Facemoods (Virus Removal Guide) - 2021 update
Facemoods Removal Guide
What is Facemoods?
Facemoods is a potentially unwanted program that triggers annoying ads
Facemoods is a misleading toolbar that may also be found under the name Face Moods. It has been developed by Facemoods Software and is promoted on various software download pages as a free add-on for improving Facebook Chat by providing a huge variety of winks, emoticons, text effects, and so on.
Despite its appealing representation, Facemoods toolbar should not be trusted as it tends to jeopardize web browser's settings, present users with bogus search results, and even collect/share browsing-related information about the users with suspicious third parties.
If you are a security-minded person, you should never use Facemoods virus or any of its clones. To find out more about how this app works and how to stop its potentially dangerous activities read the rest of the post.
Facemoods is a browser hijacker that shows ads to suspicious websites.
Facemoods is deemed as a 'browser hijacker' and a 'potentially unwanted program' due to several reasons. First of all, it seldom requires appropriate permission to be installed on the system. Second of all, once its extension is enabled, it performs unauthorized web browser modifications.
According to the malware analysts, Facemoods redirect virus supports IE, Chrome, and Firefox web browsers, so the changes it performs will be visible on each of them. So what does it do?
- It installs on a Windows startup;
- Starts running executable facemoodssrv.exe within Task Manager;
- Usually sets Start.Facemoods.com or facemoods.com as a default start page, search provider, and a new tab window;
- Injects a search toolbar on each web browser;
- Enables tracking cookies and starts collecting browser-related information;
- Exhibits sponsored search results (filled with sponsored links and advertisements).
These are the main changes, but don't underestimate them. The best solution is to simply remove Facemoods and there are several important reasons for such a decision.
First of all, you may be annoyed heavily as such changes can ruin your customized browser's settings and do not allow you to reset them. On top of that, each time you browse the net when this toolbar is installed, you risk experiencing Facemoods redirects to doubtful or unsafe web pages.
This way, you risk exposing your PC to various cyber threats, including adware, other browser hijackers, malware, or even virus. Thus, if you have noticed Start.Facemoods.com homepage on your web browser, as well as Facemoods toolbar installed out of nowhere, we would recommend you to install SpyHunter 5Combo Cleaner or Malwarebytes and perform a full scan with it.
You can remove Facemoods malware and all of its counterparts manually too. To help you perform the removal, we will provide a detailed removal guide at the end of this article.
Be careful if you want to prevent potentially unwanted programs from entering your computer
This particular hijacker can be downloaded from its official page. Nevertheless, people seldom land on this page accidentally because it's not the one that can be seen on the first pages of search results for toolbars.
The considerably more successful distribution method of this tool is 'bundling,' which enables Facemoods virus to spread along with other free software. Be careful when surfing the net because you may accidentally fall for installing a freeware bundle.
This questionable Facebook Chat enhancer may be attached to various zip files, software updates, PDF creators, media players, download managers, and so on. Therefore, whenever you decide to install free software, make sure that you do that as carefully as possible. To stay safe, you should always:
- Verify it the developer of a free app is reliable;
- Read EULA, Privacy Policy, and other accessible information;
- Avoid Express, Quick or Basic installation as these may hide 'optional downloads' and install them by default;
- Choose Custom or Advanced installation instead;
- Monitor the whole process that will allow you to spot and opt-out of unwanted additional downloads.
Remove Facemoods to avoid any suspicious ads
It is important to note that browser hijackers like Facemoods PUP do not pose direct harm to the PC's operating system. However, keeping such third-party toolbars is risky due to close collaboration with third parties and unverifiable content that they may expose you to.
Thus, if you have been hijacked by this potentially unwanted program, you should either employ a professional malware removal tool or perform the Facemoods removal manually.
If you want to remove Facemoods virus manually, you should follow the steps below. However, we recommend using a powerful antivirus program that will help eliminate all possible threats.
