Jump to content

Malware in Chrome Mac not getting detected by Malwarebytes


Recommended Posts

Hi,

 

I have been facing a lot of redirecting problems on my google chrome for Mac OS X El Captain 10.11.2 on an iMac. 

1. If I type to search any parameter in the omnibox with google, no redirection occurs and google search results appear normally

2. If I click on any of the link in the search results, the website first opens and then gets redirected

3. If I visit a particular website by entering the URL in the omnibox, the website opens and then gets redirected.

4. However if I click on "Stop/X" before the entire page loads, it does not get redirected and browsing on the website normally works just fine, with other links on the page opening without any redirection

5. Sites such as those for flights etc, open a new tab with some russian porn sites etc.

 

In most cases the redirection first goes to: hxxps://repmbuycurl.com/v/c8480152-a938-11e5-93e6-01506583babe/c/77da5c6f-980d-11e5-b565-02f6361de079/?i=1&s=af5399fa-a86a-11e5-833a-1150407b5816&r=repmbuycurl.com&rcid=5FRy4hbTzbu_HJvp86sJ-Qc_i7PGKJpj_fKatOmC1t9xKwSV4XNWsDJ0FB7F8PiWhfube7DAgkI&d=1|0|-330|0|1|1|||2560x1440|74-d8cbb4b0|1|0|10

 

Followed by hxxp://topoffers.click/r/d3f6ec66-a938-11e5-a707-115062c5523a/1/

 

and finally lands on facebook.com with my profile page opening up

 

I have done the following

1. Installed malwarebytes, run a scan - it did show some malware, which was cleaned and the iMac was restarted

2. Chrome browser settings were reset (after resetting for that period the browser worked just fine, however next day it was back)

3. Malwarebytes shows there is NO more malware

4. I deleted chrome and all the .plist and other entries from my library, and reinstalled chrome but the same matter exists

5. Safari is not affected by the same and I can browse normally on safari

6. I isolated the router and firewall to check if they have an internal problem, and used another internet connection, however the problem is still there

7. It occurs with authentic websites such as mailchimp etc.

8. Even ran an antivirus scan with avast but the results were all negative.

9. Please note all extensions have been removed as well.

 

Please advise how can I solve this problem?

 

(Edited by moderator to break the links.)

Link to post
Share on other sites

  • Staff

Can you post a system snapshot taken with Malwarebytes Anti-Malware for Mac? To do so, open Malwarebytes Anti-Malware for Mac and choose Take System Snapshot from the Scanner menu. Then, in the window that opens, select all the text (Edit → Select All), copy it and paste into a reply to this message.

Link to post
Share on other sites

Hi Thomas,


 


Here goes:


 


Malwarebytes Anti-Malware 1.1.3.72 system report - 24 December 2015 at 10:05:17 AM IST


Mac OS X version Version 10.11.2 (Build 15C50)


System uptime: 0d 00:04:39


 


Safari extensions


---------------


(


    "Name: Open in Internet Explorer",


    "Modified: 2015-12-07 13:18:16 +0000",


    "/Users/karannagpal/Library/Safari/Extensions/OpenIE.safariextz"


)


 


Chrome extensions


---------------


(


    "Name: Google Slides",


    "Modified: 2015-12-22 05:12:10 +0000",


    "/Users/karannagpal/Library/Application Support/Google/Chrome/Default/Extensions/aapocclcgogkmnckokdopfmhonfmgoek",


    "Name: Google Sheets",


    "Modified: 2015-12-22 05:12:07 +0000",


    "/Users/karannagpal/Library/Application Support/Google/Chrome/Default/Extensions/felcaaldnbdncclmgdcncolpebgiejap",


    "Name: Google Docs Offline",


    "Modified: 2015-12-23 04:25:14 +0000",


    "/Users/karannagpal/Library/Application Support/Google/Chrome/Default/Extensions/ghbmnnjooekpmoecnnnilnnbdlolhkhi"


)


 


Firefox extensions


---------------


(


)


 


Login items


---------------


(


    iTunesHelper,


    "Google Chrome"


)


 


System startup items


---------------


(


)


 


User launch agents


---------------


(


    "/Users/karannagpal/Library/LaunchAgents/.DS_Store",


    "/Users/karannagpal/Library/LaunchAgents/com.adobe.AAM.Updater-1.0.plist",


    "/Users/karannagpal/Library/LaunchAgents/com.adobe.ARM.202f4087f2bbde52e3ac2df389f53a4f123223c9cc56a8fd83a6f7ae.plist",


    "/Users/karannagpal/Library/LaunchAgents/com.bittorrent.BitTorrent.plist",


    "/Users/karannagpal/Library/LaunchAgents/com.google.keystone.agent.plist"


)


 


System launch agents


---------------


(


    "/Library/LaunchAgents/com.adobe.AAM.Updater-1.0.plist",


    "/Library/LaunchAgents/com.adobe.CS5ServiceManager.plist",


    "/Library/LaunchAgents/com.teamviewer.teamviewer.plist",


    "/Library/LaunchAgents/com.teamviewer.teamviewer_desktop.plist"


)


 


System launch daemons


---------------


(


    "/Library/LaunchDaemons/com.adobe.SwitchBoard.plist",


    "/Library/LaunchDaemons/com.malwarebytes.MBAMHelperTool.plist",


    "/Library/LaunchDaemons/com.microsoft.office.licensing.helper.plist",


    "/Library/LaunchDaemons/com.teamviewer.Helper.plist",


    "/Library/LaunchDaemons/com.teamviewer.teamviewer_service.plist"


)


 


