Unusual Malware: DNSUnlocker
Unusual Malware: DNSUnlocker
Quick Overview:
- Operating system: Windows 8.1 Pro N x64
- Hardware: Mini-Optiplex 7010, 12GB RAM, Core i5 3470K, 1TB HDD, Radeon 5670HD 2GB
- Recent issues: Browser hijacking, Steam integration, registry changes
- Troubleshooting steps attempted: Glary cleanup, Chrome extensions check, program list inspection, MalwareScan, registry scan
- Current status: No active threats detected yet, but scans ongoing with additional tools
Ensure the browser extension is installed. Verify the folder location in your browser settings.
Jk-Palmy has a point. MBAW doesn't automatically check browser extensions. A few antivirus programs can do this, but they require specific settings. You should review any odd extensions and either delete or remove them, or rely on your antivirus to scan them.
Hi I can help you with that infection 1. Go to appwiz.cpl or Programs and features 2. Uninstall the Ads by DNS Unlocker in the program list 3. After uninstallation go to your network and sharing center and go to change adapter settings 4. Choose the network card you are using, right click and go to properties 5. Choose the IPv4 on the list and go to properties 6. Make sure Obtain DNS Server addreses automatically is chosen 7. after that go to internet options in control panel. 8. Go to browsing history and click on delete and it will open another windows, just click delete again. After that , the pesky adware should be off the system, also make sure when you install something, make sure to read first and not just hit next, if it still there, reply to this thread, we will do more advanced troubleshooting Hope this helps Yoomanipop
@Czex believes you're on the right path, I'll check that folder. @RedSphyxis has the same idea, my MWBT scans came up empty, so I'll review my extension folder. @EliasNM tried this before too, it didn't work, but appreciated the advice! @yoomanipop noted in Programs & Features, on uninstall, only the programs I manually installed remain clean—no DNSUnlocker or similar links.
Launch PowerShell and execute the command to list processes and services. You should see a service or process running that handles this task. Often, another service automatically reinstalls the removed program. You haven’t encountered any antivirus software that attempts to detect these types of malware.
Discussed by @yoomanipop, the issue was resolved with a fix that caught me off guard. @Blake mentioned seeing the post late but discovered a workaround. The problem stemmed from the DNSUnlocker generating an 'htmlcache' folder in the Steam app data location, possibly affecting browser caches and registry entries.
Hi, sorry if it didn’t work. I’m a tech support worker and I’ve run into this DNS unlocker quite often already. Good to know you found it. I’ll remember this for later. Thanks, Yoomanipop.