Windows Security Tutorials - Herong's Tutorial Examples - v3.01, by Dr. Herong Yang
"RocketTab Ads" Box on Google Pages
This section provides an example of 'RocketTab Ads' ads box embedded in Google search result pages. 'RocketTab Ads' could be related malware 'Tube Dimmer'.
Another symptom that could be related to "Tube Dimmer" malware is that "RocketTab Ads" gets displayed on Google search result pages based on my first-hand experience on an infected Windows 7 system.
1. On the infected Windows 7 system, I went to www.google.com with Firefox.
2. I did a search with "search deals by Injekt" and saw a "RocketTab Ads" ad box displayed on top of the Google search result page:
3. The malware is well designed to hijack the Google search result page, and embedded its ad box into the page. It makes you believe that Google is displaying this ad box. But it failed to actually display any ads in the ad box.
I guess this symptom is caused by "Tube Dimmer" malware, since it disappeared when I removed "Tube Dimmer". But I don't have any proof.
Table of Contents
About This Windows Security Book
Windows 8: System Security Review
Windows 8: System Security Protection
Windows 8 Defender for Real-Time Protection
Windows 7: System Security Review
Windows 7: System Security Protection
Windows 7 Forefront Client Security
Norton Power Eraser - Anti-Virus Scan Tool
McAfee Virus and Malware Protection Tools
Spybot - Spyware Blocker, Detection and Removal
Keeping IE (Internet Explorer) Secure
Malware (Adware, Spyware, Trojan, Worm, and Virus)
HijackThis - Browser Hijacker Diagnosis Tool
IE Add-on Program Listing and Removal
"Conduit Search" - Malware Detection and Removal
►"Tube Dimmer", "Scorpion Saver" or "Adpeak" Malware
What Is Malware "Tube Dimmer"?
"Search Deals by Injekt" Ads on Google Pages
"Scorpion Saver" Floating Ad on Web Pages
"Scorpion Saver" Adpeak Proxy Attack
Google Ads Hijacked by "Scorpion Saver" Ads
Yahoo! Ads Displaced in Yahoo! Email
►"RocketTab Ads" Box on Google Pages
Diagnosis Results of Malware "Tube Dimmer"
ChromeHelper.exe, FirefoxHelper.exe, and IeHelper.exe
Removing Malware "Tube Dimmer"
Malware Manual Removal Experience
Vundo (VirtuMonde/VirtuMundo) - vtsts.dll Removal
Trojan and Malware "Puper" Description and Removal
VSToolbar (VSAdd-in.dll) - Description and Removal
PWS (Password Stealer) Trojan Infection Removal