Kernel extensions


---------------


(


    "/System/Library/Extensions/acfs.kext",


    "/System/Library/Extensions/acfsctl.kext",


    "/System/Library/Extensions/ALF.kext",


    "/System/Library/Extensions/AMD2400Controller.kext",


    "/System/Library/Extensions/AMD2600Controller.kext",


    "/System/Library/Extensions/AMD3800Controller.kext",


    "/System/Library/Extensions/AMD4600Controller.kext",


    "/System/Library/Extensions/AMD4800Controller.kext",


    "/System/Library/Extensions/AMD5000Controller.kext",


    "/System/Library/Extensions/AMD6000Controller.kext",


    "/System/Library/Extensions/AMD7000Controller.kext",


    "/System/Library/Extensions/AMD8000Controller.kext",


    "/System/Library/Extensions/AMD9000Controller.kext",


    "/System/Library/Extensions/AMDFramebuffer.kext",


    "/System/Library/Extensions/AMDRadeonX3000.kext",


    "/System/Library/Extensions/AMDRadeonX4000.kext",


    "/System/Library/Extensions/AMDSupport.kext",


    "/System/Library/Extensions/Apple16X50Serial.kext",


    "/System/Library/Extensions/Apple16X50Serial.kext/Contents/PlugIns/Apple16X50ACPI.kext",


    "/System/Library/Extensions/Apple_iSight.kext",


    "/System/Library/Extensions/AppleACPIPlatform.kext",


    "/System/Library/Extensions/AppleACPIPlatform.kext/Contents/PlugIns/AppleACPIButtons.kext",


    "/System/Library/Extensions/AppleACPIPlatform.kext/Contents/PlugIns/AppleACPIEC.kext",


    "/System/Library/Extensions/AppleAHCIPort.kext",


    "/System/Library/Extensions/AppleAPIC.kext",


    "/System/Library/Extensions/AppleBacklight.kext",


    "/System/Library/Extensions/AppleBacklightExpert.kext",


    "/System/Library/Extensions/AppleBluetoothMultitouch.kext",


    "/System/Library/Extensions/AppleBluetoothRemote.kext",


    "/System/Library/Extensions/AppleBMC.kext",


    "/System/Library/Extensions/AppleCameraInterface.kext",


    "/System/Library/Extensions/AppleCredentialManager.kext",


    "/System/Library/Extensions/AppleEFIRuntime.kext",


    "/System/Library/Extensions/AppleEFIRuntime.kext/Contents/PlugIns/AppleEFINVRAM.kext",


    "/System/Library/Extensions/AppleFDEKeyStore.kext",


    "/System/Library/Extensions/AppleFileSystemDriver.kext",


    "/System/Library/Extensions/AppleFIVRDriver.kext",


    "/System/Library/Extensions/AppleFSCompressionTypeDataless.kext",


    "/System/Library/Extensions/AppleFSCompressionTypeZlib.kext",


    "/System/Library/Extensions/AppleFWAudio.kext",


    "/System/Library/Extensions/AppleGraphicsControl.kext",


    "/System/Library/Extensions/AppleGraphicsControl.kext/Contents/PlugIns/AppleGraphicsDeviceControl.kext",


    "/System/Library/Extensions/AppleGraphicsControl.kext/Contents/PlugIns/AppleGraphicsDevicePolicy.kext",


    "/System/Library/Extensions/AppleGraphicsControl.kext/Contents/PlugIns/AppleMGPUPowerControl.kext",


    "/System/Library/Extensions/AppleGraphicsControl.kext/Contents/PlugIns/AppleMuxControl.kext",


    "/System/Library/Extensions/AppleGraphicsControl.kext/Contents/PlugIns/ApplePolicyControl.kext",


    "/System/Library/Extensions/AppleGraphicsPowerManagement.kext",


    "/System/Library/Extensions/AppleHDA.kext",


    "/System/Library/Extensions/AppleHDA.kext/Contents/PlugIns/AppleHDAController.kext",


    "/System/Library/Extensions/AppleHDA.kext/Contents/PlugIns/AppleHDAHardwareConfigDriver.kext",


    "/System/Library/Extensions/AppleHDA.kext/Contents/PlugIns/AppleMikeyDriver.kext",


    "/System/Library/Extensions/AppleHDA.kext/Contents/PlugIns/DspFuncLib.kext",


    "/System/Library/Extensions/AppleHDA.kext/Contents/PlugIns/IOHDAFamily.kext",


    "/System/Library/Extensions/AppleHIDKeyboard.kext",


    "/System/Library/Extensions/AppleHIDKeyboard.kext/Contents/PlugIns/AppleBluetoothHIDKeyboard.kext",


    "/System/Library/Extensions/AppleHIDMouse.kext",


    "/System/Library/Extensions/AppleHIDMouse.kext/Contents/PlugIns/AppleBluetoothHIDMouse.kext",


    "/System/Library/Extensions/AppleHIDMouse.kext/Contents/PlugIns/AppleUSBHIDMouse.kext",


