Share via

Possible malware extension on Edge browser

Anonymous
2024-01-07T19:13:04+00:00

I found a random extension on my edge browser called "GallimimusBullatus". I can't remove it as it somehow made itself an organization on my browser. I don't know where it came from, but it redirects me too all these weird websites and switched my search engine to Yahoo. Someone please help me, as I did some digging and found out it has access to all my files.

Microsoft Edge | Browser extensions | Windows 11

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.

0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2024-01-08T02:29:29+00:00

    Hi

    Welcome to Microsoft community.

    It sounds like you've encountered a piece of unwanted software or a potentially unwanted program (PUP). Here's how you can try to remove it:

    1. Restart in Safe Mode:
      • Open the Windows start menu, click on the power icon, hold down the Shift key and click "Restart".
      • Upon restart, go to "Troubleshoot" > "Advanced options" > "Startup Settings" and then restart.
      • After your PC restarts, select "Enable Safe Mode with Networking" by pressing the corresponding number on your keyboard.
    2. Use Edge's Built-in Malware Scanner:
      • In Safe Mode, open Edge, click on the three-dot menu in the top right corner.
      • Select "Settings", then "Privacy, search, and services".
      • Scroll down to "Services" and click on "Microsoft Defender Browser Protection".
      • Use this to scan for and remove any unwanted software.
    3. Reset Edge to Default Settings:
      • Go to Edge settings using the three-dot menu.
      • Select "Reset settings" on the left sidebar.
      • Click on "Restore settings to their default values".
    4. Check for Malware:
      • Use a reputable antivirus program to scan your system for any malware.
    5. Manually Remove the Extension:
      • Open the Registry Editor by typing  regedit  in the Windows search bar and pressing Enter.
      • Navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Edge\ExtensionInstallForcelist and HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Edge\ExtensionInstallForcelist
      • Look for any entries related to "GallimimusBullatus" and delete them. Be careful not to delete anything else.
      • Disclaimer: Generally, modifying registry subkeys or work group is intended for advanced users, administrators, and IT Professionals. It can help fix some problems, however, serious problems might occur if you modify the registry incorrectly. Therefore, make sure that you follow these steps carefully. For further protection, back up the registry before you modify it. Then, you can restore the registry if a problem occurs. For more information about how to back up and restore the registry, click How to back up and restore the registry in Windows - Microsoft Support to view the article.
    6. Check Installed Programs:
      • Go to Settings > Apps > Apps & features and look for any unfamiliar programs that may have been installed around the time the issues started.

    It's important to only download extensions from sources you trust, and regularly check your installed extensions. Keep your antivirus software updated and run regular scans to catch any new threats.

    Best regards

    Derrick Qian | Microsoft Community Support Specialist

    Was this answer helpful?

    10+ people found this answer helpful.
    0 comments