Jump to content

Search the Community

Showing results for tags 'hijacker'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL






Found 18 results

  1. Now this happened about 3 months ago I have long before reset my PC to windows 10 by now but for some mysterious reason my ABV.bg email has been repeatedly getting hacked every time! even tho last time I changed my password to be unique combination of 30 symbols and letters including the secret question and answer. Its still getting mysteriously hacked and at this point its obvious the information is being leaked from my PC so the trojan/keylogger/hijacker or whatever has not been removed even tho I did repeated Malwarebytes scans and I even scanned with Bitdefender in boot environment still n
  2. Hi, I was asked by Exile360 to open a new Topic for the problem that I had exposed at length in detail on the first Topic: Its name: "A malware prevented me from going on the internet (chrome and edge)" So I kept the same tags for this topic, I used the Farbar Recovery Scan Tool. I send you the results: 2 files But as I said in my first post I can not reinstall Malwarebytes Premium that I had, and therefore I can not send you a result of its action. Do I have to watch only this new topic? AND should the first one be closed? Thanks again for your help FRST.txt Addition.
  3. Hi, Sorry I am French speaking. I wrote my explanations in French and asked Google for an automatic translation which follows ... (French text at the end if needed) I am forced to write to you because I can not reinstall Malwarebytes Premium on my computer and for which I have a license which is renewed every year. Number XXXXX My computer is a Windows 10 64bit desktop update 1903 How did this happen? 1 Brutally about three weeks ago I could no longer connect to the internet via Chrome or Edge. It was stated that the proxy address was erratic. But
  4. Hi, I had recently some encounter with proxy hijacker malware.May have been some Hijack.AutoProxy MalwareBytes was able to successfully restore the internet connection but the the hijack also locked my proxy settings, so I was not able to change them. So I removed it again.... After 4 years of no software (not even defender) only one malware. I would say it is quite good results for me. Of course for people who don't know as much things, I suggest to have something installed that has realtime protection. The message at that screen was something like: "Some settings are managed
  5. This morning my wife's Firefox for Mac 10.9 kept redirecting to hmapsanddirections.co instead of Google when she opened a new tab. She does not recall clicking on anything suspicious or opening a file. Both Intego Virus Barrier and Malwarebytes show nothing. Only thing we could do was to refresh Firefox. What concerns me is that no virus program spotted it in real time or afterward and doing a Google search just results in lots of no-name, possibly malicious, sites. None of the major virus / security companies have any entries on this. Can someone provide more informat
  6. Howdy! I'm pretty sure this is nothing new, but since a couple of weeks i've noticed my browsers behaving in a strange way. Sometimes when i search for something using the adress bar i get instantly redirected to other "search" websites such as nova rambler or plus network. I get popups or ever straight up redirects when i click a random spot on any page. Also sometimes when i'm watching a video on youtube the title appears as a hyperlink to another popup. Now for the interesting part: there is absolutely no trace of any malware running on my pc. There is nothing going on in registry, sta
  7. It's not letting me install ad block to chrome and also preventing installation of malwarebytes, there were some files called "gB59E.tmp.exe" and variations of those that run as processes in the background, i've done 3 scans with avast and it seemed to have deleted some virus' that came installed but this one thing seems to always come back and prevent things. I get an error "Runtime Error (at 14:76) could not call proc" when trying to install malwarebytes and the download for adblock fails. Also, trying to download and run chrome installer from internet explorer mentions the file has be
  8. Hey guys, So there is this virus/malware whatever you want to call it which bothers me every time I start my computer. Once windows 10 boots up and I open Google Chrome this random ****.tmp.exe file is generated in the temp folder. I have attached the file in the zip folder if you guys want to have a look at it (Please don't open the .exe file as it may affect your PC too). As soon as the files are created in the temp folder it also starts in processes. Multiple times I have done a clean uninstallation of Google Chrome and installed it back again but after opening and closing chrome 2-3
  9. I have this trojan called Imminent it won't leave my system it comes back everyday! It hijacks firefox's logs and won't leave please help! here is a log from the scan, The file is usually about 30 bytes for some reason but it wont go away! Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 10/10/2016 Scan Time: 3:15 PM Logfile: Administrator: Yes Version: Malware Database: v2016.10.10.07 Rootkit Database: v2016.09.26.02 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS:
