This page aims to help you remove Durington “Virus”. Our removal instructions work for Chrome, Firefox and Internet Explorer, as well as every version of Windows.
If your computer has had a browser hijacker application like Durington installed on it, we advise you to take a look at the following paragraphs and read the information that this article has to offer. It is likely that if Durington is currently inside your PC system you are experiencing various forms of browsing disturbance such as sudden redirects to different pages that you did not want to visit or constant display of different advertising materials such as banners, pop-ups, box messages and others. Also, your Chrome, IE or Firefox search engine and homepage (or the search engine and homepage of whatever other browser you may be using) might have gotten replaced by new ones due to the activity of the Durington “Virus” hijacker. Similarly, a new toolbar may have been added to your browsing program that you are unable to remove. In fact, if you are faced with any of these browser hijacker-related changes, it is likely that you wouldn’t be able to revert them and bring your browser back to its normal state unless the cause for the modifications gets remove from your computer. That is why, we have made sure to include a detailed removal manual at the bottom of this page where anyone interested could learn how to effectively remove a browser hijacker from their system without the need to bring their machine to a professional. Note that getting rid of a hijacking application the likes of Durington might not be all that easy. Although here we aren’t talking about some nasty Trojan Horse or Ransomware virus, simply uninstalling the hijacker from your Control Panel list of installed programs might not be enough. Furthermore, you might not even be able to find an entry for the hijacker application in the Control Panel programs list. That’s why, you will probably need to complete a number of additional steps before you fully eradicate the pesky software. The good news, however, is that if you closely follow the instructions provided in our removal guide, the browser hijacking software should be gone in no time. In addition to the guide, you can also use the recommended software tool for removing unwanted and potentially hazardous program that we have recommended down below. Also, in case you have any questions related to this article and to the removal guide below it, you can always contact us through the comments section and we will make sure to get back to you within a short notice.
Durington “Virus” Removal
If you have a Windows virus, continue with the guide below.
If you have a Mac virus, please use our How to remove Ads on Mac guide.
If you have an Android virus, please use our Android Malware Removal guide.
If you have an iPhone virus, please use our iPhone Virus Removal guide
Some of the steps will likely require you to exit the page. Bookmark it for later reference.
Reboot in Safe Mode (use this guide if you don’t know how to do it).
WARNING! READ CAREFULLY BEFORE PROCEEDING!
Press CTRL + SHIFT + ESC at the same time and go to the Processes Tab (the “Details” Tab on Win 8 and 10). Try to determine which processes are dangerous.
Right click on each of them and select Open File Location. Then scan the files with our free online virus scanner:
This scanner is free and will always remain free for our website's users. You can find its full-page version at: https://howtoremove.guide/online-virus-scanner/
After you open their folder, end the processes that are infected, then delete their folders.
Note: If you are sure something is part of the infection – delete it, even if the scanner doesn’t flag it. No anti-virus program can detect all infections.
Hold together the Start Key and R. Type appwiz.cpl –> OK.
You are now in the Control Panel. Look for suspicious entries. Uninstall it/them.
Type msconfig in the search field and hit enter. A window will pop-up:
Startup —> Uncheck entries that have “Unknown” as Manufacturer or otherwise look suspicious.
Hold the Start Key and R – copy + paste the following and click OK:
A new file will open. If you are hacked, there will be a bunch of other IPs connected to you at the bottom. Look at the image below:
If there are suspicious IPs below “Localhost” – write to us in the comments.
Open the start menu and search for Network Connections (On Windows 10 you just write it after clicking the Windows button), press enter.
- Right-click on the Network Adapter you are using —> Properties —> Internet Protocol Version 4 (ICP/IP), click Properties.
- The DNS line should be set to Obtain DNS server automatically. If it is not, set it yourself.
- Click on Advanced —> the DNS tab. Remove everything here (if there is something) —> OK.
- After you complete this step, the threat will be gone from your browsers. Finish the next step as well or it may reappear on a system reboot.
Right click on the browser’s shortcut —> Properties.
NOTE: We are showing Google Chrome, but you can do this for Firefox and IE (or Edge).
Properties —–> Shortcut. In Target, remove everything after .exe.
Remove Durington from Internet Explorer:
Open IE, click —–> Manage Add-ons.
Find the threat —> Disable. Go to —–> Internet Options —> change the URL to whatever you use (if hijacked) —> Apply.
Remove Durington from Firefox:
Open Firefox, click ——-> Add-ons —-> Extensions.
Find the adware/malware —> Remove.
Remove Durington from Chrome:
Close Chrome. Navigate to:
C:/Users/!!!!USER NAME!!!!/AppData/Local/Google/Chrome/User Data. There is a Folder called “Default” inside:
Rename it to Backup Default. Restart Chrome.
Type Regedit in the windows search field and press Enter.
Inside, press CTRL and F together and type the threat’s Name. Right click and delete any entries you find with a similar name. If they don’t show up this way, go manually to these directories and delete/uninstall them:
- HKEY_CURRENT_USER—-Software—–Random Directory. It could be any one of them – ask us if you can’t discern which ones are malicious.
HKEY_CURRENT_USER—-Software—Microsoft—Internet Explorer—-Main—- Random
More on browser hijackers
As we mentioned above, Durington “Virus” and other similar advertising-oriented software applications cannot really be referred to as computer viruses or malware. Sure, they can be extremely frustrating and could sometimes be a bit tricky to get rid of but still in most of the cases no direct harm should come to your computer or to your virtual privacy if you have such an application on your machine. However, due to the constant display of nagging ads and also due to the different and typically unwanted changes that such software is likely to impose on one’s browsers, users usually tend to deem hijackers unwanted and undesirable. Also, in most cases there’s actually little to no benefit that the end user could gain from such an app. Most hijackers are simply created t serve the purposes of their developers which, in turn, typically are generating money through aggressive online advertising campaigns. To top it all, although Durington might not be dangerous in itself, the ads displayed by it and the pages it may redirect you to could sometimes be unsafe and/or coming from unreliable sources. In fact, if you happen to click on the wrong pop-up or banner, you might get linked to some unreliable and even hazardous site with questionable contents. A general rule of thumb when it comes to hijackers is to simply keep away from anything that they show on your screen – ads, banners, page redirects, etc. Also, abstain from using the imposed search engine, homepage and toolbar as this might also potentially land you on shady web locations.
What about hijacker distribution?
Similarly to most other forms of unwanted software, browser hijackers could get distributed via spam messages, deceitful web-links, misleading offers and ads coming from sketchy websites as well as through many similar social-engineering methods. However, one distribution techniques that seems to stand out is the file-bundling where the hijacker is added to another software’s installer. Since users tend to use the Quick setup configuration, they normally get all bundled content installed on their machines along with the main program. The good news is that avoiding this is easy, simply use the Custom installation alternative – there you should be allowed access to the options that allow you to leave out any of the optional components so that you know that you are only installing software which you actually want to have on your PC.
|Danger Level||Medium (nowhere near threats like Ransomware, but still a security risk)|
|Symptoms||In most cases the changes to the user’s browser and the irritating web ads are the most typical symptoms.|
|Distribution Method||Spam messages, malvertising, free program downloads with the hijacker bundled with them, etc.|
Some threats of this type reinstall themselves repeatedly if you don't delete their core files. We recommend downloading SpyHunter to scan for malicious programs. This may save you hours and cut down your time to about 15 minutes.
If the guide doesn’t help, download the anti-virus program we recommended or try our free online virus scanner. Also, you can always ask us in the comments for help!