Skip to content
View in the app

A better way to browse. Learn more.
Thailand News and Discussion Forum | ASEANNOW

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Got a virus, need help.

Golden Triangle
in IT and Computers

Featured Replies

Hi all, I'm hoping you may be able to help, it seems I picked up a virus a few weeks ago, I have a very good friend who is an absolute whizz with computers but even he seems to be stumped at the moment by this one.

 

It seems to be a redirect virus, I am running Windows 10, apart from the redirect it also seems to be preventing other applications from loading fully, I will try to explain as best I can, I am not at all techie so please bear with me on this, I thank you all in advance for your help.

 

Windows defender is running and the laptop has also been scanned by the latest fully updated version of SpyHunter4, nothing is being picked up.

 

I had Google Chrome set up to open 3 tabs on start up, No.1 Google Chrome (from there I open my G mail account) No.2 BBC News, UK page & lastly FaceBook.

 

Within FaceBook I play only one game, Criminal Case and my Mrs has her Candy Crush bit but that is all, maybe 6 weeks ago I opened FaceBook and clicked on the link to open Criminal Case (CC) a window opened telling me that I needed to install Flashpayer ( no mention of Adobe) there was no way to close the window apart from click on install, which foolishly I did. Now, when ever I click on BBC news and a couple of other sites I get a redirect window opening which is really really annoying.

 

I will try and get a copy of the screenshot requesting the flash player and I will also get a screenshot of a ThaiVisa window that shows not all the ads and stuff have loaded correctly.

 

Windows 10 has been uninstalled and reinstalled I don't know how many times as has Google Chrome, it seems that as soon as I enter my profile the bloody thing comes back again, could it have something to do with my router ?, internet provider, TMN fiber optic ? Anything at all, hoping you guys & gals can help, as the saying goes "many hands make light work".

 

I'll put the screenshots under this initial post, thanking you in advance peeps :thumbsup:

 

 

 

 

 

 

  • Replies 64
  • Views 2.4k
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Posted Images

ADWCleaner....its a free download by Malawarebytes searches out unwanted ads    :thumbsup:

  • Author

Just ran another scan with SpyHunter 4, this time after it it update definitions it found this "search.funsafetabsearch.com" I have removed it and have just run Malwarebytes.com, it found something so gonna go and have a look at the results.

Sorry, but glad my UK computer is a Mac.  Never have these issues, ever.

  • Author

This is getting above my pay grade now, I have my mate monitoring this thread so any further help is welcome, I cleaned with SpyHunter 4 and also with Malwarebytes but the beech is still their :mad:

You mention that when you enter a profile it triggers the events after installing Windows.

Can you be more explicit. Are you saying you can browse the web without issue before entering this profile. What about when you use Edge

Please post a report from MWB.

  • Author
40 minutes ago, Slip said:

Please post a report from MWB.

Hi Slip, I tried to but can't find it now, I think I exported it to note pad but cannot recover it, I will try again. 

  • Author
46 minutes ago, maxpower said:

You mention that when you enter a profile it triggers the events after installing Windows.

Can you be more explicit. Are you saying you can browse the web without issue before entering this profile. What about when you use Edge

Hi maxpower, within Google Chrome, Gmail etc you have your own profile with all your e mail addresses etc as you know, my mate had my laptop at his place, cleared it out, re installed stuff and then checked the BBC news page, MSN etc etc, all links were clean without opening a redirect, he was using his ISP and his own id, he brings it back to me, as soon as I log into Google Chrome and Gmail up it comes as bold as bloody Brass :mad:

 

I don't know if the above makes sense to you (I hope so) as you can see from the screen shot above, that is NOT an Adobe window, and earlier today we actually went in and down loaded Adobe Flash player and that window still appears.

  • Author
10 minutes ago, Golden Triangle said:

Hi Slip, I tried to but can't find it now, I think I exported it to note pad but cannot recover it, I will try again. 

image.png.a6be1228b54194420cd689f5fba86bd9.png

2 hours ago, Golden Triangle said:

 

Windows defender is running and the laptop has also been scanned by the latest fully updated version of SpyHunter4, nothing is being picked up.

