As LukeFox suggested, sometimes something remains in the browser. In the cases I encountered, Malewarebytes always found the culprit and deleted it, but then I had to fix the browser. You can try their clean up tool for Chrome. Get it here.
I know the other browsers behave the same way, but if cleaning Chrome works, it means the malware is gone, only the browsers need to be fixed
Comment has been collapsed.
yes i tried their cleanup tool. all it did was to tell me to reset chrome which didnt help me
Comment has been collapsed.
Have you tried changing the DNS server? You can try with 8.8.8.8 and 8.8.4.4, the google dns servers, as some ISPs suffer attacks on their servers.
Comment has been collapsed.
yes im looking into DNS servers and local LAN settings. im not into networking but i'll see what i can do
Comment has been collapsed.
Hi, try to use Kaspersky Removal Tool (don't forgot to setup high-quality check). Link below:
https://www.kaspersky.co.uk/downloads/thank-you/free-virus-removal-tool
It helped me resolve same troubles
Comment has been collapsed.
didnt had to use kaspersky, hitman pro did the job for me
Comment has been collapsed.
Same thing happened to me. Only thing that helped was reinstalling browser.
How I did it:
- Uninstall chrome.
- Restart your pc.
- Install chrome.
- No more pop ups.
Comment has been collapsed.
well i have got lots of help from here too. if everything still fails from here then i will that forum too. thanks :)
Comment has been collapsed.
well i didnt had to go to the website, got it malware free now thanks to hitman pro :)
Comment has been collapsed.
i only mentioned one but tried 3 or 4. others only removed a few but hitman pro removed a lot of malwares. you're right though, it will take me some tests to see if it really removed it all
Comment has been collapsed.
"I click inside any browser and any website, stupid ad website opens themselves."
i had a similar problem some years ago, some specialists on cnet adviced me to use rogue killer, it solved my problem but i had to format and reinstall windows XP after despite it.
If you try to use roguekiller, just know that you risk to have to reinstall windows and take care to dl the correct version for your OS.
Comment has been collapsed.
Yeah i got this problem years ago and then had to use Windows XP version.
In my mind it was a powerful tool, very efficient but so much that i had to format after because of system files missing. o\
It solved my problem, very similar to yours, but then i spent 12h formatting and reinstalling windows XP (the virus was resistant to formatting).
Comment has been collapsed.
looks like mine wasnt as strong as yours. hitman pro removed it all.
Comment has been collapsed.
Only the web browsers is giving me problems, the pc is working fine and I don't want to reinstall windows again.
What if you delete the browsers totally and download a new one, like Opera (just an example)? Otherwise, a format is the best idea.
Comment has been collapsed.
nope since the malware appears in every browser even IE which i never use so it would appear in Opera too
Comment has been collapsed.
Yeah, but I thought that it would only appear in already installed browsers. If you'd delete them all and then download opera, maybe it wouldn't appear?!
Comment has been collapsed.
that isnt a good solution though. i would like the malware to completely go away and im currently in a good progress
Comment has been collapsed.
Follow this guide closely https://www.reddit.com/r/techsupport/comments/33evdi/suggested_reading_official_malware_removal_guide
Comment has been collapsed.
What operating system are you running? Are you running a 64 bit version? HiJackThis does not run properly on 64 bit and may cause more problems than it fixes. With your OS, I will be able to help you more effectively.
Comment has been collapsed.
Download this and save to your desktop: https://www.bleepingcomputer.com/download/rkill/dl/11/
Download this and save it to your desktop with a strange name, just mash the keyboard: https://www.bleepingcomputer.com/download/aswmbr/dl/1/
Run the first one first, then run the second once it has finished. With the second one, you want to download the latest virus updates and, if possible, run it in the virtualized mode. You will not want to restart the computer between running these programs.
Post logs from both programs here once they have finished running.
Comment has been collapsed.
well many people have suggested rkill but didnt specify the aswmbr after it so i'll run it again and show you the result
Comment has been collapsed.
dude running aswmbr made my pc do the BSOD. it asked for the virtualization technology, i said yes then blue screen. i checked again just in case and got it again. my pc never gave me BSOD before. i'll try other safer methods first then try this one again if other dont help me
Comment has been collapsed.