    "/System/Library/Extensions/AppleHIDTransport.kext",


    "/System/Library/Extensions/AppleHPET.kext",


    "/System/Library/Extensions/AppleHPM.kext",


    "/System/Library/Extensions/AppleHSSPIHIDDriver.kext",


    "/System/Library/Extensions/AppleHSSPISupport.kext",


    "/System/Library/Extensions/AppleHV.kext",


    "/System/Library/Extensions/AppleHWSensor.kext",


    "/System/Library/Extensions/AppleInputDeviceSupport.kext",


    "/System/Library/Extensions/AppleIntelBDWGraphics.kext",


    "/System/Library/Extensions/AppleIntelBDWGraphicsFramebuffer.kext",


    "/System/Library/Extensions/AppleIntelCPUPowerManagement.kext",


    "/System/Library/Extensions/AppleIntelCPUPowerManagementClient.kext",


    "/System/Library/Extensions/AppleIntelFramebufferAzul.kext",


    "/System/Library/Extensions/AppleIntelFramebufferCapri.kext",


    "/System/Library/Extensions/AppleIntelHD3000Graphics.kext",


    "/System/Library/Extensions/AppleIntelHD4000Graphics.kext",


    "/System/Library/Extensions/AppleIntelHD5000Graphics.kext",


    "/System/Library/Extensions/AppleIntelHDGraphics.kext",


    "/System/Library/Extensions/AppleIntelHDGraphicsFB.kext",


    "/System/Library/Extensions/AppleIntelLpssDmac.kext",


    "/System/Library/Extensions/AppleIntelLpssGspi.kext",


    "/System/Library/Extensions/AppleIntelLpssI2C.kext",


    "/System/Library/Extensions/AppleIntelLpssI2CController.kext",


    "/System/Library/Extensions/AppleIntelLpssSpiController.kext",


    "/System/Library/Extensions/AppleIntelLpssUART.kext",


    "/System/Library/Extensions/AppleIntelMCEReporter.kext",


    "/System/Library/Extensions/AppleIntelPCHPMC.kext",


    "/System/Library/Extensions/AppleIntelSKLGraphics.kext",


    "/System/Library/Extensions/AppleIntelSKLGraphicsFramebuffer.kext",


    "/System/Library/Extensions/AppleIntelSlowAdaptiveClocking.kext",


    "/System/Library/Extensions/AppleIntelSNBGraphicsFB.kext",


    "/System/Library/Extensions/AppleIRController.kext",


    "/System/Library/Extensions/AppleKextExcludeList.kext",


    "/System/Library/Extensions/AppleKeyStore.kext",


    "/System/Library/Extensions/AppleKeyswitch.kext",


    "/System/Library/Extensions/AppleLPC.kext",


    "/System/Library/Extensions/AppleLSIFusionMPT.kext",


    "/System/Library/Extensions/AppleMatch.kext",


    "/System/Library/Extensions/AppleMCCSControl.kext",


    "/System/Library/Extensions/AppleMCP89RootPortPM.kext",


    "/System/Library/Extensions/AppleMikeyHIDDriver.kext",


    "/System/Library/Extensions/AppleMobileDevice.kext",


    "/System/Library/Extensions/AppleMobileFileIntegrity.kext",


    "/System/Library/Extensions/AppleMultitouchDriver.kext",


    "/System/Library/Extensions/AppleOSXUSBNCM.kext",


    "/System/Library/Extensions/AppleOSXWatchdog.kext",


    "/System/Library/Extensions/ApplePlatformEnabler.kext",


    "/System/Library/Extensions/AppleRAID.kext",


    "/System/Library/Extensions/AppleRAIDCard.kext",


    "/System/Library/Extensions/AppleRTC.kext",


    "/System/Library/Extensions/AppleSDXC.kext",


    "/System/Library/Extensions/AppleSEP.kext",


    "/System/Library/Extensions/AppleSmartBatteryManager.kext",


    "/System/Library/Extensions/AppleSMBIOS.kext",


    "/System/Library/Extensions/AppleSMBusController.kext",


    "/System/Library/Extensions/AppleSMBusPCI.kext",


    "/System/Library/Extensions/AppleSMC.kext",


    "/System/Library/Extensions/AppleSMCLMU.kext",


    "/System/Library/Extensions/AppleSRP.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleATAPIStorage.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleFireWireStorage.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleHollywood.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleMemorexCDROMDriver.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleUSBCardReader.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleUSBODD.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleUSBStorageCoexistentDriver.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleUSBTDM.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/AppleXserveRAID.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/CanonEOS1D.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/FireWireStorageDeviceSpecifics.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/FWPreferredProtocolSpeed.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/initioFWBridge.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/IOFireWireSerialBusProtocolSansPhysicalUnit.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/LSI-FW-500.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/MaxTranserSizeOverrideDriver.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/MKE-LF-D211A.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/MKE-SR-8171.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/OxfordSemiconductor.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/PioneerSuperDrive.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/PlasmonUDO.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/QPSQueFire.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/SanyoIDShot.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/SonyXDCAMDriver.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/StorageLynx.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/UFIWriteProtectedMediaDriver.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/USBStorageDeviceSpecifics.kext",


    "/System/Library/Extensions/AppleStorageDrivers.kext/Contents/PlugIns/WriteProtectedMediaDriver.kext",


    "/System/Library/Extensions/AppleThunderboltDPAdapters.kext",


    "/System/Library/Extensions/AppleThunderboltDPAdapters.kext/Contents/PlugIns/AppleThunderboltDPAdapterFamily.kext",


    "/System/Library/Extensions/AppleThunderboltDPAdapters.kext/Contents/PlugIns/AppleThunderboltDPInAdapter.kext",


    "/System/Library/Extensions/AppleThunderboltDPAdapters.kext/Contents/PlugIns/AppleThunderboltDPOutAdapter.kext",


    "/System/Library/Extensions/AppleThunderboltEDMService.kext",


    "/System/Library/Extensions/AppleThunderboltEDMService.kext/Contents/PlugIns/AppleThunderboltEDMSink.kext",


    "/System/Library/Extensions/AppleThunderboltEDMService.kext/Contents/PlugIns/AppleThunderboltEDMSource.kext",


    "/System/Library/Extensions/AppleThunderboltIP.kext",


    "/System/Library/Extensions/AppleThunderboltNHI.kext",


    "/System/Library/Extensions/AppleThunderboltPCIAdapters.kext",


    "/System/Library/Extensions/AppleThunderboltPCIAdapters.kext/Contents/PlugIns/AppleThunderboltPCIDownAdapter.kext",