You may remove virus damage with a help of FortectIntego. SpyHunter 5Combo Cleaner and Malwarebytes are recommended to detect potentially unwanted programs and viruses with all their files and registry entries that are related to them.
Getting rid of Facemoods. Follow these steps
Uninstall from Windows
Instructions for Windows 10/8 machines:
- Enter Control Panel into Windows search box and hit Enter or click on the search result.
- Under Programs, select Uninstall a program.
- From the list, find the entry of the suspicious program.
- Right-click on the application and select Uninstall.
- If User Account Control shows up, click Yes.
- Wait till uninstallation process is complete and click OK.
If you are Windows 7/XP user, proceed with the following instructions:
- Click on Windows Start > Control Panel located on the right pane (if you are Windows XP user, click on Add/Remove Programs).
- In Control Panel, select Programs > Uninstall a program.
- Pick the unwanted application by clicking on it once.
- At the top, click Uninstall/Change.
- In the confirmation prompt, pick Yes.
- Click OK once the removal process is finished.
Delete from macOS
Remove items from Applications folder:
- From the menu bar, select Go > Applications.
- In the Applications folder, look for all related entries.
- Click on the app and drag it to Trash (or right-click and pick Move to Trash)
To fully remove an unwanted app, you need to access Application Support, LaunchAgents, and LaunchDaemons folders and delete relevant files:
- Select Go > Go to Folder.
- Enter /Library/Application Support and click Go or press Enter.
- In the Application Support folder, look for any dubious entries and then delete them.
- Now enter /Library/LaunchAgents and /Library/LaunchDaemons folders the same way and terminate all the related .plist files.
Remove from Microsoft Edge
Delete unwanted extensions from MS Edge:
- Select Menu (three horizontal dots at the top-right of the browser window) and pick Extensions.
- From the list, pick the extension and click on the Gear icon.
- Click on Uninstall at the bottom.
Clear cookies and other browser data:
- Click on the Menu (three horizontal dots at the top-right of the browser window) and select Privacy & security.
- Under Clear browsing data, pick Choose what to clear.
- Select everything (apart from passwords, although you might want to include Media licenses as well, if applicable) and click on Clear.
Restore new tab and homepage settings:
- Click the menu icon and choose Settings.
- Then find On startup section.
- Click Disable if you found any suspicious domain.
Reset MS Edge if the above steps did not work:
- Press on Ctrl + Shift + Esc to open Task Manager.
- Click on More details arrow at the bottom of the window.
- Select Details tab.
- Now scroll down and locate every entry with Microsoft Edge name in it. Right-click on each of them and select End Task to stop MS Edge from running.
If this solution failed to help you, you need to use an advanced Edge reset method. Note that you need to backup your data before proceeding.
- Find the following folder on your computer: C:\\Users\\%username%\\AppData\\Local\\Packages\\Microsoft.MicrosoftEdge_8wekyb3d8bbwe.
- Press Ctrl + A on your keyboard to select all folders.
- Right-click on them and pick Delete
- Now right-click on the Start button and pick Windows PowerShell (Admin).
- When the new window opens, copy and paste the following command, and then press Enter:
Get-AppXPackage -AllUsers -Name Microsoft.MicrosoftEdge | Foreach {Add-AppxPackage -DisableDevelopmentMode -Register “$($_.InstallLocation)\\AppXManifest.xml” -Verbose
Instructions for Chromium-based Edge
Delete extensions from MS Edge (Chromium):
- Open Edge and click select Settings > Extensions.
- Delete unwanted extensions by clicking Remove.
Clear cache and site data:
- Click on Menu and go to Settings.
- Select Privacy, search and services.
- Under Clear browsing data, pick Choose what to clear.
- Under Time range, pick All time.
- Select Clear now.
Reset Chromium-based MS Edge:
- Click on Menu and select Settings.
- On the left side, pick Reset settings.
- Select Restore settings to their default values.
- Confirm with Reset.
Remove from Mozilla Firefox (FF)
Remove dangerous extensions:
- Open Mozilla Firefox browser and click on the Menu (three horizontal lines at the top-right of the window).
