Solved Browser adaware injections

Hadden

Hadden

Level 2
Thread author
Verified
Oct 18, 2015
97
115
66
37
Italy
I didn't save the adw log, however I removed all the things, as Iminent (still there o.o) and infected chrome extensions/mozilla profile it found. (I'll redo soon). However, I use another chrome based browser, vivaldi, and I don't know if it's covered in adwclean scans.

MBAM found an "alarming" number of things (all removed):

backdoor.ircbot

pup.optional.
adoffer
amonetize
browsefox
bundleinstaller
bundler
installcore
installmonster
loadmoney
opencandy
privoxy
somoto
steamclient
winmanger

trojan.agent
trojan.downloader
trojan.proxyhijacker

Not detected, but I have, it's addonjet which hijack google searches.
 
Please download Zemana AntiMalware and save it to your Desktop.
  • Install the program and once the installation is complete it will start automatically.
  • Without changing any options, press Scan to begin.
  • After the short scan is finished, if threats are detected press Next to remove them.
Note: If restart is required to finish the cleaning process, you should click Reboot. If reboot isn't required, please restart your computer manually.
  • Open Zemana AntiMalware again.
  • Click on
    4zu6vb.jpg
    icon and double click the latest report.
  • Now click File > Save As and choose your Desktop before pressing Save.
  • The only left thing is to attach saved report in your next message.
 
Really better.
Addonjet hijacking result seem disappered.
Still open some ads in the tab (usually blocked by adblock/scriptblocker).
I clean some data browser to see if something wrong is still there.
 
Addonjet only partially gone away. On google search is not present, on google image searches - is still there.
 
Ok, changed scriptblocker to umatrix. Seen and blocked icaplat.com request that I didn't. For now, I don't see addonjet anymore. Also unwanted amazon ads in tabs seems to be blocked.
And I revert my hosts file to stock (I had a MVPS host file taken by their site).
 
Also blocked some other malicious sites both in ublock and umatrix:
dcbap.com
indelibleappointing.com
spiessummarising.com

However, everything works well now :)
 

You may also like...