Browser Redirect

Remove www2.savemax.store “Virus” (August 2019 Update)


How irritating is this problem? (5 votes, average: 5.00)
Loading...

This page aims to help you remove www2.savemax.store “Virus’. Our removal instructions work for Chrome, Firefox and Internet Explorer, as well as every version of Windows.

www2.savemax.store “Virus” is a free application which may initially promise to improve your web surfing experience by installing some special search engine, a homepage or a toolbar on your main browser. Once you install this application on your computer, however, you may start to experience different kinds of browsing disturbances such as frequent page-redirects, generation of aggressive ads, pop-ups and banners as well as exposure to dozens of promotional notifications. The application may also change your default browser settings without asking for your permission and force you to use a third-party search engine or a homepage, which may constantly prompt you to click on certain pay-per-click commercials.This behavior is typical for applications with browser hijacker features and it seems that the software element that we are talking about is yet another representative of this commonly encountered software category. If you have recently detected www2.savemax.store “Virus” in your Chrome, Firefox, or Explorer, you most probably have made it part of your system during the installation of another free software program, add-on or update.Sometimes, different free application bundles may contain a browser hijacker as an optional component inside their main setup package and that’s why you really need to pay close attention in order to prevent such potentially unwanted applications from entering your computer. Either way, you should not get panicked because the browser hijackers, generally, are not as malicious as computer viruses or as malware infections like Ransomware or Trojans. They are just aggressive online advertising tools which are not intended to cause harm inside your machine. However, they can still cause browsing-related disturbances and irritation with their ads for the entire period they operate on the computer. For this reason, we usually advise uninstalling them, as this is the only sure way to permanently remove their nagging ads and related browser changes. In the next lines, we have published a set of instruction on how you can do that on your own as well as a trusted removal tool for automatic help. 

www2.savemax.store “Virus”

Remove www2.savemax.store “Virus”

If you have a Windows virus, continue with the guide below.

If you have a Mac virus, please use our How to remove Ads on Mac guide.

If you have an Android virus, please use our Android Malware Removal guide.

If you have an iPhone virus, please use our iPhone Virus Removal guide


Step1

Some of the steps will likely require you to exit the page. Bookmark it for later reference.

Reboot in Safe Mode (use this guide if you don’t know how to do it).

Was this step helpful? Please vote – we use the feedback to improve our guides.
 
Yes
No

Step2

WARNING! READ CAREFULLY BEFORE PROCEEDING!

Press CTRL + SHIFT + ESC at the same time and go to the Processes Tab (the “Details” Tab on Win 8 and 10). Try to determine which processes are dangerous. 

malware-start-taskbar

Right click on each of them and select Open File Location. Then scan the files with our free online virus scanner:

Drag and Drop Files Here to Scan
Maximum file size: 128MB.

This scanner is free and will always remain free for our website's users. You can find its full-page version at: https://howtoremove.guide/online-virus-scanner/




Scan Results


Virus Scanner Result
ClamAV
AVG AV
Maldet


After you open their folder, end the processes that are infected, then delete their folders. 

Note: If you are sure something is part of the infection – delete it, even if the scanner doesn’t flag it. No anti-virus program can detect all infections. 

Step3

Hold together the Start Key and R. Type appwiz.cpl –> OK.

appwiz

You are now in the Control Panel. Look for suspicious entries. Uninstall it/them.

Type msconfig in the search field and hit enter. A window will pop-up:

msconfig_opt

Startup —> Uncheck entries that have “Unknown” as Manufacturer or otherwise look suspicious.

Step4

Hold the Start Key and R –  copy + paste the following and click OK:

notepad %windir%/system32/Drivers/etc/hosts

A new file will open. If you are hacked, there will be a bunch of other IPs connected to you at the bottom. Look at the image below:

hosts_opt (1)

If there are suspicious IPs below “Localhost” – write to us in the comments.

Open the start menu and search for Network Connections (On Windows 10 you just write it after clicking the Windows button), press enter.

  1. Right-click on the Network Adapter you are using —> Properties —> Internet Protocol Version 4 (ICP/IP), click  Properties.
  2. The DNS line should be set to Obtain DNS server automatically. If it is not, set it yourself.
  3. Click on Advanced —> the DNS tab. Remove everything here (if there is something) —> OK.

DNS

Step5

  • After you complete this step, the threat will be gone from your browsers. Finish the next step as well or it may reappear on a system reboot.

Right click on the browser’s shortcut —> Properties.

NOTE: We are showing Google Chrome, but you can do this for Firefox and IE (or Edge).

browser-hijacker-taskbar-properties

Properties —–> Shortcut. In Target, remove everything after .exe.

ie9-10_512x512  Remove www2.savemax.store from Internet Explorer:

Open IE, click  IE GEAR —–> Manage Add-ons.

pic 3

Find the threat —> Disable. Go to IE GEAR —–> Internet Options —> change the URL to whatever you use (if hijacked) —> Apply.

firefox-512 Remove www2.savemax.store from Firefox:

Open Firefoxclick  mozilla menu  ——-> Add-ons —-> Extensions.

pic 6

Find the adware/malware —> Remove.
chrome-logo-transparent-backgroundRemove www2.savemax.store from Chrome:

Close Chrome. Navigate to:

 C:/Users/!!!!USER NAME!!!!/AppData/Local/Google/Chrome/User Data. There is a Folder called “Default” inside:

Rename the Folder to Backup Default

Rename it to Backup Default. Restart Chrome.

Step6

Type Regedit in the windows search field and press Enter.

Inside, press CTRL and F together and type the threat’s Name. Right click and delete any entries you find with a similar name. If they don’t show up this way, go manually to these directories and delete/uninstall them:

  • HKEY_CURRENT_USER—-Software—–Random Directory. It could be any one of them – ask us if you can’t discern which ones are malicious.
    HKEY_CURRENT_USER—-Software—Microsoft—-Windows—CurrentVersion—Run– Random
    HKEY_CURRENT_USER—-Software—Microsoft—Internet Explorer—-Main—- Random

www2.savemax.store may keep track of your web browsing activities!

As a typical browser hijacker, www2.savemax.store targets users who frequently browses the Internet and spends time online. The application usually provides different instant access features and automatic page-redirects to specific promotions, special offers and websites right from the newly installed homepage or via the search engine of the main browser. These features may be appealing to some people but in the long run they may hide some indirect security risks. For instance, it is perfectly possible that during the random ads generation and redirects, you may come across some sketchy sites, offers of low-quality products or services and misleading links, which may be potential carriers of viruses and other serious threats such as Trojans or Ransomware. Another rather questionable feature of applications such as www2.savemax.store is their ability to monitor your browsing-related information (including your latest web searches, your location, language, social media likes and shares, browser bookmarks and history, etc.) in order to learn more about what you are currently interested in. This way they can fill your screen with related ads and prompt you to click on them. The best way to prevent spam of this kind is to simply uninstall the hijacker because this will remove it ads once and for all.

SUMMARY:

Name www2.savemax.store
Type Browser Hijacker
Danger Level Medium (nowhere near threats like Ransomware, but still a security risk)
Symptoms  The screen of your browser may get spammed with various aggressive ads and page-redirects. 
Distribution Method Software bundling, spam, ads, torrents, free installers, shareware sites, freeware platforms. 
Detection Tool

If the guide doesn’t help, download the anti-virus program we recommended or try our free online virus scanner. Also, you can always ask us in the comments for help!


Leave a Comment