Browser Redirect

Guntony “Virus” Chrome Removal

Parasite may reinstall itself multiple times if you don't delete its core files. We recommend downloading SpyHunter to scan for malicious programs installed with it. This may save you hours and cut down your time to about 15 minutes. 

Download SpyHunter Anti-Malware

More information on SpyHunter, steps to uninstallEULAThreat Assessment Criteria, and Privacy Policy.

This page aims to help you remove Guntony Chrome. These Guntony “Virus” removal instructions work for Chrome, Firefox and Internet Explorer, as well as every version of Windows. Guntony is most often used as a redirect tool for Google Chrome.

What is Guntony Chrome?

Are you being bothered by the constant flood of ads on your screen as you load your PC or browsing the web? Are they obstructing your screen, being annoying and prevent you from working in peace? Are curious to know just what is Guntony and why it is in your computer? If this is the case, then this article is for you. In it, we will be teaching you the nature of this piece of software, how it works, and what you should know about it. Before we start, we would like to mention that it is paramount you read over the information we’ve compiled above, because the topics we would like to cover are very important for future knowledge, and would help you understand this type of threat. Once you are done consuming the information, you will find a guide filled with steps you may follow to remove this piece of software off of your PC.

Does Guntony “Virus” really classify as such?

Firstly, we would like to mention that Browser Hijackers in general do not harm your computer in any way other than install ads and display them on your PC. You shouldn’t worry too much or panic if you notice that one is nested itself inside your system, but proper removal procedures are encouraged to perform the moment you see it. The reason for this need of swift action becomes apparent once you’ve learned what Guntony “VIrus” really does.

Let us talk a bit about the ways it finds your PC and secures its place inside it. Back when developers creates software mainly for the heck of it, they needed a way to distribute their works effectively and reach a bigger user base. One of the ways they could do that, was to bundle their software as freeware inside software packages of more commonly used and downloaded programs. There was nothing wrong with that, until one day the malicious individuals called hackers (the Black Hat type) decided to spread their creations through the same distribution channels normal developers use. In other words, more and more software bundles, downloaded from web sites purposed as such, began to contain these Browser Hijacker (such as the one you are infected with right now, Guntony). If you have often visited download sites before, chances are you have caught Guntony from those places. In the future, we recommend you abstain from using shady websites to find software and stick to the giants (the biggest websites, who most often those who have the strictest quality control).

It is time to address the elephant in the room, the  Browser Hijacker named Guntony Chrome . The first symptom you may notice is a heightened resource usage in your task manager, if you use it often. Other indicators for that symptom are slow downs noticed when using your computer. This factor is not that large since most of the Browser Hijacker use a small amount of PC resources, making them less noticeable than a virus, for example. In comparison, a ransomware uses so much memory and RAM that it can make your PC extremely slow. Still, please note that while we may refer to Guntony “Virus”, it is not actually a virus, but merely an annoying Browser Hijacker

Next thing you will definitely notice are the ads themselves, usually accompanied by browser redirects. They can be literally everywhere, but most often reside in your browser window. There are occasions where they reside in separate browser windows, serving as a form of pop-ups, but these are seldom seen. Opening a web page is when you’ll really notice the annoying nature of Browser Hijacker. At the sides of the page, you could notice banners, rectangular in shape. They are less obstructive then the rest, but are usually large enough to be annoying. After that are the in-text ads, who are most often hyperlinked text. Some of them are hidden very well, making the possibility of you clicking on them higher than usual. Be vary ware of weirdly placed hyperlinks that don’t seem to fit the page you are viewing. It may very well be ads. Last, but certainly not least, are the pop-up ads, who cover your entire page. It’s easy to imagine why they are considered the most annoying and obstructive of the bunch. Clicking on any of them will lead you to shady websites, often filled with tempting, but fake offers that only aim to steal your money. They can range from services to products that seem too good to be true. Believe us, if anything seems that way, then it is most likely not true. Under no circumstance should you interact in any way with the advertisements. Doing so can bring you a lot of trouble and even viruses if you aren’t careful. Even though there are no known cases of ransomware infections in this way you still have to maintain caution. Consult with our removal guide below to learn how to remove Guntony and save yourself from its troubles.


