Got a terrible virus which operated mostly on FF. Had reinstall and erase all bookmarks and settings. How do I retrieve my bookmarks without getting the virus?
The virus took over FF mainly, I managed to clean the computer with the help of Bleeping Computer forum, with many cleaning tools, but the virus must have taken the form of some kind of hijacking add on that leached on to FF, and did not disappear. Only when I uninstalled ff including bookmarks and preferences, did it finally disappear (or so it seems, currently). Now I want to get my bookmarks back but I'm afraid once I log in to sync, somehow either through bookmarks or preferences the virus will return. I do have an older computer that is synced to my FF account, but this computer was turned off during the whole virus episode, so I'm also afraid when I start using that computer it will contract the virus as well. Is there a way to sync my FF to an older date, before I got that horrible virus? What can I do? Thanks a lot for all your help!!
All Replies (3)
It is probably unlikely that you will be able to get a virus from uploading bookmarks. That is something that your malware forum at BleepingComputer should be able to advise you about.
It seems rather odd that the forum should advise delete your bookmarks. I would have hoped they would have advised first of all backing up and quarantining your Firefox Profile and or bookmarks.
It is may understanding that Sync is likely to be deprecated in the future and development has ceased. Sync is NOT intended to be a bookmarks backup itself, it is only to allow you to sync, and possibly then consider the synced device as a backup of sorts. You could try syncing the old machine.
There is not too much that can be done reliably without proper backups. Macs may use TimeMachine, and Windows may use Previous Versions
- see http://windows.microsoft.com/en-US/windows7/Previous-versions-of-files-frequently-asked-questions there is a posibility you could retrive bookmarks from that. Anything of value will be in the Firefox profile. You will need to look for your bookmarks backup folder, or the database file "places.sqlite"
Thanks for your reply, John. They didn't (Bleeping computer forum) tell me to delete, I did it on my own before contacting them, but I do have all my bookmarks synced in the other computer, I was just worried about using it and was afraid it would also contract the virus once ff is on and synced. Since then the other computer was used, inadvertently, by my son. It turns out that the home page was changed, but luckily we didn't click on anything and deleted it right away, so there was no chance to contract the virus that way. I also deleted any other bookmarks that I thought were added or that I visited on the morning of the virus attack. I was also able to look into history and see exactly all the websites which gave me that problem. It looks like the old computer is safe, but I still didn't sync it with the new one because the new one is still behaving a bit oddly. I'm waiting for help at the BC forum. The interesting thing is that this virus seems to have been especially designed and tailored to attack FF although someone on the forum claims it attacked their Chrome browser. I love FF and only use it for browsing, always using script and ad blockers as well as WOT filters, always feeling safe from viruses that way. However, I suppose also that the ability to modify and engineer and add on to it makes FF also more vulnerable for change and malware attacks?
Hi again Iris,
BC Forum & snap.do
I'm waiting for help at the BC forum. The interesting thing is that this virus seems to have been especially designed and tailored to attack FF although someone on the forum claims it attacked their Chrome browser.
I found one of your BC threads and notice mention of snap.do.
I suggest you continue taking advice from BC, they are experts on this sort of thing. You could have more than one problem and multiple adware/malware. Some of these adware toolbars have removal tools that work, but there is the possibility of getting even worse problems by following the wrong or outdated advice. Part of the removal process may involve registry hacks and it is wise to get one-to-one advice on how to do that safely.
As I said follow BC advice but you may be interested in some background info.
- I believe snap.do installs globally and affects other browsers also see
http://www.telegraph.co.uk/technology/advice/10323797/What-is-Snap.do-Toolbar.html
(Note snap.do is a website and toolbar rather than a virus.) - Other threads in this forum show users have successfully removed snap.do look at this thread and the threads and other information it links to
Remove completely snap.do, restart and it still persist/questions/968709
Preserve & backup bookmarks now on both machines
You may get problems from opening bookmark and especially installing software from the bookmarked sites, but it is probably safe to back up your bookmarks. It is important to note that standard bookmark importing in Firefox completely overwrites current bookmarks so it is advisable to backup bookmarks by exporting them before and after any changes or restores.
- Follow this advice to create the backup files
Restore bookmarks from backup or move them to another computer_manual-backup
The planned replacement for Sync will likely be a proper backup service but you should not rely on the current Firefox Sync for backup purposes. You should make sure you have independent bookmark backup on a second device & probably separate backup files.
- Please post back with how you get on in making the backup files and following BC advice.
- Have you anything else important for Firefox on the old or current machine ?
Passwords and login details for instance stored automatically by Firefox ?