Did Anybody Experience A Google Browser Hijacker Just Recently?

[lostinisaan]

Got my PC working well, but the notebook's still showing the "I'm dead Jim, message."

Could Torch be the problem, or any setting related to Torch? It's just too hot to even think logically now.

Have you uninstalled Chrome Browser, run CC cleaner, made sure all Chrome folders have been deleted (Program Files and hidden App Data folders). Reboot and reinstall.

Probably an bad extension, bad Plug-in or even bad, very bad Adobe Flashplayer

How to start chrome without Extensions or Plug-ins

(the not so graceful diagnostic icon data edit)

I deleted all ,also the left over Google stuff in the program files, used Uninstaller, rebooted and downloaded a new Google set up.

All went well, but when Google wanted to open. the old crap Dead Jim popped up again.

Will have to give it a try tomorrow. Whatever the problem is, but it should work having also Torch installed, right?

Thanks in advance.

[RichCor]

[...]

All went well, but when Google wanted to open. the old crap Dead Jim popped up again.

Will have to give it a try tomorrow. Whatever the problem is, but it should work having also Torch installed, right?

Thanks in advance.

Torch (a Chromium fork) shouldn't cause a problem.

You may want to Download and Run the Google Chrome Unwanted Software Removal Tool {beta}

Also review:

Chrome crashes giving He's dead Jim error message

RussB.Rising Star10 Best Answers 10/8/14

By the way, "He's dead, Jim" is related to memory, but it doesn't necessarily mean you don't have enough memory on your system (although that could be a cause for some systems). It ultimately means that a page/extension/process was having issues handling/accessing the memory it needed. This could be cause by many different things.

[radiochaser]

...something tells me a few of these people started out as AOL users

I started out as an AOL user.

Then I received my first months bill!

[RickBradford]

I have had this problem for a week. Specifically:

* Many, though not all, complete webpages get taken over, and links don't work. Instead, a second click takes you to "rdsrv.com" or "adcash.com".

It happens in every browser, and nothing I did manually or using anti-malware systems worked.

Until this morning when I chanced on the answer (I pray).

Question 1: Are you using your own D-Link or Linksys router?

If so, you will have to reset the router, because it is the router firmware that has been compromised. It is nothing to do with your computer or your browser. (If not, the problem is with a router further up the line)

Resetting the router is a serious matter, and you have to have a certain amount of information (regarding passwords and user names) to hand. Or call your valiant but underpowered TOT consultant for help.

The solution, which seems to have fixed my problem, is probably too long for a post, but if anyone is having the specific problem above, they can PM me for a fix. There are also ways of securing the router so this cannot happen again.

[RickBradford]

^^ Should say TP-Link router.

[lostinisaan]

I have had this problem for a week. Specifically:

* Many, though not all, complete webpages get taken over, and links don't work. Instead, a second click takes you to "rdsrv.com" or "adcash.com".

It happens in every browser, and nothing I did manually or using anti-malware systems worked.

Until this morning when I chanced on the answer (I pray).

Question 1: Are you using your own D-Link or Linksys router?

If so, you will have to reset the router, because it is the router firmware that has been compromised. It is nothing to do with your computer or your browser. (If not, the problem is with a router further up the line)

Resetting the router is a serious matter, and you have to have a certain amount of information (regarding passwords and user names) to hand. Or call your valiant but underpowered TOT consultant for help.

The solution, which seems to have fixed my problem, is probably too long for a post, but if anyone is having the specific problem above, they can PM me for a fix. There are also ways of securing the router so this cannot happen again.

Nope, can't be the router. c, connected via LAN is working fine, as well as son's C, also connected wireless.

Will try the Chrome Unwanted..tool and keep you up to date.

P.S. Had the same issues in my PC, the same webpages, etc, but could finally get rid of it by using Spy Hunter 4. But only the paid version works.

My son's friend's experienced the same problem.

The notebook seems to have this Google problem for quite a long time. before it didn't even start up, now it's showing the "dead Jim" message.

Thanks for all.

Edited April 20, 2015 by lostinisaan

[RichCor]

^^ Should say TP-Link router.

Probably DNS redirection.

Especially if many connected devices are affected all at once.

Most of Thailand's ISPs set their consumer routers with a common password based on the ISP name.

So essentially anybody could access your router and make changes, the easiest is DNS (the Internet Phonebook). Changing what DNS Server your devices use to resolve Internet URL names to IP Address numbers gives them control on what appears on your screen.

If people think their router is already compromised, check what DNS is being used. It should be set to use the ISP by default.

Only RESET the router to Default and reconfigure IF YOU HAVE ALL THE SETUP INFORMATION.

Also, change the router password. Even if you change it slightly by appending your house number (true -> true1020) it would prevent most scriptkiddies from taking over your router. Just don't forget what YOU changed it to.

Good post, Mr Bradford.

Edited April 20, 2015 by RichCor

[lostinisaan]

I finally gave up and use Torch as my browser. The tool didn't find anything, nor did any other programs like Spy Hunter.

The weird thing about the notebook is that Google Chrome first didn't even load, now it shows the dead Jim bs.