Name Guntony
Type Browser Hijacker
Danger Level Medium (nowhere near threats like Ransomware, but still a security risk)
Symptoms Slow downs followed by intrusive and annoying advertisements.
Distribution Method Packaged in software bundles, often distributed on popular download sites.
Detection Tool Guntony may be difficult to track down. Use SpyHunter – a professional parasite scanner – to make sure you find all files related to the infection.

Keep in mind, SpyHunter’s malware detection tool is free. To remove the infection, you’ll need to purchase the full version.
More information about SpyHunter and steps to uninstall.


Guntony “Virus” Chrome Removal

Readers are interested in:



Reboot in Safe Mode (use this guide if you don’t know how to do it).

This was the first preparation.


To remove parasite on your own, you may have to meddle with system files and registries. If you were to do this, you need to be extremely careful, because you may damage your system.

If you want to avoid the risk, we recommend downloading SpyHunter
a professional malware removal tool.

More information on SpyHunter, steps to uninstallEULAThreat Assessment Criteria, and Privacy Policy.

Reveal All Hidden Files and Folders.

  • Do not skip this – Guntony may have hidden some of its files.

Hold together the Start Key and R. Type appwiz.cpl –> OK.


You are now in the Control Panel. Look for suspicious entries. Uninstall it/them.

Type msconfig in the search field and hit enter. A window will pop-up:


Startup —> Uncheck entries that have “Unknown” as Manufacturer or otherwise look suspicious.

  • Remember this step – if you have reason to believe a bigger threat (like ransomware) is on your PC, check everything here.


Hold the Start Key and R copy + paste the following and click OK:

notepad %windir%/system32/Drivers/etc/hosts

A new file will open. If you are hacked, there will be a bunch of other IPs connected to you at the bottom. Look at the image below:

hosts_opt (1)

If there are suspicious IPs below “Localhost” – write to us in the comments.


Right click on the browser’s shortcut —> Properties.

NOTE: We are showing Google Chrome, but you can do this for Firefox and IE (or Edge).


Properties —–> Shortcut. In Target, remove everything after .exe.

ie9-10_512x512 Remove Guntony from Internet Explorer:

Open IE, click IE GEAR —–> Manage Add-ons.

pic 3

Find the threat —> Disable. Go to IE GEAR —–> Internet Options —> change the URL to whatever you use (if hijacked) —> Apply.

firefox-512 Remove Guntony from Firefox:

Open Firefox, click mozilla menu ——-> Add-ons —-> Extensions.

pic 6

Find the Browser Hijacker/malware —> Remove.
chrome-logo-transparent-backgroundRemove Guntony from Chrome:

Close Chrome. Navigate to:

C:/Users/!!!!USER NAME!!!!/AppData/Local/Google/Chrome/User Data. There is a Folder called “Default” inside:

Rename the Folder to Backup Default

Rename it to Backup Default. Restart Chrome.

  • At this point the threat is gone from Chrome, but complete the entire guide or it may reappear on a system reboot.


Press CTRL + SHIFT + ESC simultaneously. Go to the Processes Tab. Try to determine which ones are dangerous. Google them or ask us in the comments.


We get asked this a lot, so we are putting it here: Removing parasite manually may take hours and damage your system in the process. We recommend downloading SpyHunter to see if it can detect parasite files for you.

Right click on each of the problematic processes separately and select Open File Location. End the process after you open the folder, then delete the directories you were sent to.



Type Regedit in the windows search field and press Enter.

Inside, press CTRL and F together and type the threat’s Name. Right click and delete any entries you find with a similar name. If they don’t show this way, go manually to these directories and delete/uninstall them:

  • HKEY_CURRENT_USER—-Software—–Random Directory. It could be any one of them – ask us if you can’t discern which ones are malicious.
    HKEY_CURRENT_USER—-Software—Microsoft—-Windows—CurrentVersion—Run– Random
    HKEY_CURRENT_USER—-Software—Microsoft—Internet Explorer—-Main—- Random

Remember to leave us a comment if you run into any trouble!

Leave a Comment