If running it without virtualization also caused a BSOD, then that is highly indicative of a rootkit that is preventing it from running. This sounds like more of an advanced issue and I would consider myself more on an intermediate level with malware removal. I would recommend posting on https://www.bleepingcomputer.com/forums/f/103/am-i-infected-what-do-i-do/ to get help. There are worldwide experts on the subject matter who will help you for free.
Comment has been collapsed.
all i wanted was to get the malware removed which ive succeeded (not 100% sure) in doing so. there is no need for me to go into advanced methods when the pc is supposedly working fine. but yeah i should rather asked the experts than here next time
Comment has been collapsed.
If you are not using win10
google combofix
I believe you can handle the rest.
Comment has been collapsed.
https://virusinfo.info/content.php?r=152-three-steps
may be this help you ( you can translate this page with google translate)
Comment has been collapsed.
http://tunecomp.net/fix-browser-shortcuts-modified-by-malware/
Go through all the browsers shortcuts (desktop, pins, program folders), chances are they were modified. This might be overlooked, it might allow reinfection easily. Homepage shortcuts may also be modified as well.
in addition, run Dr.Web CureIt
https://free.drweb.com/download+cureit+free/?lng=en
Download and update all anti-spyware, eg: Spyware S&D, MalwareBytes and reboot in Safe Mode.
Check browsers shortcuts, reset browsers settings, run all anti-spyware, wait for them to finish scanning, go through the prompts, allow the anti-spyware to run upon Windows restart. Once in Windows, check the shortcuts again, reset browsers setting. do some anti-spyware scans again.
Comment has been collapsed.
thank you. i would have tried but my pc is clean now :)
Comment has been collapsed.
Guys, i want to thank you all for helping me. The help I received was immense.
What worked for me was the software called Hitman Pro and anti-rootkit of malwarebytes.
I'm really happy that I didn't had to reinstall windows again.
Thank you again :)
Comment has been collapsed.
It's not a malwayre, it's an entry in registry, which can be manually deleted easily. Just search for the website that pops up in the registry and delete the key.
Comment has been collapsed.
what i showed was top of the list, its all malwares below and it caught more viruses than what i was expecting
Comment has been collapsed.
To be honest I did not read through everything so I am not sure if somebody already suggested this... but you could try Combofix: https://www.bleepingcomputer.com/download/combofix/
Nvm, it seems you are clean now so maybe keep the link for future (it helped me a lot when I had problems) :)
Comment has been collapsed.
im not 100% sure that everything is clean so thanks, its good to run multiple softwares as running just 1 didnt do the trick
Comment has been collapsed.
I once had same issue, found out it was actually in router. Reinstalled firmware and it was good again.
Comment has been collapsed.
i also reset my lan settings in the proxy settings. looks like there can lots of cases
Comment has been collapsed.
You're honestly looking for help in the wrong place.
If you insist on attempting to fix the PC yourself then the forums at https://www.bleepingcomputer.com/ are the appropriate place. Many of the users there are actual experts.
However the actual advice you should be given is to take it to someone trained in computer maintenance & repair.
(Not Best Buy if you live in North American... many of their staff are not trained and are just hired off the street.)
Seek out someone who at least holds some form of CompTIA certification. Physical access by an expert makes it nearly impossible for any malware to avoid detection & removal.
Comment has been collapsed.
its fine as long as it has worked and it has for me. i got lots of help and well its easier to post here since i open this website a lot. but you're right, if the virus was a strong one unlike mine then better to go to such forums in the first place
Comment has been collapsed.
I have used Malwarebytes with hitman pro (use the trial). Hitman pro will do a boot scan and remove everything from there.
Hitman Pro - https://www.hitmanpro.com/en-us/hmp.aspx
Also within your browser, check for extensions installed.
EDIT: Looking through the comments, looks like you already used it :P
Comment has been collapsed.
yeah hitman pro is awesome. btw i should close this discussion so people shouldnt think i have the problem still
Comment has been collapsed.
This malware is pissing me off. I click inside any browser and any website, stupid ad website opens themselves. I search in google and some queryrouter and other search engine shows its results. I don't see these search engines in the settings too nor any other website. Adblocker has been active since ages but it fails to stop them too.
What I've tried is:
Only the web browsers is giving me problems, the pc is working fine and I don't want to reinstall windows again.
Any help would be really appreciated.
Comment has been collapsed.