But it's actually too hot and I'm looking forward to a swimming pool now. Let Jim be dead...........

[RickBradford]

A Chrome-only crash has sometimes been traced to a conflict between later versions of Chrome and some webcam software (CyberLink YouCam).

Uninstalling YouCam is one way out of this; I believe they have announced a patch, if the camera is of huge importance.

Edited April 20, 2015 by RickBradford

[lostinisaan]

A Chrome-only crash has sometimes been traced to a conflict between later versions of Chrome and some webcam software (CyberLink YouCam).

Uninstalling YouCam is one way out of this; I believe they have announced a patch, if the camera is of huge importance.

Thanks for this one. I've read something about that a long time ago, but it was already gone. Yep, got the Bastard installed.

Tomorrow it's time to say goodbye to "Dead Jim."-

[IMHO]

I think the OP is some kind of magnet for malware, based on the frequency of his security related posts here

Time for Mac?

[Anthony5]

I think the OP is some kind of magnet for malware, based on the frequency of his security related posts here

Time for Mac?

You are mistaken, the OP on intend attracts as much as possible Trojans and malware, with the only purpose of helping the pc illiterate on this forum

http://www.thaivisa.com/forum/topic/810677-my-opinion-regarding-best-possible-protection-without-condom/?p=9227641

I did try all to get as many possible infections, ( by downloading all sorts of programs, movies, etc..)

to be able to know what program suits me best. I must have spent days, weeks, months for troubleshooting

[IMHO]

I think the OP is some kind of magnet for malware, based on the frequency of his security related posts here

Time for Mac?

You are mistaken, the OP on intend attracts as much as possible Trojans and malware, with the only purpose of helping the pc illiterate on this forum

http://www.thaivisa.com/forum/topic/810677-my-opinion-regarding-best-possible-protection-without-condom/?p=9227641

I did try all to get as many possible infections, ( by downloading all sorts of programs, movies, etc..)

to be able to know what program suits me best. I must have spent days, weeks, months for troubleshooting

OK, yeah. So when he's finished ID'ing all the malware targeting Windows, maybe then he can do the same process for Mac. I just hope I'm still alive by that time

[lostinisaan]

Yes, I did try several programs, including AV programs. I did learn a lot and all machines are running well.

Excluding the Google dead Jim problem.

[Thunder26]

Yes, it happened to me and I had to reset my google browser that deleted all the cookies and disabled all the apps. Now it works as normal, but I have sign in or log in to any website now again!

[Thunder26]

Try this:

https://support.google.com/chrome/answer/2765944?hl=en

[Thunder26]

Just to add. After my all extensions were disabled, I manually deleted the unwanted ones which I didn't rekognize. After that my google chrome started to run with no pop-ups ads or pages. It was such a relief!

[nikster]

Was quite surprised when this happened in Chrome - I don't visit dodgy sites and I have a Mac.

Then I remembered I had installed some video download helper extension to download YouTube... as a way to just download the thing and watch it without constant hiccups and stoppages. That extension didn't work very well, but it did create a few new browser toolbar shortcuts I never signed up for. Horrible stuff and I am honestly surprised Google is letting this kind of malware run on their otherwise pretty secure browser.

So go to Chrome settings, advanced, extensions, and remove them all.

The latest Google Chrome also turns off all Java by default. Java - as it turns out - is just one huge security hole. It's funny it took hackers a long time to figure that out; Java supposedly has a secure sandbox and it was designed to be secure from the get-go. Unfortunately it seems to have more bugs than Flash, and so there are a million ways around the secure sandbox, and only the owner of Java, Oracle, can fix these issues. Java Applets aren't really used anymore so Oracle has very little incentive to fix all the bugs...

Edited April 22, 2015 by nikster

[phil2]

Have had it on everything I was using on my home network for months. At first, I just disabled java, on my phones, and it stopped the pop-ups, but I couldn't access, or sign in to many websites. A little over three weeks ago, the whole thing became really intense, frustrating and annoying, and I followed lots of guides on the internet, but the problem still persisted. Fortunately, I stumbled on a discussion on Pantip Webboard that had a solution that have worked perfectly fine. You have to change your DNS settings to fixed ones. The advice was to use - guess whose DNS - "8.8.8.8", and "8.8.4.4". It's been three weeks, and I haven't had a single browser hijack/pop-up.

[IMHO]

At first, I just disabled java, on my phones, and it stopped the pop-ups, but I couldn't access, or sign in to many websites.

It sounds like you blocked JavaScript, not Java. They are different. The first allows a limited set of commands, operating in a sandboxed environment, to interact with a page in a web browser. The second allows applications with vast access to your computer and it's resources to execute on your machine.

[phil2]

At first, I just disabled java, on my phones, and it stopped the pop-ups, but I couldn't access, or sign in to many websites.

It sounds like you blocked JavaScript, not Java. They are different. The first allows a limited set of commands, operating in a sandboxed environment, to interact with a page in a web browser. The second allows applications with vast access to your computer and it's resources to execute on your machine.

OK. Ajarn.

[phil2]

As a follow up to my above post, see the following link: http://www.techspot.com/news/60169-new-router-malware-injects-ads-porn-websites.html