Warning!: a brand new malware attack took a swipe at my browser (but failed).

  • 1
  • Problem
  • Updated 4 months ago
  • Acknowledged
I did a google search for a product and when I went to one of its search results, the website there created a number of popup windows, bombarded me with fake "error" messages, and tried to commandeer my browser in order to download what was almost certainly malware.  I had to use windows task manager to shut the browser down.  Likely, the speed limited internet connection that I had in place is what prevented anything worse than an unruly browser from happening.  I then disconnected from the internet and when I started the browser again, it still tried to shove those popups and fake "error" messages in my face.  This time I was able to close those windows out normally, again start the browser without problems and retrieve the offending URLs from the browser's history.  Obviously, I then did a complete malware scan and thankfully found nothing.  Otherwise, I would have deleted the virtual machine and copied a new one from the saved backup.  I then cleared the browser cache and all windows temp files.  I then did a whois search on those domains.  Those domains had only been registered today (25 May 2017).  The malicious domains are listed below:

fixethtechissuesimmediately  DOT  club/xx0eff/index.html?n=+1%20888-850-8578

blocked-your-system-63  DOT ga/securityerrorcode_0x80070424/0123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518

blocked-your-system-63  DOT ga/securityerrorcode_0x80070424/0123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517

blocked-your-system-63  DOT ga/securityerrorcode_0x80070424/0123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519

blocked-your-system-63  DOT  ga/securityerrorcode_0x80070424/
Photo of xode0000

xode0000, Champion

  • 475 Posts
  • 151 Reply Likes

Posted 1 year ago

  • 1
Photo of Judge and Jury

Judge and Jury

  • 1552 Posts
  • 888 Reply Likes
Windows Task Manager is too slow.

It's faster to enter Alt + F4 as it will close whatever is on top (has focus) and if nothing is open, it will  invoke the Windows shutdown dialog box.
Photo of Diana

Diana, Viasat Employee

  • 2154 Posts
  • 384 Reply Likes
Hi xode0000 and Craig,  Thanks you for the malware warning and the best way to attack it.  It is appreciated and will help us all.
Photo of xode0000

xode0000, Champion

  • 475 Posts
  • 151 Reply Likes
Some more information to give an idea of what the malware scene is like these days:

http://www.zdnet.com/article/shadowbrokers-launch-subscription-service-for-fresh-exploits-zero-day-l...
Photo of Cindy

Cindy

  • 107 Posts
  • 26 Reply Likes
Can we keep using Sparrow if we like??? It worked better with my PC Matic
Photo of Brad

Brad, Viasat Employee

  • 2887 Posts
  • 968 Reply Likes
New conversation

Please reference the new conversation here: Sparrow Browser

This conversation is no longer open for comments or replies.