Antanna “Virus” Removal (Chrome/Firefox/IE)

Keep in mind, SpyHunter’s malware & virus scanner is free. To remove the infection, you'll need to purchase its full version. More information about SpyHunter and steps to uninstall.


How irritating is this virus?

This page aims to help you remove Antanna “Virus”. These Antanna “Virus” removal instructions work for Chrome, Firefox and Internet Explorer, as well as every version of Windows.

Maybe you are now searching for some details about a kind of software, which has recently been making your browser apps produce a noticeable amount of banners, boxes, pop-ups and other ads; as well as often send you to websites you cannot recognize or have never intended to visit; or/and even show homepages and search engines that are totally different from the ones you have set. In this article we really try to give you as many details about the program, which is the root of all this irritation – Antanna “Virus”, as we possibly can.

All you need to know about Antanna “Virus” and the software category it belongs to:

The term that most accurately describes Antanna “Virus” is the “browser hijacker”. Hijackers are programs, specialized in the aforementioned activities. Also, what we should definitely mention about them is that they could affect all of the most popular browser apps – Chrome, Opera, Explorer, Firefox, etc. A few users may consider the changes such programs invoke in their browsers too annoying or even intrusive. The relatively big number of ads produced might irritate the infected users even further. Still, there is not a single reason concrete enough to place Antanna “Virus” into any malware subtype. This program isn’t related to Ransomware – it cannot encrypt any data and make it inaccessible to the affected user. What’s more, its actions cannot define it as a Trojan horse virus, as Antanna “Virus” cannot use any system and/or program vulnerability for the purpose of invading your system. In conclusion, there is nothing really malicious about browser hijackers. However, they might have some pretty suspicious potential effects. One of them is their ability to track your most recent search requests using your browser’s history records, and authorize only the appearance of ads, which promote a service, a product or something that you have recently shown some interest in. Moreover, Antanna “Virus” may relate its rather negative reputation to the redirections it could cause. It has been implied that this sort of sudden redirecting might actually lead to web pages, full of malware.

One more potential reason for concern could be the way browser hijackers normally access and infect your PC. Indeed, there could be a lot of potential sources – spam, emails, documents, redirecting hyperlinks, contaminated web pages and torrent and/or shareware spreading websites. Still, the most commonly used one remains the so-called process of software bundling. This practice is very popular among programmers, through which they mix various types of software like Adware, original programs, or hijacker programs such as Antanna “Virus” and distribute them as a package. It is totally legal; the developers in fact get paid for spreading ad-related products. In fact, this is a really common business model that is based on the remuneration system called pay per click – the more  ads get clicked by users, the more money the developers make based on those clicks.

When talking about the way your system may catch an Antanna “Virus”- caused infection technically, we have to point out the fact that many users still believe that any hijacker is capable of self-infecting your browser apps. Nevertheless, this is NOT true at all. You might end up catching Antanna “Virus” only in case you, yourself, authorize it to be installed on your PC, which could occur with your knowing or unknowing approval. Normally, many users are so eager to use a piece of software from one of the aforementioned bundles that they may want it installed as soon as they have downloaded the bundle. This is usually their main mistake, as installing any program by one of the QUICK / BRIEF /or AUTOMATIC functions will more often than not allow all the programs inside the bundle to enter your system. The only proper way of integrating any software into your system is via the CUSTOMIZED/ CUSTOM OR ADVANCED installer features.

How to deal with the Antanna “Virus”-inflicted infection:

First, you have to successfully deal with Antanna “Virus”, and to delete it for good. For this purpose, we have designed a special Removal Guide. It is available to you for free below. Next, you really have to make sure such contaminations don’t happen again. In order to do that, you just have to be careful while browsing the Internet and while installing anything on your PC.

SUMMARY:

Name Antanna
Type Browser Hijacker
Danger Level Medium (nowhere near threats like Ransomware, but still a security risk)
Symptoms Some browser app changes – many produced ads; redirecting and search engine substitution.
Distribution Method Bundles; infected web pages; torrents and shareware.
Detection Tool

Keep in mind, SpyHunter’s malware detection tool is free. To remove the infection, you’ll need to purchase the full version.
More information about SpyHunter and steps to uninstall.

Antanna “Virus” Removal

If you are a Windows user, continue with the guide below.

If you are a Mac user, please use our How to remove Ads on Mac guide.

If you are an Android user, please use our Android Malware Removal guide.


Step1

Some of the steps will likely require you to exit the page. Bookmark it for later reference.

Reboot in Safe Mode (use this guide if you don’t know how to do it).

Step2

WARNING! READ CAREFULLY BEFORE PROCEEDING!