    "/System/Library/Extensions/AppleThunderboltPCIAdapters.kext/Contents/PlugIns/AppleThunderboltPCIUpAdapter.kext",


    "/System/Library/Extensions/AppleThunderboltUTDM.kext",


    "/System/Library/Extensions/AppleTopCase.kext",


    "/System/Library/Extensions/AppleTopCase.kext/Contents/PlugIns/AppleHSBluetoothDriver.kext",


    "/System/Library/Extensions/AppleTopCase.kext/Contents/PlugIns/AppleTopCaseActuatorHIDDriver.kext",


    "/System/Library/Extensions/AppleTopCase.kext/Contents/PlugIns/AppleTopCaseHIDEventDriver.kext",


    "/System/Library/Extensions/AppleTopCase.kext/Contents/PlugIns/AppleUSBTopCaseDriver.kext",


    "/System/Library/Extensions/AppleTyMCEDriver.kext",


    "/System/Library/Extensions/AppleUpstreamUserClient.kext",


    "/System/Library/Extensions/AppleUSBACM.kext",


    "/System/Library/Extensions/AppleUSBAudio.kext",


    "/System/Library/Extensions/AppleUSBCDC.kext",


    "/System/Library/Extensions/AppleUSBDisplays.kext",


    "/System/Library/Extensions/AppleUSBDMM.kext",


    "/System/Library/Extensions/AppleUSBECM.kext",


    "/System/Library/Extensions/AppleUSBEEM.kext",


    "/System/Library/Extensions/AppleUSBEthernet.kext",


    "/System/Library/Extensions/AppleUSBEthernetHost.kext",


    "/System/Library/Extensions/AppleUSBFTDI.kext",


    "/System/Library/Extensions/AppleUSBMultitouch.kext",


    "/System/Library/Extensions/AppleUSBNCM.kext",


    "/System/Library/Extensions/AppleUSBNetworking.kext",


    "/System/Library/Extensions/AppleUSBTopCase.kext",


    "/System/Library/Extensions/AppleUSBTopCase.kext/Contents/PlugIns/AppleUSBTCButtons.kext",


    "/System/Library/Extensions/AppleUSBTopCase.kext/Contents/PlugIns/AppleUSBTCKeyboard.kext",


    "/System/Library/Extensions/AppleUSBTopCase.kext/Contents/PlugIns/AppleUSBTCKeyEventDriver.kext",


    "/System/Library/Extensions/AppleUSBTopCase.kext/Contents/PlugIns/AppleUSBTrackpad.kext",


    "/System/Library/Extensions/AppleUSBWCM.kext",


    "/System/Library/Extensions/AppleWWANAutoEject.kext",


    "/System/Library/Extensions/AppleXsanScheme.kext",


    "/System/Library/Extensions/ATIRadeonX2000.kext",


    "/System/Library/Extensions/AudioAUUC.kext",


    "/System/Library/Extensions/autofs.kext",


    "/System/Library/Extensions/BootCache.kext",


    "/System/Library/Extensions/cd9660.kext",


    "/System/Library/Extensions/cddafs.kext",


    "/System/Library/Extensions/CellPhoneHelper.kext",


    "/System/Library/Extensions/corecapture.kext",


    "/System/Library/Extensions/CoreCaptureResponder.kext",


    "/System/Library/Extensions/corecrypto.kext",


    "/System/Library/Extensions/CoreStorage.kext",


    "/System/Library/Extensions/CoreStorage.kext/Contents/PlugIns/CoreStorageFsck.kext",


    "/System/Library/Extensions/Dont Steal Mac OS X.kext",


    "/System/Library/Extensions/exfat.kext",


    "/System/Library/Extensions/GeForce.kext",


    "/System/Library/Extensions/GeForceTesla.kext",


    "/System/Library/Extensions/IO80211Family.kext",


    "/System/Library/Extensions/IO80211Family.kext/Contents/PlugIns/AirPortAtheros40.kext",


    "/System/Library/Extensions/IO80211Family.kext/Contents/PlugIns/AirPortBrcm4331.kext",


    "/System/Library/Extensions/IO80211Family.kext/Contents/PlugIns/AirPortBrcm4360.kext",


    "/System/Library/Extensions/IO80211Family.kext/Contents/PlugIns/AppleAirPortBrcm43224.kext",


    "/System/Library/Extensions/IO80211Family.kext/Contents/PlugIns/IO80211NetBooter.kext",


    "/System/Library/Extensions/IOAcceleratorFamily.kext",


    "/System/Library/Extensions/IOAcceleratorFamily2.kext",


    "/System/Library/Extensions/IOACPIFamily.kext",


    "/System/Library/Extensions/IOAHCIFamily.kext",


    "/System/Library/Extensions/IOAHCIFamily.kext/Contents/PlugIns/IOAHCIBlockStorage.kext",


    "/System/Library/Extensions/IOAHCIFamily.kext/Contents/PlugIns/IOAHCISerialATAPI.kext",


    "/System/Library/Extensions/IOATAFamily.kext",


    "/System/Library/Extensions/IOATAFamily.kext/Contents/PlugIns/AppleIntelPIIXATA.kext",


    "/System/Library/Extensions/IOATAFamily.kext/Contents/PlugIns/IOATABlockStorage.kext",


    "/System/Library/Extensions/IOATAFamily.kext/Contents/PlugIns/IOATAPIProtocolTransport.kext",


    "/System/Library/Extensions/IOAudioFamily.kext",


    "/System/Library/Extensions/IOAVBFamily.kext",


    "/System/Library/Extensions/IOAVBFamily.kext/Contents/PlugIns/IOAVBDiscoveryPlugin.kext",


