New
#1
Hunt for malware c.betrad.com
Hello
I have tracked an annoying program called c.betrad.com on my computer to Internet Explorer. The program loads onto my machine daily on startup of google. It loads a script into local-storage which I assume it runs on load-up and sends all my private stuff back to its warehouse. Thing is, I do not use IE. I deleted it from my programs list and as far as I am aware, I do not have a copy or does windows sneak IE in through the back-door.
Where is the startup for c.betrad.com lurking? I have disabled my preload folder and kept a copy of the script in local-storage (attached). I always delete my local-storage and other temp folders daily but I assume its too late for this problem. My data has been sent. I attach a snip of the storage directory. I did not use youtube or the daily telegraph either so I assume they load too.
Is there any way I can catch the data being sent. I could turn off the internet and send the stuff to a file, say.
I have turned off the run javascript in google settings.