 

I'd run the Malwarebytes like the above says, if that doesn't get it, run  adwcleaner, superantispyware and hitman pro. You can down load free versions of them in a matter of minutes. If it's a malware problem one of them should catch it.

Do you know how to change your DNS servers in Win 10. I ask this because when you move this PC back home your problems begin.

  • Author
6 minutes ago, maxpower said:

Do you know how to change your DNS servers in Win 10. I ask this because when you move this PC back home your problems begin.

No I don't but my mate probably will.

 

  • Author

And to add insult to injury, malwarebytes is now blocking SpyHunter 4 if it wasn't so funny I would cry :sad:

 

I did restore it, but every time I go to use SpyHunter it just blocks it again.

1 minute ago, Golden Triangle said:

And to add insult to injury, malwarebytes is now blocking SpyHunter 4 if it wasn't so funny I would cry :sad:

 

If you go into settings, you should be able to turn off 'real time' protection on the spyhunter. Then you can run the malwarebytes

14 minutes ago, Golden Triangle said:

 

PUPs are not necessarily a huge problem.  I see you have some other advice here, so will leave you to follow up on that.  If it doesn't work we can always revisit.

At this point I think you should at least eliminate the DNS servers at the adapter level and make sure they keep the setting you give them.

 

Whats crazy about this is the fact that you have re-installed the OS. I just hope you are not re-infecting the machine by introducing an infected file or device after you have installed Windows.

 

 

22 minutes ago, Here It Is said:

No high horse needed.  I merely stated you don't have this nonsense on a Mac.  Up to you.

 

 

You didn't read the link, did you?

Looks to me like your Windows 10 is infected with Windows 7, (at least that's what you posted in the screenshot).

Just now, RichCor said:

Looks to me like your Windows 10 is infected with Windows 7, (at least that's what you posted in the screenshot).

LOL.

3 minutes ago, maxpower said:

At this point I think you should at least eliminate the DNS servers at the adapter level and make sure they keep the setting you give them.

 

Whats crazy about this is the fact that you have re-installed the OS. I just hope you are not re-infecting the machine by introducing an infected file or device after you have installed Windows.

 

 

Yes, thanks Maxpower- I missed this.  This problem lives through a clean install?

Just now, RichCor said:

Looks to me like your Windows 10 is infected with Windows 7, (at least that's what you posted in the screenshot).

 

I was wondering about that too. Maybe he got the shot from a Win7 machine. If not then the wheels have really fallen off.

OP, spyhunter 4 is a rouge antivirus program (false results so you buy it), thats why malwarebytes is blocking it.

Google it, lots of reputable malware removal sites say its rubbish. 

 

Remove it, malware bytes then hitman pro.

Logging into a GMAIL or G-Suite account using Chome Browser will automatically load the chrome extensions normally used by that account on any computer with no warning.  It's a pain in the arse, especially if I log into someone else's account to fix something for them ...then end up having to uninstall the stuff from my machine afterwards.

 

So take a look at all the Add-Ons or Extensions your chrome browser has installed while logged into the google account.

4 minutes ago, Peterw42 said:

OP, spyhunter 4 is a rouge antivirus program (false results so you buy it), thats why malwarebytes is blocking it.

Google it, lots of reputable malware removal sites say its rubbish. 

 

Remove it, malware bytes then hitman pro.

I'm kicking myself.  My assumption was of course that 'a user' would know this, but I am entirely wrong in that.  Full marks to you Peterw42 and 0 to me.

Just now, Slip said:

I'm kicking myself.  My assumption was of course that 'a user' would know this, but I am entirely wrong in that.  Full marks to you Peterw42 and 0 to me.

Technically its a legit program but when you install it you say yes to lots of crap and redirects etc. If malwarebytes doesn't like it thats a good recommendation to get rid of it. 

Create an account or sign in to comment
Go to topic listing

Recently Browsing 0

  • No registered users viewing this page.

Account

Navigation

Search

Search

Configure browser push notifications
Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.