    "/System/Library/Extensions/IOAVBFamily.kext/Contents/PlugIns/IOAVBPlugin.kext",


    "/System/Library/Extensions/IOAVBFamily.kext/Contents/PlugIns/IOMRPPlugin.kext",


    "/System/Library/Extensions/IOBDStorageFamily.kext",


    "/System/Library/Extensions/IOBluetoothFamily.kext",


    "/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/BroadcomBluetoothHostControllerUSBTransport.kext",


    "/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/CSRBluetoothHostControllerUSBTransport.kext",


    "/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/CSRHIDTransitionDriver.kext",


    "/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/IOBluetoothHostControllerUARTTransport.kext",


    "/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/IOBluetoothHostControllerUSBTransport.kext",


    "/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/IOBluetoothSerialManager.kext",


    "/System/Library/Extensions/IOBluetoothFamily.kext/Contents/PlugIns/IOBluetoothUSBDFU.kext",


    "/System/Library/Extensions/IOBluetoothHIDDriver.kext",


    "/System/Library/Extensions/IOCDStorageFamily.kext",


    "/System/Library/Extensions/IODVDStorageFamily.kext",


    "/System/Library/Extensions/IOFireWireAVC.kext",


    "/System/Library/Extensions/IOFireWireFamily.kext",


    "/System/Library/Extensions/IOFireWireFamily.kext/Contents/PlugIns/AppleFWOHCI.kext",


    "/System/Library/Extensions/IOFireWireIP.kext",


    "/System/Library/Extensions/IOFireWireIP.kext/Contents/PlugIns/IOFireWireIPPrivate.kext",


    "/System/Library/Extensions/IOFireWireSBP2.kext",


    "/System/Library/Extensions/IOFireWireSerialBusProtocolTransport.kext",


    "/System/Library/Extensions/IOGraphicsFamily.kext",


    "/System/Library/Extensions/IOHDIXController.kext",


    "/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskImagesCryptoEncoding.kext",


    "/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskImagesFileBackingStore.kext",


    "/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskImagesHTTPBackingStore.kext",


    "/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskImagesKernelBacked.kext",


    "/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskImagesPartitionBackingStore.kext",


    "/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskImagesRAMBackingStore.kext",


    "/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskImagesReadWriteDiskImage.kext",


    "/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskImagesSparseDiskImage.kext",


    "/System/Library/Extensions/IOHDIXController.kext/Contents/PlugIns/AppleDiskImagesUDIFDiskImage.kext",


    "/System/Library/Extensions/IOHIDFamily.kext",


    "/System/Library/Extensions/IOHIDFamily.kext/Contents/PlugIns/IOHIDEventDriver.kext",


    "/System/Library/Extensions/IOHIDFamily.kext/Contents/PlugIns/IOHIDEventDriverSafeBoot.kext",


    "/System/Library/Extensions/IOHIDFamily.kext/Contents/PlugIns/IOHIDSystem.kext",


    "/System/Library/Extensions/IOHIDFamily.kext/Contents/PlugIns/IOHIDUserClient.kext",


    "/System/Library/Extensions/IONDRVSupport.kext",


    "/System/Library/Extensions/IONetworkingFamily.kext",


    "/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/AppleBCM5701Ethernet.kext",


    "/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/AppleIntel8254XEthernet.kext",


    "/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/AppleIntelI210Ethernet.kext",


    "/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/AppleVmxnet3Ethernet.kext",


    "/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/AppleYukon2.kext",


    "/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/Intel82574L.kext",


    "/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/IOEthernetAVBController.kext",


    "/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/mDNSOffloadUserClient.kext",


    "/System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/nvenet.kext",


    "/System/Library/Extensions/IONVMeFamily.kext",


    "/System/Library/Extensions/IOPCIFamily.kext",


    "/System/Library/Extensions/IOPlatformPluginFamily.kext",


    "/System/Library/Extensions/IOPlatformPluginFamily.kext/Contents/PlugIns/ACPI_SMC_PlatformPlugin.kext",


    "/System/Library/Extensions/IOPlatformPluginFamily.kext/Contents/PlugIns/AppleSMCPDRC.kext",


    "/System/Library/Extensions/IOPlatformPluginFamily.kext/Contents/PlugIns/IOPlatformPluginLegacy.kext",


    "/System/Library/Extensions/IOPlatformPluginFamily.kext/Contents/PlugIns/X86PlatformPlugin.kext",


    "/System/Library/Extensions/IOPlatformPluginFamily.kext/Contents/PlugIns/X86PlatformShim.kext",


    "/System/Library/Extensions/IOReportFamily.kext",


    "/System/Library/Extensions/IOSCSIArchitectureModelFamily.kext",


    "/System/Library/Extensions/IOSCSIArchitectureModelFamily.kext/Contents/PlugIns/IOSCSIBlockCommandsDevice.kext",


    "/System/Library/Extensions/IOSCSIArchitectureModelFamily.kext/Contents/PlugIns/IOSCSIMultimediaCommandsDevice.kext",


    "/System/Library/Extensions/IOSCSIArchitectureModelFamily.kext/Contents/PlugIns/IOSCSIReducedBlockCommandsDevice.kext",


    "/System/Library/Extensions/IOSCSIArchitectureModelFamily.kext/Contents/PlugIns/SCSITaskUserClient.kext",


    "/System/Library/Extensions/IOSCSIParallelFamily.kext",


    "/System/Library/Extensions/IOSerialFamily.kext",


    "/System/Library/Extensions/IOSerialFamily.kext/Contents/PlugIns/AppleUSBIrDA.kext",


    "/System/Library/Extensions/IOSerialFamily.kext/Contents/PlugIns/AppleWWANSupport.kext",


