Posting some screen shots of chrome web browser that is stuck and won 't quit or exit

[G+_Rud Dog]

Posting some screen shots of chrome web browser that is stuck and won't quit or exit. AVG is running on this iMac version 10.9.5

[G+_Eddie Foy]

AVG on a mac??

Activity monitor and force quit it..

If that fails:

terminal

ps aux | grep chrome

fine PID

kill -9

[G+_Jason Marsh]

When chrome is open in foreground, does command-shift-w work?

 

I saw the same scam window hang IE on a win8 laptop. Forcibly closed IE and rebooted, all was well. Hope it's as clean for you.

[G+_Stephen Bertoni]

Open a terminal, then pkill -KILL chrome?

[G+_Rud Dog]

Thanks guys while surfing the web on my PC looking for any help found an article on the mac community. It was suggesting run anti-virus and loading DetectX well I already have AVG (yeah Eddie it is on the mac) but wanted to see if DetectX would help. Unfortunately my anti-virus fired off a bunch of warning against installed so deleted using AVG. Now the search goes on as to what this is and how to get rid of it.

Thanks for the back door methods for closing down the Chrome browser now to find a way to shut the culprit down for good. Still looking for what this is and what it is doing.

[G+_Eddie Foy]

Activity monitor can show other sub and parent processes, files and ports.

Also, LittleSnitch is worth its weight in gold, IMOHO.

[G+_Rud Dog]

Jason Marsh yeah got a feeling I need to find the problem and correct it. The first time this happened I powered down the iMac and then loaded up AVG. But since it has come back my concern is growing and a solution need be found.

Running virus scan manually again. Other then that scanning the Web to see if anyone else has seen this problem. Thanks.

[G+_Eddie Foy]

Double AV is usually a bad thing; each flag the other. (at least int eh Win world that was the case)

[G+_Rud Dog]

Oh in case there is any confusion I run a PC my wife runs an iMac. The problem is on the iMac using my PC as the Web surfing tool to find info on this scenario .

[G+_Rud Dog]

Must have confused issues sorry, the iMac only has AVG loaded on it, once and no other virus software.

[G+_Rud Dog]

Eddie Foy going to download LittleSnitch any recommendations of a trusted site to do so?

[G+_Eddie Foy]

I think its on the App Store, if not directly from the developer.  Hopefully they offer a sha1 or MD5 hash.  In terminal just do a

openssl sha1 and see if both hashes match.  Of so, install.

Little Snitch is a firewall that warns when apps try get out or the 'cloud' tries to get o an app.  You have the option for allow until quit, allow forever, deny, deny for ever also per port, IP etc.   Can get annoying, but the default is 'until quit', which is good in most cases.

(basically it needs 'training')

[G+_Jason Marsh]

What happens if you start Chrome without extensions?

Have you checked IP settings to make sure your DNS hasn't been redirected to scammers' server?

Proxy settings in browser?

What about other browsers; do they exhibit the same symptoms?

 

This can be a pain, especially if you don't have a "pre-infection" backup. If you follow the advice presented in the browser who knows what you'll wind up with. DBAN+reinstall is a pain, so here's hoping you find a cure for what ails her.

[G+_Rud Dog]

Eddie Foy Like it, gonna have the little lady read your reply and see if sounds like something she could use. Thanks.

[G+_Rud Dog]

Jason Marsh Currently running another deep scan on the iMac and using Safari for a test. 

[G+_Eddie Foy]

It can be.  If she reads the pop-up and recognize the name (it has a details)  Teach her about domains.  That hacker.apple.com is apple.  But apple.hacker.com is hacker.com.

LittleSnitch

Ghostery

FlashControl

(and possibly noscript.  but NS is a bugger to deal with and most just turn it off)

are a must in my eyes.

[G+_Rud Dog]

Eddie Foy Thanks again. Wanted to mention first purchased AVG for my PC running Windows no more then a month later got an email from AVG stating they would allow all my computers Mac's as well as Window's machines paid version of AVG for the price I paid for the original AVG program. Told them I liked the idea they gave me method for logging on from my machines and adding AVG. Sweet deal, I hope?

[G+_Steve C]

So if you call that 800 number who answers?

[G+_Rud Dog]

@Steve C  If memory serves it was someone wanting me to follow some steps as if they were going to help me out of course I was just saying yes to everything he said not really doing anything on the computer. Somewhere along the line lost connection and that was the end of that.

[G+_Rud Dog]

Wayne Hobbins when I asked her that same question she throws up her hands and says "don't know".

[G+_Rud Dog]

How do you append pics to an existing post have an update better shown with pic?

[G+_Rud Dog]

Wayne Hobbins wow, some of those look like what has shown up on the screen of my wife's iMac computer almost afraid to read the post via my windows machine. It is safe?

[G+_Rud Dog]

Wayne Hobbins So from what the link leads me to believe  this is something downloaded from Windows app store? If so there must be a cousin for the OS X environment only because my wife's machine is a iMac. 

 

Still no way to identify where the "adware" came from is disconcerting. If one can not track down how they got it in the first place or it can not be found using anti-virus software well it makes it a very scary stealth type adware.

 

Continuing to run AVG and it does find files it recommends I delete and once I figure out how to append a pic file to this post will include it in the communications here in.

[G+_Fr. Robert Ballecer, SJ]

Common scripting attack. Usually setup on misspellings of popular sites. -- Usually the only way to end it is to pop up the task manager and manually kill all the browser processes. 

 

Grrrr....

[G+_Jason Marsh]

Fr. Robert Ballecer, SJ Brilliant! So what you're saying is users need to be able to spell!

 

I've been saying that forever. That's how you wind up visiting the wrong sites. And downloading bogus apps. And getting your computer the ghonnosyphaherpaids.