The great fear of many Internet users: You will appear in a shocking video somewhere without knowing it!
And of course fraudsters also play on this fear and they know exactly how to deceive Facebook users. It all starts with a private message sent via a friend's account on Facebook. There is a link to a video there. But this link and the supposed video behind it is a trap!
Even this private message does not come from the Facebook friend, but this friend has already fallen for this scam and the account therefore automatically sends these messages. Like in this current case:
![image[14]](https://www.mimikama.org/wp-content/uploads/2018/01/image14.png "image[14]")
This message contains a link that has been shortened, which means that at first it is not clear where the journey is leading. You can only see the process by clicking on the link.
A web address loads, which turns out to be a Google Doc. The profile picture of the sender of the PM appears here in large format with a classic play arrow, as can be found in videos. This arrow is intended to encourage you to click on the image and continue. Interestingly, there is no malware to be found at this point, including no click trap. The Google document only serves as a stopover here.
This intermediate stop may have been set up so that Facebook does not recognize the shortened link as harmful and therefore remove it immediately. For Facebook it is simply a link to a Google document and that is how it should be evaluated.
![image[4]](https://www.mimikama.org/wp-content/uploads/2018/01/image4.png "image[4]")
This is of course complete nonsense. There is no video on this fake YouTube page. This alleged codec extension is nothing but a browser extension for Google Chrome. It is an extension called “Denei” that provides no information about itself and provides false information about its origins.
Affected: Chrome users!
Please do not install this extension under any circumstances! This is not a video codec. You can assume that once installed, this extension will access your Facebook profile and independently write status reports and/or send private messages without you noticing.
![image[9]](https://www.mimikama.org/wp-content/uploads/2018/01/image9.png "image[9]")
In this case we would be back at the beginning of the article, because it is exactly the same message as we recently received. Only this time you are the victim and your own profile picture will be shown to the recipients of the message.
Help, I'm affected!
Have your computer scanned for malware. Then remove the harmful browser extension and also check whether there are any other extensions/add-ons in the browser that you have not installed or that you are not aware of. Removing a browser extension in Google Chrome (since this is affected in the current case) is not rocket science. Proceed as follows: Click on the three lines in the top right corner of your browser (1), then on “More tools” (2) and then on “Extensions” (3).
The menu in which the extensions are located opens. You can either edit these by removing the check mark (1) or delete them by clicking on the trash can (2) and confirming the deletion again.
Change your password(s). Note: Please only change passwords once you are sure that everything harmful has been removed.
Notes:
1) This content reflects the current state of affairs at the time of publication. The reproduction of individual images, screenshots, embeds or video sequences serves to discuss the topic. 2) Individual contributions were created through the use of machine assistance and were carefully checked by the Mimikama editorial team before publication. ( Reason )