Hi guys,
My Chrome browser started adding these scripts at the end of every page I visit...
I tried a scan with BitDefender but nothing was found, I tried using MalwareBytes and it found it.
So I was happy, no more scripts... But they eventually came back. Scanned again, deleted again, and I also manually removed the file C:\Users\myuser\AppData\Local\Google\Chrome\User Data\Default\Web Data.
Well, I thought it was gone for good, and then today I realized it was back. Malwarebytes now doesn't find anything. And I can't find something relevant online - but it may be because I don't know what to search for.
It's only Chrome. Firefox is clean.
Thanks ahead for any help !
My Chrome browser started adding these scripts at the end of every page I visit...
HTML:
<script type="text/javascript" src="https://networkanalytics.xyz/addons/lnkr5.min.js"></script>
<script type="text/javascript" src="https://networkanalytics.xyz/addons/lnkr30_nt.min.js"></script>
<script type="text/javascript" src="https://eluxer.net/code?id=105&subid=51067_5502_"></script>
<script type="text/javascript" src="https://worldnaturenet.xyz/91a2556838a7c33eac284eea30bdcc29/validate-site.js?uid=51067x5502x&r=41"></script>
I tried a scan with BitDefender but nothing was found, I tried using MalwareBytes and it found it.
Malwarebytes
www.malwarebytes.com
-Log Details-
Scan Date: 11/30/17
Scan Time: 2:52 PM
Log File: 6306c710-d5cd-11e7-8d3d-1c1b0dc6b8bb.json
Administrator: Yes
-Software Information-
Version: 3.3.1.2183
Components Version: 1.0.236
Update Package Version: 1.0.3380
License: Trial
-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: my-user
-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 332700
Threats Detected: 2
Threats Quarantined: 2
Time Elapsed: 1 min, 27 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
-Scan Details-
Process: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registry Key: 0
(No malicious items detected)
Registry Value: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Data Stream: 0
(No malicious items detected)
Folder: 0
(No malicious items detected)
File: 2
PUP.Optional.Conduit, C:\USERS\MYUSER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, [580], [454832],1.0.3380
PUP.Optional.Conduit, C:\USERS\MYUSER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, [580], [454832],1.0.3380
Physical Sector: 0
(No malicious items detected)
(end)
So I was happy, no more scripts... But they eventually came back. Scanned again, deleted again, and I also manually removed the file C:\Users\myuser\AppData\Local\Google\Chrome\User Data\Default\Web Data.
Well, I thought it was gone for good, and then today I realized it was back. Malwarebytes now doesn't find anything. And I can't find something relevant online - but it may be because I don't know what to search for.
It's only Chrome. Firefox is clean.
Thanks ahead for any help !