    "/System/Library/Extensions/IOSerialFamily.kext/Contents/PlugIns/AppleWWANSupport1.kext",


    "/System/Library/Extensions/IOSerialFamily.kext/Contents/PlugIns/AppleWWANSupport2.kext",


    "/System/Library/Extensions/IOSlowAdaptiveClockingFamily.kext",


    "/System/Library/Extensions/IOSMBusFamily.kext",


    "/System/Library/Extensions/IOStorageFamily.kext",


    "/System/Library/Extensions/IOStreamFamily.kext",


    "/System/Library/Extensions/IOStreamFamily.kext/Contents/PlugIns/IOStreamUserClient.kext",


    "/System/Library/Extensions/IOSurface.kext",


    "/System/Library/Extensions/IOThunderboltFamily.kext",


    "/System/Library/Extensions/IOTimeSyncFamily.kext",


    "/System/Library/Extensions/IOTimeSyncFamily.kext/Contents/PlugIns/IO8021ASPlugin.kext",


    "/System/Library/Extensions/IOUSBAttachedSCSI.kext",


    "/System/Library/Extensions/IOUSBFamily.kext",


    "/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBLegacyHub.kext",


    "/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBMergeNub.kext",


    "/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/AppleUSBVideoSupport.kext",


    "/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/IOUSBCompositeDriver.kext",


    "/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/IOUSBHIDDriver.kext",


    "/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/IOUSBHIDDriverPM.kext",


    "/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/IOUSBHIDDriverSafeBoot.kext",


    "/System/Library/Extensions/IOUSBFamily.kext/Contents/PlugIns/IOUSBUserClient.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/AppleUSBEHCI.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/AppleUSBEHCIPCI.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/AppleUSBHostCompositeDevice.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/AppleUSBHostMergeProperties.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/AppleUSBHub.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/AppleUSBOHCI.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/AppleUSBOHCIPCI.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/AppleUSBOpticalMouse.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/AppleUSBUHCI.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/AppleUSBUHCIPCI.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/AppleUSBXHCI.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/AppleUSBXHCIPCI.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/IOUSBHostHIDDevice.kext",


    "/System/Library/Extensions/IOUSBHostFamily.kext/Contents/PlugIns/IOUSBHostHIDDeviceSafeBoot.kext",


    "/System/Library/Extensions/IOUSBMassStorageClass.kext",


    "/System/Library/Extensions/IOUSBMassStorageDriver.kext",


    "/System/Library/Extensions/IOUserEthernet.kext",


    "/System/Library/Extensions/IOVideoFamily.kext",


    "/System/Library/Extensions/IOVideoFamily.kext/Contents/PlugIns/IOVideoDeviceUserClient.kext",


    "/System/Library/Extensions/iPodDriver.kext",


    "/System/Library/Extensions/iPodDriver.kext/Contents/PlugIns/iPodSBCDriver.kext",


    "/System/Library/Extensions/JMicronATA.kext",


    "/System/Library/Extensions/L2TP.ppp/Contents/PlugIns/L2TP.kext",


    "/System/Library/Extensions/Libm.kext",


    "/System/Library/Extensions/mcxalr.kext",


    "/System/Library/Extensions/msdosfs.kext",


    "/System/Library/Extensions/ntfs.kext",


    "/System/Library/Extensions/NVDAGF100Hal.kext",


    "/System/Library/Extensions/NVDAGK100Hal.kext",


    "/System/Library/Extensions/NVDANV50HalTesla.kext",


    "/System/Library/Extensions/NVDAResman.kext",


    "/System/Library/Extensions/NVDAResmanTesla.kext",


    "/System/Library/Extensions/NVDAStartup.kext",


    "/System/Library/Extensions/NVSMU.kext",


    "/System/Library/Extensions/OSvKernDSPLib.kext",


    "/System/Library/Extensions/pmtelemetry.kext",


    "/System/Library/Extensions/PPP.kext",


    "/System/Library/Extensions/PPPoE.ppp/Contents/PlugIns/PPPoE.kext",


    "/System/Library/Extensions/PPTP.ppp/Contents/PlugIns/PPTP.kext",


    "/System/Library/Extensions/pthread.kext",


    "/System/Library/Extensions/Quarantine.kext",


    "/System/Library/Extensions/Sandbox.kext",


    "/System/Library/Extensions/smbfs.kext",


    "/System/Library/Extensions/SMCMotionSensor.kext",


    "/System/Library/Extensions/System.kext",


    "/System/Library/Extensions/System.kext/PlugIns/AppleNMI.kext",


    "/System/Library/Extensions/System.kext/PlugIns/ApplePlatformFamily.kext",


    "/System/Library/Extensions/System.kext/PlugIns/BSDKernel.kext",


    "/System/Library/Extensions/System.kext/PlugIns/IOKit.kext",


    "/System/Library/Extensions/System.kext/PlugIns/IONVRAMFamily.kext",


    "/System/Library/Extensions/System.kext/PlugIns/IOSystemManagement.kext",


    "/System/Library/Extensions/System.kext/PlugIns/Libkern.kext",


    "/System/Library/Extensions/System.kext/PlugIns/MACFramework.kext",


    "/System/Library/Extensions/System.kext/PlugIns/Mach.kext",


    "/System/Library/Extensions/System.kext/PlugIns/Private.kext",


    "/System/Library/Extensions/System.kext/PlugIns/Unsupported.kext",


    "/System/Library/Extensions/TMSafetyNet.kext",


    "/System/Library/Extensions/triggers.kext",


    "/System/Library/Extensions/udf.kext",


    "/System/Library/Extensions/vecLib.kext",


    "/System/Library/Extensions/webcontentfilter.kext",


    "/System/Library/Extensions/webdav_fs.kext",


    "/Library/Extensions/ACS6x.kext",


    "/Library/Extensions/ArcMSR.kext",


    "/Library/Extensions/ATTOCelerityFC8.kext",


    "/Library/Extensions/ATTOExpressSASHBA2.kext",


    "/Library/Extensions/ATTOExpressSASRAID2.kext",


    "/Library/Extensions/CalDigitHDProDrv.kext",


    "/Library/Extensions/HighPointIOP.kext",


    "/Library/Extensions/HighPointRR.kext",


    "/Library/Extensions/PromiseSTEX.kext",


    "/Library/Extensions/SoftRAID.kext"


