Have Adware/Virus; MWBytes, ADWCleaner, ESET, not detecting.

[Cotroneo]

Been getting redirected like crazy, and thankfully MWBytes blocks the pages, but no matter what I've tried, I can't find the adware/virus. What can I do?

[Enderman]

https://www.howtogeek.com/224342/how-to-clean-install-windows-10/

[Cotroneo]

1 minute ago, Enderman said:

https://www.howtogeek.com/224342/how-to-clean-install-windows-10/

Okay, now what?

[Enderman]

2 minutes ago, Cotroneo said:

Okay, now what?

???

What do you mean "now what"?

That's all you need to do right there in the link...

[Scruffy90]

I use adlice's Rogue Killer when malware bytes misses something. More often then not, it works well and catches what everything else misses.

[ARikozuM]

I would suggest Kaspersky's Rescue Disk. What often happens is the virus hides itself so that it can't be detected by scanners once loaded.

[TDP_Equinox]

1 hour ago, Enderman said:

https://www.howtogeek.com/224342/how-to-clean-install-windows-10/

That's not very helpful

1 hour ago, Cotroneo said:

Been getting redirected like crazy, and thankfully MWBytes blocks the pages, but no matter what I've tried, I can't find the adware/virus. What can I do?

Run Hitman Pro, Adware Removal tool, and malwarebytes deep scan/ae. If that doesn't help, it could be a browser extension. Reset your browser, and if all else fails, do a windows refresh.  

[Enderman]

3 minutes ago, TDP_Equinox said:

That's not very helpful

It is, it perfectly describes how to clean install windows.

Clean installing will get rid of all viruses.

Do you not know how clean installing works?

[thorsong]

I am with Enderman. If you have something infecting your system that you can't find and that reputable programs aren't fixing. I would do a full system reset. If you want to keep some things on your computer you can do a reset that leaves your files in place but otherwise essentially gives you back a clean install. If the malware persists beyond that, you really need to just wipe it all and do a clean install. 

  I know that answer sucks. It is a crappy situation. But in this day and age, there is too much at stake. Most of us use our computers for a lot of things, including finances. You do not need someone getting into that and destroying your life. It is just not worth it. Wipe the computer.

And if you don't already use it, you NEED to go turn on 2-factor authentication for every site you use. That is a need. It is one of the few methods that will generally save your bacon if some scheister gets your login info to sensitive sites.

[TDP_Equinox]

On 6/24/2017 at 6:48 PM, Enderman said:

It is, it perfectly describes how to clean install windows.

Clean installing will get rid of all viruses.

Do you not know how clean installing works?

Clean installing should be the last resort, not the first.  It may not even fix the problem, because chrome and most other browsers sync your settings and extensions with a sign-in. You could reset your pc, getting rid of everything, and then sign into chrome and have it all back again. 

On 6/24/2017 at 7:32 PM, thorsong said:

I am with Enderman. If you have something infecting your system that you can't find and that reputable programs aren't fixing. I would do a full system reset. If you want to keep some things on your computer you can do a reset that leaves your files in place but otherwise essentially gives you back a clean install. If the malware persists beyond that, you really need to just wipe it all and do a clean install. 

  I know that answer sucks. It is a crappy situation. But in this day and age, there is too much at stake. Most of us use our computers for a lot of things, including finances. You do not need someone getting into that and destroying your life. It is just not worth it. Wipe the computer.

And if you don't already use it, you NEED to go turn on 2-factor authentication for every site you use. That is a need. It is one of the few methods that will generally save your bacon if some scheister gets your login info to sensitive sites.

If malwarebytes and everything else didn't find it, chances are it's a chrome extension. You know what syncs across installations with a chrome sign in? Extensions. 
If it's a chrome extension causing redirects, and he resets his computer, what's the first thing he'll do? Download and sign into chrome, syncing his extensions and ending up no better off, but missing all his programs. 

It's this kind of lazy attempt at a response that made me stop publicly helping people on forums, because some jackass will come in and tell me that the thing I've been doing daily for 5+ years can't be done, and everyone will believe him. Resetting a computer should be the absolute last resort; if nothing else can fix it, reset it. 

[Enderman]

Just now, TDP_Equinox said:

Clean installing should be the last resort, not the first. 

With the amount of cluttered, messed up, and half-corrupted stuff on most people's computers due to negligence and years of not doing any maintenance I would highly recommend clean installing first.

[TDP_Equinox]

Just now, Enderman said:

With the amount of cluttered, messed up, and half-corrupted stuff on most people's computers due to negligence and years of not doing any maintenance I would highly recommend clean installing first.

Actually read my post please, it explains why fresh installing may not even fix the issue. 

[Enderman]

3 minutes ago, TDP_Equinox said:

Actually read my post please, it explains why fresh installing may not even fix the issue. 

That's true, I never though it could have been a chrome extension.

[thorsong]

17 hours ago, TDP_Equinox said:

Clean installing should be the last resort, not the first.  It may not even fix the problem, because chrome and most other browsers sync your settings and extensions with a sign-in. You could reset your pc, getting rid of everything, and then sign into chrome and have it all back again. 

If malwarebytes and everything else didn't find it, chances are it's a chrome extension. You know what syncs across installations with a chrome sign in? Extensions. 
If it's a chrome extension causing redirects, and he resets his computer, what's the first thing he'll do? Download and sign into chrome, syncing his extensions and ending up no better off, but missing all his programs. 

It's this kind of lazy attempt at a response that made me stop publicly helping people on forums, because some jackass will come in and tell me that the thing I've been doing daily for 5+ years can't be done, and everyone will believe him. Resetting a computer should be the absolute last resort; if nothing else can fix it, reset it. 

Ease up dude. Lazy is just coming in here and throwing snark at the issue. Yes, you are correct that if he has some sort of browser extension hijacking things it will come back. I did say resetting is the option after everything else. What is it about resetting a system angers you so? Not that big of a deal. Kind of like having a yard sale for your system. Get rid of accumulated bloat that you don't need. 

[TDP_Equinox]

3 hours ago, thorsong said:

Ease up dude. Lazy is just coming in here and throwing snark at the issue. Yes, you are correct that if he has some sort of browser extension hijacking things it will come back. I did say resetting is the option after everything else. What is it about resetting a system angers you so? Not that big of a deal. Kind of like having a yard sale for your system. Get rid of accumulated bloat that you don't need. 

I do believe I was the only person to provide actual help. 

[ARikozuM]

22 minutes ago, TDP_Equinox said:

I do believe I was the only person to provide actual help. 

Pretty much...

[TheCrazyWalnut]

One thing that I've noticed with redirects is that they hide in in the shortcut properties of web browsers, desktop and taskbar. Have a look under all of them and make sure there is nothing after the location in the "Target"
As @TDP_Equinox said, it could be an extension.

 

Worst case run ComboFix and the aforementioned tools, possibly a system restore as well, and if nothing else shows up and you are still getting redirected, then you may have to do the reset.