  10. I need some help removing a trojan, long story short I got tricked into executing an .exe that downloaded a software to my pc (TSearch) which made Kaspersky go crazy with trying to block and disinfect the files, which then I manually deleted and uninstalled (I think) the software. Then I ran Malwarebytes and detected 6 threats, which 3 were Trojan.ProxyHijacker. But I don't know if I completely deleted the virus, so I really need to see if I got rid of the virus, I would appreciate help a lot. I attached the log from Kaspersky and Malwarebytes Kas Log.txt mbam-log-2016-05-16 (19-01-59).txt
  11. Hi I am using a Lenovo Thinkpad X1 Carbon. About three days ago I noticed that that my mouse was moving and clicking on things without me touching anything (whilst I was watching something, nowhere near the mouse). Having had a similar problem in the past, I quickly thought that this could be malware or a hijacker, and I therefore immediately turned the laptop off. Since then I have used another laptop and a USB stick to download MalwareByes as well as Avast. Having tried to use both of these I have been unable to: - Avast simply will not start (whenever the 'run' box comes up, I choo
  12. The Hijacker, www.safesear.ch, is set as my Chrome default browser and is locked with an icon that says "This setting is enforced by your administrator". This a a private windows 8.1 laptop and I am the administrator. I have run free Malware Bites and it does not identify the hijacker. I have run AdwCleaner and it apparently finds the hijacker and says it cleans it but when i open Chrome Browser again it is still there. I use Bit Defender 2014 for virus protection and with a full scan it does not find anything. When I check for programs names Safe Search, Safesear, safesear.ch, none are fou
  13. Hi all. I have a persistant adware hiding somewhere in a Win7 Pro 32bit, on domain. I've ran and removed several pua/pup using Malwarebytes, Adwcleaner, Ad-Aware, Spybot Search & Destroy and ComboFix. The pop-ups and browser hijacking have subsided again, for now, but all the files in the drivers/etc folder still have the file type as "JioniCoupon." Uh. I'm hoping someone can assist, I appreciate it! Attached: Addition log FRST log mbam log Hijackthis log Screenshot of affected files
  14. Hello Malwarebytes forum. I came to you guys with this problem not too long ago and it worked great but now it seems I'm infected again and this time I'm not quite sure what I have. On firefox, my search engine was changed to Yahoo without my permission, but only on Firefox. I checked my extensions and nothing seemed out of the ordinary. I checked my installed programs on my computer, and I found a lot of things from game explorer that I did not recognize but that was the only abnormality. I ran a virus scan on Malwarebytes, and it came up empty. Then ran a scan on Adwcleaner, and a few thin
  15. Like many others, I'm having the corrupt dllhost.exe * 32 multiple processes issues causing slowdown and trying to connect to fff5ee.com and some other miscellaneous, malicious IP, on a computer I'm needing to fix for someone. Any help would be appreciated, or if it doesn't need to be a custom fix, pointing me to the right pre-existing thread would work too! It also begs the question, would simply replacing dllhost.exe with a fresh version fix it? I've already ran a full scan. As of last night, nothing erroneous turns up in the results.
  16. Hi folks, My new HP Envy h8 desktop running Windows 8 x64 got a Sweetpacks hijacker and/or virus about two months ago. I've tried removing from many angles but still have symptoms. (Fake Acrobat install prompts popup on Chrome browser, Malwarebytes and other scanners found malicious items, IE seems hijacked, JRT can't remove some Sweetpacks registry entries, Malwarebytes was blocking outgoing and incoming IP connections from svchost, occasional crashes.) Any help would be much appreciated! ~ -------- DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16537 BrowserJavaVersion:
  17. I've managed to pick up some new Malware which isint being picked up by any of the scanners. I have some experience with malware removal in a sandbox; but as this is on my core system, and seems relatively new, I decided not to fiddle. I'll be awaiting instructions... Sorry about all the junk programs.... maybe its about time I re-install lol. I have the both DDS.txt and Attach.txt scans (in safe more), should I upload these?
  18. After i scan with Malwarebytes Anti-Malware™ i keep getting PIM hijacker and Malware.Packer.Gen. i removed it and told me that the systems needs to restart, and so it did. after it restarts i rescan again. same threats were found.. how do i remove it. Malwarebytes Anti-Malware (PRO) www.malwarebytes.org Database version: v2012.03.17.03 Windows XP Service Pack 2 x86 NTFS Internet Explorer 6.0.2900.2180 PC :: SERVER [administrator] Protection: Enabled 17/03/2012 02:41:50 PM mbam-log-2012-03-17 (14-41-50).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | Fi
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.