)


 


launchd.conf contents


---------------


 


 


Hosts file


---------------


##


# Host Database


#


# localhost is used to configure the loopback interface


# when the system is booting.  Do not change this entry.


##


127.0.0.1 localhost


#Activation Blocker                                                             


 127.0.0.1 hl2rcv.adobe.com                                                      


 127.0.0.1 t3dns.adobe.com                                                       


 127.0.0.1 3dns-1.adobe.com                                                      


 127.0.0.1 3dns-2.adobe.com                                                      


 127.0.0.1 3dns-3.adobe.com                                                      


 127.0.0.1 3dns-4.adobe.com                                                      


 127.0.0.1 activate.adobe.com                                                   


 127.0.0.1 activate-sea.adobe.com                                                


 127.0.0.1 activate-sjc0.adobe.com                                               


 127.0.0.1 activate.wip.adobe.com                                                


 127.0.0.1 activate.wip1.adobe.com                                               


 127.0.0.1 activate.wip2.adobe.com                                               


 127.0.0.1 activate.wip3.adobe.com                                     


 127.0.0.1 activate.wip4.adobe.com                                               


 127.0.0.1 adobe-dns.adobe.com                                                   


 127.0.0.1 adobe-dns-1.adobe.com                                         


 127.0.0.1 adobe-dns-2.adobe.com                                                 


 127.0.0.1 adobe-dns-3.adobe.com                                                 


 127.0.0.1 adobe-dns-4.adobe.com                                                 


 127.0.0.1 ood.opsource.net                                                      


 127.0.0.1 practivate.adobe                                              


 127.0.0.1 practivate.adobe.com                                                  


 127.0.0.1 tpractivate.adobe.newoa                                               


 127.0.0.1 practivate.adobe.ntp                                                  


 127.0.0.1 practivate.adobe.ipp                                                  


 127.0.0.1 ereg.adobe.com                                                        


 127.0.0.1 ereg.wip.adobe.com                                                    


 127.0.0.1 ereg.wip1.adobe.com                                                   


 127.0.0.1 ereg.wip2.adobe.com                                                   


 127.0.0.1 ereg.wip3.adobe.com                                                   


 127.0.0.1 ereg.wip4.adobe.com                                                   


 127.0.0.1 wip.adobe.com                                                         


 127.0.0.1 wip1.adobe.com                                                        


 127.0.0.1 wip2.adobe.com                                                        


 127.0.0.1 wip3.adobe.com                                                        


 127.0.0.1 wip4.adobe.com                                                        


 127.0.0.1 www.wip.adobe.com                                                     


 127.0.0.1 www.wip1.adobe.com                                                    


 127.0.0.1 www.wip2.adobe.com                                    


 127.0.0.1 www.wip3.adobe.com                                                    


 127.0.0.1 www.wip4.adobe.com                                                    


 127.0.0.1 wwis-dubc1-vip60.adobe.com


255.255.255.255 broadcasthost


::1             localhost 


 


 


Scan log


---------------


2015-12-15 09:58:28 :  


2015-12-15 09:58:28 : ----- Scan Started -----


2015-12-15 09:58:28 : Scanning with signatures version 18 (2015-9-21)


2015-12-15 09:58:28 : Adware.Spigot : /Users/karannagpal/Library/Safari/Extensions/Ebay Shopping Assistant.safariextz,/Users/karannagpal/Library/Safari/Extensions/Searchme-2.safariextz,/Users/karannagpal/Library/Safari/Extensions/Searchme.safariextz


2015-12-15 09:58:28 : Adware.Spigot : /Users/karannagpal/Library/LaunchAgents/com.spigot.ApplicationManager.plist


2015-12-15 09:58:28 : Adware.Spigot : /Users/karannagpal/Library/Application Support/Spigot/


2015-12-15 09:58:29 : *** scan time: 0d 00:00:01 ***


2015-12-15 09:58:29 : ------ Scan Ended ------


2015-12-15 10:07:23 :  


2015-12-15 10:07:23 : ----- Scan Started -----


2015-12-15 10:07:23 : Scanning with signatures version 39 (2015-12-14)


2015-12-15 10:07:23 : Adware.Spigot : /Users/karannagpal/Library/Safari/Extensions/Ebay Shopping Assistant.safariextz,/Users/karannagpal/Library/Safari/Extensions/Searchme-2.safariextz,/Users/karannagpal/Library/Safari/Extensions/Searchme.safariextz


2015-12-15 10:07:23 : Adware.Spigot : /Users/karannagpal/Library/LaunchAgents/com.spigot.ApplicationManager.plist


2015-12-15 10:07:23 : Adware.Spigot : /Users/karannagpal/Library/Application Support/Spigot/


2015-12-15 10:07:24 : *** scan time: 0d 00:00:00 ***


2015-12-15 10:07:24 : ------ Scan Ended ------


2015-12-15 10:07:27 : ---- File Removal Started ----


2015-12-15 10:07:27 : ===========================================


2015-12-15 10:07:27 : REMOVING ITEM: Adware.Spigot


2015-12-15 10:07:27 : >> Removing extension item: /Users/karannagpal/Library/Safari/Extensions/Ebay Shopping Assistant.safariextz


