Remove browser hijacks

[johnrobert]

Interested in the methods used to remove browser hijacks

I have had some nasty ones lately and it one case no matter what I did I could not remove it

Had to re-install Windows witch was not so bad with 8.1 doing a refresh

I usually start off with Junk Removal Tool, Malwarebytes, Hitman Pro

I uninstalled Chrome and renamed all Chrome folders in AppData then re-installed Chrome.

 

[katz]

That's a good method that you follow. Browser redirects/hijackers can be kinda brutal to get rid of sometimes. I personally start off with MBAM. In addition to your list, I also may do, depending on level of infection;

Remove any junk programs from add/remove.
Remove Browser add-ons/extensions/extra junk search engines.
Reset browsers.
Check/delete rogue entries from the registry. (Such as ASK Search, etc.)
Check auto-runs.
msconfig for junk startup programs.
TDSS Killer.
Check LAN settings in case a program/infection has changed those.
Check HOSTS file.
Check the browsers application path/target.
Run the "old" Spybot program (1.6.2)
Run Emsisoft Emergency Kit.

With redirects, there's no one good answer, or one good tool that covers everything, at least not that I've found. I've done a bunch of these, and in my experience it seems best to chip away at them little by little.

 

[phaZed]

Additionally, see this thread on Chrome Group Policy Objects (TN: How to remove the Media Player 1.1 browser Extension)

Google Chrome Cleanup Tool - https://www.google.com/chrome/cleanup-tool/

 

[MDD1963]

freefixer has been helpful on a few occasions, as well....

 

[katz]

New freefixer has been helpful on a few occasions, as well....

I had completely forgotten about this one - thanks for reminding me!

 

[Pacific Blue IT]

D7II FTW

 

[ComputerRepairTech]

I usually start off with

When doing malware removal its best to have a set plan of attack. Create your own procedure and improve it as flaws reveal themselves.

Every malware removal procedure list should start with some form of rootkit detection. Anything before rootkit detection should be precautionary or speed enhancing such as checking hard drive health, confirming safeboot registry entries, backing up data, clearing temp files, etc.

Do you have any additional information regarding the situation? The name of the extension? did it show up as soon as you reinstalled chrome or did it take a lil bit of time and come back later on?

 

[Bizybone]

ADWCleaner may help too in addition to your list.

 

[cypress]

freefixer has been helpful on a few occasions, as well....

Don't think I have tried this before. Thank you.

+1 for Google Chrome clean up tool.

 

[Ktex]

Consider the age of the hardrive too, and if it is a laptop, usage too. I run system file checker on win7 or earlier hard drive before cleaning, and if it passes, then continue to clean. I know it adds time but you will be assured that nothing is wrong with windows.
My procedure is SFC, Adware cleaner, JRT, TDS killer, RogueKiller, cleaning temp files manually, task schedules, system configuration, uninstall any unwanted programs still alive, reset browsers, (Thanks for the chrome tool!) and last malwarebyes.