• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 417
  • Last Modified:

Get rid of Fake Flash Popup in IE

Hi,

I've got 2 different clients who have been getting these annoying fake Flash update popups in IE 11:
 Fake Flash Popups
So far I have tried:
-Running multiple Full Scans with MalwareBytes (which have all come up with 0 threats found)
-Clearing all browsing history
-Resetting Internet Explorer
-Reformatted and Reinstalled Windows

It makes absolutely no sense to me.   How could I possibly reformat the entire machine, re-install from Windows 7 from scratch, and the moment that I launch IE to go to a web page, the popup comes back??

Usually, MalwareBytes takes care of this kind of thing, but this time even MalwareBytes can't find anything.

I'm completely baffled.   Anyone got any ideas?
0
Justin Goo
Asked:
Justin Goo
  • 8
  • 3
  • 2
  • +3
1 Solution
 
Justin GooPresidentAuthor Commented:
And yes... the latest version of Adobe Flash IS installed...
0
 
Aamir AhmedCommented:
look in the MANAGE ADD-ONs and try to remove/disable any suspicious ones.
0
 
Lior KarasentiCommented:
You can use Adwcleaner to remove it, check here for instructions how to get rid of it:
http://www.pcinfected.com/axp-zedo-com-virus-removal/
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
ALAA NABIHCommented:
Hello,

check the add-ons manager is there any  toolbars unknown or can not be disabled.

if you find it please take snapshot.
0
 
Justin GooPresidentAuthor Commented:
Here is another popup:
Fake Flash Popup 2
0
 
Justin GooPresidentAuthor Commented:
I've looked in the Add-ons.   There's nothing suspicious:
Add-ons
0
 
Justin GooPresidentAuthor Commented:
What concerns me the most is that I have completely reformatted the machine.   I did a completely clean/fresh Windows install, and the moment I launched IE it came back.   How can this possibly be??
0
 
rindiCommented:
What AV tool are you running? Did you run malwarebytes like it should run, in standard mode and not in safe mode, where lots of problems can't be found? Have you scanned all PC's on the LAN to make sure it isn't caused by another PC? Have you updated the router's firmware. and reset it to factory defaqults?
0
 
Stef95Commented:
Install Ad blocker for IE: https://adblockplus.org/releases/adblock-plus-11-for-internet-explorer-released

This has always worked for me
0
 
Justin GooPresidentAuthor Commented:
He's got Symantec Endpoint Protection 12.1 installed for A/V.    
Yes we ran MalwareBytes in normal mode.
For 1 client, that is the ONLY PC on the network.   There are no others.

If his computer is infected, I don't just want to block popups, I want to make sure it's clean.
0
 
rindiCommented:
What about the router? Have you reset it and checked for firmware upgrades?
0
 
Stef95Commented:
Are they connected to a domain or a workgroup ?
0
 
Justin GooPresidentAuthor Commented:
Haven't reset the router yet.  But these are 2 different clients in 2 different companies.

Neither is in a domain.   Both workgroup environments.
0
 
Justin GooPresidentAuthor Commented:
Okay.   I reset the router for one of my clients to factory defaults, updated the firmware, and changed the admin password.  
So far no popups yet.    I'm hoping this is actually the fix.
0
 
rindiCommented:
There is some malware that can affect routers.
0
 
Justin GooPresidentAuthor Commented:
Been a couple of days, and so far so good.  Never would've guessed it was the router.  Thanks!
0

Featured Post

Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

  • 8
  • 3
  • 2
  • +3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now