So I was going through my family member's computer after they complained of it being slow. They recently attempted to install something they bought off ebay called PCCloner ex which did not work at all and the "company's" contact number was fake. The program has supposedly uninstalled but its folder and uninstall application stays. Norton marks this file as commonly used but I'm suspicious.
Moreover, I found a weird browser hijacker called fastpackagetracker. Adwarecleaner did not catch it, instead it tagged Norton's toolbar as a problem. However, the fastpackagetracker add on was easily found and removed and the page also offered an uninstall guide. Searching through the computer's browser history this seemed to derive from either a popup ad in jcpenney's tracking domain or perhaps from this PCCloner Ex program. Scanning with Malwarebytes and Norton never picked up this weird toolbar/browser hijacker. The URL it links to is "search.fastpackagetracker.co.....". I'm trying to attach an image of the history but I cannot at the moment.
So, what in the world is this and why has no program picked it up yet? Has anyone experience this browser hijacker before? Finally, if MBAM, Norton, and Adwcleaner isn't picking up anything is this computer infected with anything else?
Edit: Here's the link it sets the new tab too. The bottom most link is the first time I see the entry in Firefox's browser history. Right next to this entry I saw a link to the browser hijacker searchencrypt which didn't seem to infect the computer. Moreover, MBAM seems to have caught something associated with it logged as spigot.generic. Searching this up shows a browser hijacker with a different url but same new tab hijack screen.
Edited by aworrier, 04 November 2017 - 01:03 AM.