- Select Add-ons.
- In here, select unwanted plugin and click Remove.
Reset the homepage:
- Click three horizontal lines at the top right corner to open the menu.
- Choose Options.
- Under Home options, enter your preferred site that will open every time you newly open the Mozilla Firefox.
Clear cookies and site data:
- Click Menu and pick Settings.
- Go to Privacy & Security section.
- Scroll down to locate Cookies and Site Data.
- Click on Clear Data…
- Select Cookies and Site Data, as well as Cached Web Content and press Clear.
Reset Mozilla Firefox
If clearing the browser as explained above did not help, reset Mozilla Firefox:
- Open Mozilla Firefox browser and click the Menu.
- Go to Help and then choose Troubleshooting Information.
- Under Give Firefox a tune up section, click on Refresh Firefox…
- Once the pop-up shows up, confirm the action by pressing on Refresh Firefox.
Remove from Google Chrome
Delete malicious extensions from Google Chrome:
- Open Google Chrome, click on the Menu (three vertical dots at the top-right corner) and select More tools > Extensions.
- In the newly opened window, you will see all the installed extensions. Uninstall all the suspicious plugins that might be related to the unwanted program by clicking Remove.
Clear cache and web data from Chrome:
- Click on Menu and pick Settings.
- Under Privacy and security, select Clear browsing data.
- Select Browsing history, Cookies and other site data, as well as Cached images and files.
- Click Clear data.
Change your homepage:
- Click menu and choose Settings.
- Look for a suspicious site in the On startup section.
- Click on Open a specific or set of pages and click on three dots to find the Remove option.
Reset Google Chrome:
If the previous methods did not help you, reset Google Chrome to eliminate all the unwanted components:
- Click on Menu and select Settings.
- In the Settings, scroll down and click Advanced.
- Scroll down and locate Reset and clean up section.
- Now click Restore settings to their original defaults.
- Confirm with Reset settings.
Delete from Safari
Remove unwanted extensions from Safari:
- Click Safari > Preferences…
- In the new window, pick Extensions.
- Select the unwanted extension and select Uninstall.
Clear cookies and other website data from Safari:
- Click Safari > Clear History…
- From the drop-down menu under Clear, pick all history.
- Confirm with Clear History.
Reset Safari if the above-mentioned steps did not help you:
- Click Safari > Preferences…
- Go to Advanced tab.
- Tick the Show Develop menu in menu bar.
- From the menu bar, click Develop, and then select Empty Caches.
After uninstalling this potentially unwanted program (PUP) and fixing each of your web browsers, we recommend you to scan your PC system with a reputable anti-spyware. This will help you to get rid of Facemoods registry traces and will also identify related parasites or possible malware infections on your computer. For that you can use our top-rated malware remover: FortectIntego, SpyHunter 5Combo Cleaner or Malwarebytes.
How to prevent from getting browser hijacker
Stream videos without limitations, no matter where you are
There are multiple parties that could find out almost anything about you by checking your online activity. While this is highly unlikely, advertisers and tech companies are constantly tracking you online. The first step to privacy should be a secure browser that focuses on tracker reduction to a minimum.
Even if you employ a secure browser, you will not be able to access websites that are restricted due to local government laws or other reasons. In other words, you may not be able to stream Disney+ or US-based Netflix in some countries. To bypass these restrictions, you can employ a powerful Private Internet Access VPN, which provides dedicated servers for torrenting and streaming, not slowing you down in the process.
Data backups are important – recover your lost files
Ransomware is one of the biggest threats to personal data. Once it is executed on a machine, it launches a sophisticated encryption algorithm that locks all your files, although it does not destroy them. The most common misconception is that anti-malware software can return files to their previous states. This is not true, however, and data remains locked after the malicious payload is deleted.
While regular data backups are the only secure method to recover your files after a ransomware attack, tools such as Data Recovery Pro can also be effective and restore at least some of your lost data.