Jump to content

AA.js/Q.adrta.com Pop-Ups


tjg79

Recommended Posts

Hi,

 

I'm getting aa.js/q.adrta.com pop-ups with IE11. I'm running Win 7 Pro x64 w/ ESET SS 9.0.318.0.

 

Will ESET SS remove the virus?

 

How do I eliminate the pop-ups?

 

Every time a pop-up appears asking if I want to download or save, I click cancel. From my internet research, it appears that I may already be infected.

 

I haven't received any indications from ESET SS that I've been infected and I'm surprised ESET SS doesn't eliminate the pop-up or indicate a warning.

 

Thank you for your assistance.

 

Regards

Link to comment
Share on other sites

  • Administrators

A couple of questions:

- Does it happen with any browser?

- Does it happen even if you run a browser in a so-called safe mode without add-ons loaded?

- If you have more computers in the network, is it happening on all of them?

Link to comment
Share on other sites

I only have IE11 installed.

 

This computer is not in a network. It's connected to the internet via a DSL modem.

 

I haven't run the browser in so-called safe mode without add-ons loaded.

Link to comment
Share on other sites

  • Administrators

To run IE without add-ons, click Start and type "Internet Explorer". As you type, you should see a shortcut to "Internet Explorer (No Add-ons)". Click it to start IE without add-ons and see if the issue occurs.

Link to comment
Share on other sites

The pop-up hasn't reappeared in either IE11 with add-ons or IE11 without add-ons in the past few days. 

 

I've run scans with the latest version of ESET SS, SuperAntiSpyware, Windows Defender, and Microsoft Safety Scanner with no detections.

 

Everything I've read online indicates this was a virus. I'm surprised ESET SS didn't detect anything.

 

I'll post again if the virus reappears.

 

Did you see anything of interest in the log files?

 

Regards

 

 

Link to comment
Share on other sites

I'm getting a different virus file pop-up, but the same indications. I get this pop-up in both IE11 with add-ons and IE11 without add-ons.

 

A screen shot is attached.

 

I suspect this is virus that targets my system from a particular website that attempts to cause a download by clicking "save" or "open."

 

Does ESET SS protect from these types of attacks?

 

Why doesn't the program prevent the pop-up from appearing?

 

post-1685-0-54389700-1457326175_thumb.jpg

Link to comment
Share on other sites

I've started getting the following ESET SS pop-up.

 

I don't know if it's related to the pop-up in my previous post.

 

post-1685-0-47971800-1457328950_thumb.jpg

 

post-1685-0-12506200-1457329319_thumb.jpg

Edited by tjg79
Link to comment
Share on other sites

Do you see the orange popup on all/any websites or only on some specific websites you browse to ?

 

And have you detection of PUAs, PUPs and Suspicious apps enabled in ESET ?

(if not, enable all of them and run another scan, and keep them enabled from now on)

hxxp://support.eset.com/kb3204/

 

If you have these detection categories enabled and ESET does still not detect and remove it.

Then you can try the guide below, it is from 2013, but the method and tools used to remove it are still relevant today, and they are quite easy to use. Follow the description and what is shown in the screenshots and it should be pretty straight forward. (The tools used in the guide may probably also find items connected to "aa.js/q.adrta.com" that you mention in your first post, and possibly more, check the detection log and what each item belong to before you remove anything, so you don't remove anything you want to keep incase of FP.)

 

https://malwaretips.com/blogs/ib-adnxs-popup-virus/

Link to comment
Share on other sites

SweX, on 07 Mar 2016 - 6:51 PM, said:SweX, on 07 Mar 2016 - 6:51 PM, said:SweX, on 07 Mar 2016 - 6:51 PM, said:

Do you see the orange popup on all/any websites or only on some specific websites you browse to ?

 

And have you detection of PUAs, PUPs and Suspicious apps enabled in ESET ?

(if not, enable all of them and run another scan, and keep them enabled from now on)

hxxp://support.eset.com/kb3204/

 

If you have these detection categories enabled and ESET does still not detect and remove it.

Then you can try the guide below, it is from 2013, but the method and tools used to remove it are still relevant today, and they are quite easy to use. Follow the description and what is shown in the screenshots and it should be pretty straight forward. (The tools used in the guide may probably also find items connected to "aa.js/q.adrta.com" that you mention in your first post, and possibly more, check the detection log and what each item belong to before you remove anything, so you don't remove anything you want to keep incase of FP.)

 

https://malwaretips.com/blogs/ib-adnxs-popup-virus/

 

The popups appear on some websites, not all.

 

I changed my Antivirus settings. The scanner options had "Enable detection of potentially unsafe application" unchecked. I changed it to enabled.

 

The ESET SS configuration on my system was the default as installed.

 

I'll monitor the system and see if the change resolves the problem.

 

Thanks for the assistance.

 

Regards

Edited by tjg79
Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...