The tool couldn't kill the adware - Forum - ToolsLib

Contact us

user_avatar

Hi,

I have used the tool trying to remove an adware, but no results.

Here is the link of the malicious file:

[WARNING]: DON'T DOWNLOAD IF YOU ARE NOT A DEVELOPER

http://filesdownlall.ru/?file=adware

Update:

It looks like the malicious URL doesn't download the file now, so i uploaded the file here.

Update 2:

After some investigation, it turned out that proxy settings have been manipulated via registry:

Registry entries:

HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies\@ = 0http://webunstop.net/wpad.dat?e2b3df1b55c236b7466f4a1d357fb86b36333950

HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL = http://webunstop.net/wpad.dat?e2b3df1b55c236b7466f4a1d357fb86b36333950

Now everything works fine after deleting these entries.

Update 3:

Actually, after couple of hours it looks like my browser is still hijacked, and redirected to other websites :/ .

, on AdwCleaner

user_avatar

Re: The tool couldn't kill the adware

administrator
cocochepeau,

Greentings,

We'll take a look at this file and get back to you with more informations.

Thanks for the feedback!

You must be logged in to add a reply to this thread.

Statistics

Posted on	01 November 2017
Views	10,501
Followers	3
Replies	1

Related threads

ADWCleaner has deleted 1 GB... 2 The problem of lowering IOS... Logithèque softwarequality 1 Strange toolbar on my browser 8 Newest adw version detects...

Categories

874 AdwCleaner 154 Disinfection 78 Windows 41 ToolsLib 16 AdsFix More »

Protect Your PC from Malware

Get Malwarebytes for powerful protection against adware and threats.

Get Malwarebytes Now