs thanks
« Reply #1 on: October 03, 2023, 06:24:25 PM »
It would be helpful if you gave is some information.

Get rid of what ?
A screenshot of the Avast Alert with the Details option selected would help.
- Attaching Images to your post - When you Click the Reply button it opens a text window for you to post your comment (reply or post).
Click the Preview button, that shows what you have input and expands it to include 'Attachments and other options'. Click that it further expands, here you can attach images, etc. at the bottom of your post.
See my attached image, click to expand.

Is this a site that you are actually connecting to  ?
If not start by clearing your browser cache and cookies,including 3rd party cookies and restart your browser.
If that resolves it you should be good to go.
If it doesn't try running your browser with add-ons disabled.

If that resolves it, have you added or updated any add-ons ?
If so try disabling that add-on - and restart and try again.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.5.6116 (build 24.5.9153.762) UI 1.0.808/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37598
  • Not a avast user
« Reply #2 on: October 03, 2023, 08:59:46 PM »
Get rid of what ? Is a browser hijacker

I would try a scan with Malwarebytes antimalware and Malwarebytes adwcleaner

« Last Edit: October 03, 2023, 09:03:21 PM by Pondus »

Offline polonus

  • Avast Ɯberevangelist
  • Probably Bot
  • *****
  • Posts: 33927
  • malware fighter
« Reply #3 on: October 04, 2023, 10:32:42 AM »
Thank you, Pondus,

What Pondus says is being confirmed through this scan here:

Two suspicious files are infested with Heur.HTML.Redirect.gen
[[<meta http-equiv="Refresh" content="0; URL=htxps://"/>]]
This is the threatdump

Also as Pondus states.
With MBAM free scan the whole computer, including memory, startup items, the registry, and the file system.
This is done so not only the residuals of Heur.JS.Redirect.gen, but also other trojan viruses hiding in the system can be detected.

Curious no one flagged Heur.HTML.Redirect.gen here:

How about that, Pondus? Are these redirects to for instance Tschibo and etc, being condoned by Big Tech?

Why even Quttera mentioned site as clean on VT?
 - and no alerts here either - ???

Isn't that strange?

Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!