We get asked this a lot, so we are putting it here: Removing parasite manually may take hours and damage your system in the process. If you want a fast safe solution, we recommend SpyHunter. 

>> Click to Download Spyhunter. If you don't want this software, continue with the guide below.

Keep in mind, SpyHunter’s malware & virus scanner is free. To remove the infection, you'll need to purchase its full version. More information about SpyHunter and steps to uninstall.

Press CTRL + SHIFT + ESC at the same time and go to the Processes Tab (the “Details” Tab on Win 8 and 10). Try to determine which processes are dangerous. 

malware-start-taskbar

Right click on each of them and select Open File Location. Then scan the files with our free online virus scanner:

Maximum file size: 128MB.

This scanner is free and will always remain free for our website's users. You can find its full-page version at: https://howtoremove.guide/online-virus-scanner/


File Name:
File Size: Please Choose a File
File Type:
Detection ratio:

Warning: if you delete the wrong file, you may damage your system.
If you want to be 100% sure this won't happen, download SpyHunter® -
a multiple time certified scanner and remover.


Scan Results


Virus Scanner Result
ClamAV
AVG AV
Maldet

After you open their folder, end the processes that are infected, then delete their folders. 

Note: If you are sure something is part of the infection – delete it, even if the scanner doesn’t flag it. No anti-virus program can detect all infections. 

Step3

Hold together the Start Key and R. Type appwiz.cpl –> OK.

appwiz

You are now in the Control Panel. Look for suspicious entries. Uninstall it/them.

Type msconfig in the search field and hit enter. A window will pop-up:

msconfig_opt

Startup —> Uncheck entries that have “Unknown” as Manufacturer or otherwise look suspicious.

Step4

Hold the Start Key and R –  copy + paste the following and click OK:

notepad %windir%/system32/Drivers/etc/hosts

A new file will open. If you are hacked, there will be a bunch of other IPs connected to you at the bottom. Look at the image below:

hosts_opt (1)

If there are suspicious IPs below “Localhost” – write to us in the comments.

Open the start menu and search for Network Connections (On Windows 10 you just write it after clicking the Windows button), press enter.

  1. Right-click on the Network Adapter you are using —> Properties —> Internet Protocol Version 4 (ICP/IP), click  Properties.
  2. The DNS line should be set to Obtain DNS server automatically. If it is not, set it yourself.
  3. Click on Advanced —> the DNS tab. Remove everything here (if there is something) —> OK.

DNS

Step5

  • After you complete this step, the threat will be gone from your browsers. Finish the next step as well or it may reappear on a system reboot.

Right click on the browser’s shortcut —> Properties.

NOTE: We are showing Google Chrome, but you can do this for Firefox and IE (or Edge).

browser-hijacker-taskbar-properties

Properties —–> Shortcut. In Target, remove everything after .exe.

ie9-10_512x512  Remove Antanna “Virus” from Internet Explorer:

Open IE, click  IE GEAR —–> Manage Add-ons.

pic 3

Find the threat —> Disable. Go to IE GEAR —–> Internet Options —> change the URL to whatever you use (if hijacked) —> Apply.

firefox-512 Remove Antanna “Virus” from Firefox:

Open Firefoxclick  mozilla menu  ——-> Add-ons —-> Extensions.

pic 6

Find the adware/malware —> Remove.
chrome-logo-transparent-backgroundRemove Antanna “Virus” from Chrome:

Close Chrome. Navigate to:

 C:/Users/!!!!USER NAME!!!!/AppData/Local/Google/Chrome/User Data. There is a Folder called “Default” inside:

Rename the Folder to Backup Default

Rename it to Backup Default. Restart Chrome.

Step6

WARNING!
To remove parasite, you may have to meddle with system files and registries. Making a mistake and deleting the wrong thing may damage your system.
Avoid this by using SpyHunter - a professional Parasite removal tool.

Keep in mind, SpyHunter’s malware & virus scanner is free. To remove the infection, you'll need to purchase its full version. More information about SpyHunter and steps to uninstall.

Type Regedit in the windows search field and press Enter.

Inside, press CTRL and F together and type the threat’s Name. Right click and delete any entries you find with a similar name. If they don’t show up this way, go manually to these directories and delete/uninstall them:

  • HKEY_CURRENT_USER—-Software—–Random Directory. It could be any one of them – ask us if you can’t discern which ones are malicious.
    HKEY_CURRENT_USER—-Software—Microsoft—-Windows—CurrentVersion—Run– Random
    HKEY_CURRENT_USER—-Software—Microsoft—Internet Explorer—-Main—- Random

If the guide doesn’t help, download the anti-virus program we recommended or try our free online virus scanner. Also, you can always ask us in the comments for help!