Jump to content

Recommended Posts

So I have looked at every setting I know in chrome and cannot find a fix. I know ironmodal is associated with adware and im not having any adware related issues that I'm aware of but every single time I do a google search browser guard pops up letting me know malicious activity was blocked. I don't have any weird extensions and I'm just really not sure what to do. I want to make sure there is no adware or malware on my computer or on chrome and I also want the popups to stop. Any help or guidance is appreciated. If it helps I'm on a mac and using google chrome. Both are up to date. 

Link to post
Share on other sites

Hello @bababooey9999 and :welcome::

What is likely being described is a perfectly valid Trojan block of ironmodal by the Malwarebytes Browser Guard (MBG) extension for Google Chrome for a browser hijack.

Thus, you may carefully wish to follow the procedures within the How to remove the after-effects of adware locked/pinned topic.

Then, I recommend you run an updated scan with the Malwarebytes for Mac app.

After which, please reply to this topic with the results of your remedial actions.

Thank you.

Edited by 1PW
Link to post
Share on other sites

7 hours ago, 1PW said:

Hello @bababooey9999 and :welcome::

What is likely being described is a perfectly valid Trojan block of ironmodal by the Malwarebytes Browser Guard (MBG) extension for Google Chrome for a browser hijack.

Thus, you may carefully wish to follow the procedures within the How to remove the after-effects of adware locked/pinned topic.

Then, I recommend you run an updated scan with the Malwarebytes for Mac app.

After which, please reply to this topic with the results of your remedial actions.

Thank you.

Had to nuke chrome and reinstall and looks like that did the trick. Any other actions you may recommend I take at this point?

Link to post
Share on other sites

Hello @bababooey9999:

Please take your time and read carefully:

  1. I recommend you run an updated scan with the release version of Malwarebytes for Mac app.
  2. What AV protection was active just before Google Chrome was hijacked?
  3. What is Apple's detailed Model Identifier for that product?
  4. What is the complete System Version of the macOS?

Thank you.

Link to post
Share on other sites

26 minutes ago, 1PW said:

Hello @bababooey9999:

Please take your time and read carefully:

  1. I recommend you run an updated scan with the release version of Malwarebytes for Mac app.
  2. What AV protection was active just before Google Chrome was hijacked?
  3. What is Apple's detailed Model Identifier for that product?
  4. What is the complete System Version of the macOS?

Thank you.

1. I ran a scan with malwarebytes for mac app, no threats found. I usually run a scan on that daily and it was finding 0 threats even when chrome was hijacked. 
2. I do not have any AV protection
3. N/A
4. macOS Ventura Version 13.2.1 (22D68)

Link to post
Share on other sites

Hello @bababooey9999:

  1. Excellent!
  2. Please consider upgrading Malwarebytes for Mac to the Premium Edition if it isn't already. That becomes a large portion of the system's Real-Time Protection (RTP).
  3. Please consult the Command Line entry below to answer the query regarding hardware details
  4. The macOS Ventura version seems to be four (4) version updates behind. Do you require assistance with this?

Please launch the macOS Terminal application and, in the window that opens, please Copy & Paste the following command. Then, Copy & Paste the “Hardware Overview:” report into your next reply to this topic.

system_profiler SPHardwareDataType

Thank you.

Reference: macOS Ventura Release History

Link to post
Share on other sites

3 minutes ago, 1PW said:

Hello @bababooey9999:

  1. Excellent!
  2. Please consider upgrading Malwarebytes for Mac to the Premium Edition if it isn't already. That becomes a large portion of the system's Real-Time Protection (RTP).
  3. Please consult the Command Line entry below to answer the query regarding hardware details
  4. The macOS Ventura version seems to be four (4) version updates behind. Do you require assistance with this?

Please launch the macOS Terminal application and, in the window that opens, please Copy & Paste the following command. Then, Copy & Paste the “Hardware Overview:” report into your next reply to this topic.

system_profiler SPHardwareDataType

Thank you.

Reference: macOS Ventura Release History

Hardware Overview:

 

      Model Name: MacBook Pro

      Model Identifier: MacBookPro16,1

      Processor Name: 6-Core Intel Core i7

      Processor Speed: 2.6 GHz

      Number of Processors: 1

      Total Number of Cores: 6

      L2 Cache (per Core): 256 KB

      L3 Cache: 12 MB

      Hyper-Threading Technology: Enabled

      Memory: 16 GB

      System Firmware Version: 1968.120.12.0.0 (iBridge: 20.16.5058.0.0,0)

      OS Loader Version: 577~170

      Serial Number (system): C02***********

      Hardware UUID: 23C120EA-B724-5A99-BED9-C6D98FBF6E6E

      Provisioning UDID: 23C120EA-B724-5A99-BED9-C6D98FBF6E6E

      Activation Lock Status: Enabled

Link to post
Share on other sites

Hello @bababooey9999:

Much like the Mac Terminal command I requested above for the Hardware Overview report, please consider issuing the following command that requests the software update levels for XProtect, XProtect Remediator & MRT to be entered as one command:

defaults read /Library/Apple/System/Library/CoreServices/XProtect.bundle/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/XProtect.app/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/MRT.app/Contents/Info.plist CFBundleShortVersionString

Just reply with the three (3) lines of numbers reported.

Thank you.

 

Edited by 1PW
Link to post
Share on other sites

3 hours ago, 1PW said:

Hello @bababooey9999:

Much like the Mac Terminal command I requested above for the Hardware Overview report, please consider issuing the following command that requests the software update levels for XProtect, XProtect Remediator & MRT to be entered as one command:

defaults read /Library/Apple/System/Library/CoreServices/XProtect.bundle/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/XProtect.app/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/MRT.app/Contents/Info.plist CFBundleShortVersionString

Just reply with the three (3) lines of numbers reported.

Thank you.

 

2167

97

1.93

Link to post
Share on other sites

Hello @bababooey9999:

My apologies to you for the delayed response due to the need for sleep.

Excellent! Those version numbers above show the system is up-to-date in the area of XProtect/MRT.

If you plan to stay with the Google Chrome browser, its stable version (at the time of this posting) should now be 114.0.5735.90.

This forum does recommend the additional use of the uBlock Origin (uBO) extension in co-operation with Malwarebytes Browser Guard (MBG).

Is the system's Malwarebytes for Mac the free edition or premium? Regardless, its release version should be 4.19.14 and the protection database at 4.0.612.

Thank you.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.