Remove Watch-this.liveRemove Watch-this.liveRemove


This page aims to help you remove Our removal instructions work for Chrome, Firefox and Internet Explorer, as well as every version of Windows.

The apps of the browser hijacker category are widely-known for being highly irritating and invasive but what many users get wrong about them is that they aren’t really as dangerous or as malicious as they may seem. A hijacker is basically a piece of software that functions very similarly to an add-on for a popular browser like Chrome or Firefox or Edge (or some other one). The main difference between hijackers and most regular browser extensions, however, is that the former, unlike the latter, would typically flood the user’s browser with various page-redirects and ads and would also introduce some unwanted and unauthorized modifications to the browser’s components and settings. Some of the things you can expect a hijacker to alter in your browser are the browser’s starting page address, new-tab page address, the default search engine, the toolbar buttons (or the whole toolbar) and so on and so forth. All in all, if you have an app of this category integrated with your browser, you can expect various inconveniences and annoying activities in your browser that will likely obstruct and negatively affect your ability to surf the Internet in peace.

As we already mentioned, however, this isn’t some scary Ransomware or Trojan Horse that you are dealing with – it is an ad-oriented application and its creators won’t really benefit from causing any damage to your system or from messing with your data. Still, though relatively harmless, hijackers have this ability of being highly invasive and irritating pieces of software while, at the same time, offering little to no value to the user. Therefore, our suggestion for you in case you have such an app integrated with your browser would be to clear the browser and get rid of the intrusive software. In the next lines, we will explain how you can remove the newly reported hijacker app which is also likely the reason you’ve come to this page in the first place.

Security tips to keep your computer safe

We understand that you may get the urge to click on some of the ads displayed by while the nagging app is still active on your computer be it because a certain advert has drawn your attention or because you simply want to close the invasive commercial messages. You should, however, bear in mind that not all of the advertisements you see on the Internet are safe to interact with and this may also apply to the ones spammed by It is, therefore, better to stay away from them if you care about your computer’s security. After all, misleading advertisements and online notifications are a favourite tool for hackers who seek to spread insidious malware like Ransomware, Trojans, Rootkits and so on. Now, itself isn’t specifically intended to display such ads on your screen but there is still a real possibility of this happening which is why uninstalling the invasive app and removing all of its browser components is the advisable course of action.


Type  Browser Hijacker
Danger Level Medium (nowhere near threats like Ransomware, but still a security risk)
Symptoms Changes to the browser that have occurred without your permission is a sure sign of the presence of a hijacker app in your computer. 
Distribution Method Spam messages and fake ads as well as misleading update requests and software installers.
Detection Tool


If you have a Windows virus, continue with the guide below.

If you have a Mac virus, please use our How to remove Ads on Mac guide.

If you have an Android virus, please use our Android Malware Removal guide.

If you have an iPhone virus, please use our iPhone Virus Removal guide


Some of the steps will likely require you to exit the page. Bookmark it for later reference.

Reboot in Safe Mode (use this guide if you don’t know how to do it).



Press CTRL + SHIFT + ESC at the same time and go to the Processes Tab (the “Details” Tab on Win 8 and 10). Try to determine which processes are dangerous. 


Right click on each of them and select Open File Location. Then scan the files with our free online virus scanner:

Drag and Drop Files Here to Scan
Maximum file size: 128MB.

This scanner is free and will always remain free for our website's users. You can find its full-page version at:

Scan Results

Virus Scanner Result
Remove Watch-this.liveClamAV
Remove Watch-this.liveAVG AV
Remove Watch-this.liveMaldet

After you open their folder, end the processes that are infected, then delete their folders. 

Note: If you are sure something is part of the infection – delete it, even if the scanner doesn’t flag it. No anti-virus program can detect all infections. 


Hold together the Start Key and R. Type appwiz.cpl –> OK.


You are now in the Control Panel. Look for suspicious entries. Uninstall it/them.

Type msconfig in the search field and hit enter. A window will pop-up:


Startup —> Uncheck entries that have “Unknown” as Manufacturer or otherwise look suspicious.


Hold the Start Key and R –  copy + paste the following and click OK:

notepad %windir%/system32/Drivers/etc/hosts

A new file will open. If you are hacked, there will be a bunch of other IPs connected to you at the bottom. Look at the image below:


If there are suspicious IPs below “Localhost” – write to us in the comments.

Open the start menu and search for Network Connections (On Windows 10 you just write it after clicking the Windows button), press enter.

  1. Right-click on the Network Adapter you are using —> Properties —> Internet Protocol Version 4 (ICP/IP), click  Properties.
  2. The DNS line should be set to Obtain DNS server automatically. If it is not, set it yourself.
  3. Click on Advanced —> the DNS tab. Remove everything here (if there is something) —> OK.



  • After you complete this step, the threat will be gone from your browsers. Finish the next step as well or it may reappear on a system reboot.

Right click on the browser’s shortcut —> Properties.

NOTE: We are showing Google Chrome, but you can do this for Firefox and IE (or Edge).


Properties —–> Shortcut. In Target, remove everything after .exe.


Remove  Remove from Internet Explorer:

Open IE, click  Remove —–> Manage Add-ons.


Find the threat —> Disable. Go to Remove —–> Internet Options —> change the URL to whatever you use (if hijacked) —> Apply.

Remove Remove from Firefox:

Open Firefoxclick  Remove  ——-> Add-ons —-> Extensions.


Find the adware/malware —> Remove.
Remove Watch-this.liveRemove from Chrome:

Close Chrome. Navigate to:

 C:/Users/!!!!USER NAME!!!!/AppData/Local/Google/Chrome/User Data. There is a Folder called “Default” inside:


Rename it to Backup Default. Restart Chrome.


Type Regedit in the windows search field and press Enter.

Inside, press CTRL and F together and type the threat’s Name. Right click and delete any entries you find with a similar name. If they don’t show up this way, go manually to these directories and delete/uninstall them:

  • HKEY_CURRENT_USER—-Software—–Random Directory. It could be any one of them – ask us if you can’t discern which ones are malicious.
    HKEY_CURRENT_USER—-Software—Microsoft—-Windows—CurrentVersion—Run– Random
    HKEY_CURRENT_USER—-Software—Microsoft—Internet Explorer—-Main—- Random

If the guide doesn’t help, download the anti-virus program we recommended or try our free online virus scanner. Also, you can always ask us in the comments for help!


About the author


Brandon Skies

Brandon is a researcher and content creator in the fields of cyber-security and virtual privacy. Years of experience enable him to provide readers with important information and adequate solutions for the latest software and malware problems.

Leave a Comment