Getting rid of ad.xtendmedia and other annoying malware popups
A week back I started noticing weird popups on the bottom left-hand side of my browser windows. They came up with IE, Firefox and Chrome. They were annoying and actually very easy to click by mistake. Mousing over these popups showed some links at either ad.xtendmedia.com or ad.yeildmanager.com or fhserve.com.
In order to get rid of these, as usual I Google-d the above and found a lot of suggestions. Apparently this is quite a well known problem and was considered a virus, since it could actually ‘grow’ and then capture and send cookie information to spam sites! Not good.
I followed the suggestions and solutions offered from different sites including bleepingcomputer.com. I went ahead and downloaded and ran every single anti-rootkit, anti-malware, anti-spyware mentioned, including TDSKiller, AdwCleaner, MalwareBytes anti-malware and so on and so forth. None of these could even find the virus (if it was indeed that). I did find one trojan with AVG free edition, but deleting that didn’t exactly help.
I was honestly contemplating rebuilding my laptop, when I came across this link
And that is what helped me resolve the issue!
If you ever encounter this problem, do this first! Open up your .hosts file. (On Windows 7, this is under Windows\System32\Drivers\etc folder and will need Administrator rights to update.) Check the host file for suspicious entries. I had the usual redirects for 127.0.0.1 at the top, followed by a whole lot of empty space just as mentioned in the blog above. Scrolling to the bottom and right at the very end of the file were some nasty redirects. If you find such entries in your hosts file, delete all of them and save your changes.
And ta-da, you are now home-free. No more annoying popups. Whew!
- 2014 in review
- Shortlisted for the Scottish Business Awards 2014
- Resolving – Found conflicts between different versions of the same dependent assembly. Consider app.config remapping of assembly …
- To be or not to be certified (or How important is Certification when job searching)
- Adding Twitter Timelines to your website with the new Twitter 1.1 API
- 2013 in review
- My top 5 tips on how to be a great manager
- Dubai Tragedies: Based on real life accounts
- Resolving the error – Attaching the Script debugger to process iexplore.exe failed – with VS2010 and IE10
- Lessons learnt from my Start-up
- December 2014
- May 2014
- March 2014
- January 2014
- December 2013
- October 2013
- July 2013
- June 2013
- May 2013
- April 2013
- March 2013
- January 2013
- December 2012
- August 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- September 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010