2015-12-15 10:07:27 : >> Removing extension item: /Users/karannagpal/Library/Safari/Extensions/Searchme-2.safariextz


2015-12-15 10:07:27 : >> Removing extension item: /Users/karannagpal/Library/Safari/Extensions/Searchme.safariextz


2015-12-15 10:07:27 : ===========================================


2015-12-15 10:07:27 : REMOVING ITEM: Adware.Spigot


2015-12-15 10:07:27 : >> Removing extension item: /Users/karannagpal/Library/Safari/Extensions/Ebay Shopping Assistant.safariextz


2015-12-15 10:07:27 : >> Removing extension item: /Users/karannagpal/Library/Safari/Extensions/Searchme-2.safariextz


2015-12-15 10:07:27 : >> Removing extension item: /Users/karannagpal/Library/Safari/Extensions/Searchme.safariextz


2015-12-15 10:07:27 : ===========================================


2015-12-15 10:07:27 : REMOVING ITEM: Adware.Spigot


2015-12-15 10:07:27 : >> Removing extension item: /Users/karannagpal/Library/Safari/Extensions/Ebay Shopping Assistant.safariextz


2015-12-15 10:07:27 : >> Removing extension item: /Users/karannagpal/Library/Safari/Extensions/Searchme-2.safariextz


2015-12-15 10:07:27 : >> Removing extension item: /Users/karannagpal/Library/Safari/Extensions/Searchme.safariextz


2015-12-15 10:07:27 : ===========================================


2015-12-15 10:07:27 : REMOVING ITEM: Adware.Spigot


2015-12-15 10:07:27 : >> Removing file item: /Users/karannagpal/Library/LaunchAgents/com.spigot.ApplicationManager.plist


2015-12-15 10:07:27 : ===========================================


2015-12-15 10:07:27 : REMOVING ITEM: Adware.Spigot


2015-12-15 10:07:27 : >> Removing file item: /Users/karannagpal/Library/Application Support/Spigot/


2015-12-15 10:07:27 : ---- File Removal Complete ----


2015-12-15 10:07:45 : ===== Attempting restart =====


2015-12-15 10:09:21 :  


2015-12-15 10:09:21 : ----- Scan Started -----


2015-12-15 10:09:21 : Scanning with signatures version 39 (2015-12-14)


2015-12-15 10:09:23 : *** scan time: 0d 00:00:02 ***


2015-12-15 10:09:23 : ------ Scan Ended ------


2015-12-15 14:23:37 :  


2015-12-15 14:23:37 : ----- Scan Started -----


2015-12-15 14:23:37 : Scanning with signatures version 39 (2015-12-14)


2015-12-15 14:23:39 : *** scan time: 0d 00:00:02 ***


2015-12-15 14:23:39 : ------ Scan Ended ------


2015-12-16 18:10:32 :  


2015-12-16 18:10:32 : ----- Scan Started -----


2015-12-16 18:10:32 : Scanning with signatures version 39 (2015-12-14)


2015-12-16 18:10:33 : *** scan time: 0d 00:00:01 ***


2015-12-16 18:10:33 : ------ Scan Ended ------


2015-12-21 10:51:57 :  


2015-12-21 10:51:57 : ----- Scan Started -----


2015-12-21 10:51:57 : Scanning with signatures version 40 (2015-12-19)


2015-12-21 10:51:59 : *** scan time: 0d 00:00:01 ***


2015-12-21 10:51:59 : ------ Scan Ended ------


2015-12-23 18:36:33 :  


2015-12-23 18:36:33 : ----- Scan Started -----


2015-12-23 18:36:33 : Scanning with signatures version 40 (2015-12-19)


2015-12-23 18:36:40 : *** scan time: 0d 00:00:06 ***


2015-12-23 18:36:40 : ------ Scan Ended ------

Link to post
Share on other sites

  • Staff

I don't see anything malicious installed on your system, although I do see a couple concerning things that indicate behavior that could result in something malicious being installed. You've got BitTorrent installed, and you've been using a pirated copy of at least one Adobe app. This can cause problems, so I'd advise not dabbling in such areas in the future.

 

As for the problem, though, I'm not sure what could be causing it. You've only got Google extensions installed in Chrome, and it sounds like you have tried deleting Chrome and all its support files, which pretty well rules out any kind of malicious extension or hack of Chrome itself.

 

What are your DNS settings? Go to System Preferences and click on the Network icon. Then, click on the Advanced button in the lower right corner of that preference pane. In the window that drops down, switch to the DNS tab. What is shown in the DNS servers list?

Link to post
Share on other sites

Hi Thomas,

 

The DNS server list has 2 servers, that are assigned by the DHCP server

 

37.48.108.142 (I guess this is from the ISP) & 8.8.8.8 (which is google I believe).

 

Each time i delete all my internet data and cookies etc, it works just fine on that particular day, next day it is back to where it was, and redirections begin again.

Link to post
Share on other sites

  • Staff

That first DNS server has been reported for being involved in network hardware hacks. See:

 

http://www.abuseipdb.com/report-history/37.48.108.142

 

Now, I don't necessarily put a lot of faith in such things, as I have owned a legit site that was, at one point, blocked by some anti-virus software due to being falsely flagged as a malware site. False positives do happen, and this could be one. But hacked network hardware also could be the source of your problem. It's also possible that this is a legit DNS server from your ISP, but that server has been hacked.

 

See the following page for more info on how to proceed from here:

 

https://support.malwarebytes.org/customer/portal/articles/2049288-?b_id=9511

 

You could also try manually changing the DNS server settings:

 

https://support.malwarebytes.org/customer/portal/articles/2049286-?b_id=9511

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.