SwiftSeek Chrome Extension Virus

Our researchers recently came across SwiftSeek, a browser extension found in an installer promoted by a misleading webpage during a routine check of suspicious sites.

Browser hijackers like SwiftSeek change your browser settings to redirect you to fake search engines. They often track your data as well.

SwiftSeek Overview

These programs set promoted pages as your default search engine, homepage, and new tab page. So, whenever you search or open a new tab, you’re taken to their chosen site.

When we looked into SwiftSeek, it redirected users to finditfasts.com. Since fake search engines usually can’t generate real results, they often send you to legitimate sites like Bing or Google. However, finditfasts.com redirected to potterfun.com, another unreliable search site.

SwiftSeek Extension (Google Chrome)
SwiftSeek Extension in the Google Chrome

Potterfun.com can show search results, but they might be inaccurate or include sponsored, untrustworthy, or harmful content. SwiftSeek could also promote other fake search engines. The redirects you experience might change based on factors like where you are located.

Browser hijackers often prevent you from fixing your browser settings. SwiftSeek uses the “Managed by your organization” feature in Google Chrome to do this.

Here is claim from user:

I got malware which is named swiftseek in my search engine! I literally cant find my google search bar and add shortcuts. I watched YouTube videos to solve this problem and the issue still keep existing. For example, I went to the settings and click search engine, and tried to change to google mode. But the option is like faded so that I cant change and it made me frustrated.

These programs usually track data, and SwiftSeek might collect information like websites you visit, pages you view, search queries, cookies, usernames, passwords, personal details, financial info, and more. They might sell this data to others.

In short, having software like SwiftSeek on your device can lead to infections, privacy problems, financial losses, and even identity theft.

SwiftSeek Chrome Extension
Type Unwanted Extension
Detection SwiftSeek Adware
Symptoms Your computer becomes slower than normal, you see unwanted pop-up ads, and you are redirected to dubious websites.
Distribution Deceptive pop-up ads, free software installers (bundling), torrent file downloads.
Damage Internet browser tracking (potential privacy issues), display of unwanted ads, redirects to dubious websites, loss of private information.
Removal (Windows) To eliminate possible malware infections, scan your computer with legitimate antivirus software. I recommend using Trojan Remover.

Conclusion

Unwanted extensions can seriously compromise your privacy and security. They may lead to malware infections or data theft, making it crucial to promptly remove any suspicious extensions and only download from trusted sources. Some notorious examples of such extensions include Bull Checker, Download Files Now, and FortyFy.

How Did SwiftSeek Extension on My Computer?

Extension like SwiftSeek often find their way onto computers via unofficial app stores or deceptive websites. P2P networks, third-party downloaders, misleading pop-ups, and advertisements are also common conduits for distributing unwanted extensions and deceiving users into installing them.

Another prevalent method is bundling unwanted apps and extensions with free and dubious software. During the installation process, users might overlook bundled offers if they do not opt for “Advanced” or “Custom” installation settings, where such offers can typically be declined.

To prevent unwanted installations, always download extensions, apps, and software from official websites or reputable app stores. Additionally, avoid interacting with suspicious links, pop-ups, or ads, and ensure your software and operating system are regularly updated.

Furthermore, consistently use a trusted antivirus program to scan your computer for threats. If your computer has already been compromised by rogue applications, consider running a scan with Loaris Trojan Remover to automatically remove them.

How to remove SwiftSeek?

Loaris Trojan Remover stands out as the premier choice for eradicating the ransomware threat and restoring your system. It boasts an advanced scanning engine that detects ransomware in all forms and allows for targeted scans with its Custom Scan feature.

To navigate around the ransomware’s execution blocks, boot your PC in Safe Mode with Networking. This can be done through the Troubleshooting panel by restarting your PC while holding the Shift key, navigating to Startup Settings, and selecting Windows 10 Safe Mode with Networking.

Reboot into Safe Mode

In Safe Mode, launch the Loaris installer, follow the installation prompts, and activate the free trial for full functionality.

When your PC is booted into Safe Mode, launch the Loaris installation file and wait until the program is installed. It may take several minutes. After that, the program will offer you to activate a free trial. This action is recommended since it allows you to use the full functionality of the Trojan Remover. Just enter your email address and receive a free trial code.

Trojan Remover main screen
Trojan Remover Main Screen

When the trial is activated, launch the full scan. It may last for 20-30 minutes, so keep patience. You can use your computer during this operation without any restrictions.

Loaris scan for Trojan:O97M/Madeba!pz
Scanning in process

After the scan, you will see the list of detected threats. By default, the program designates suitable actions for each detection. In particular, for the SwiftSeek Extension is a removed. However, you can manage these actions by clicking on the label on the right side of the detection if you think some detected items may need a different action.

Trojan:O97M/Madeba!pz Removal Process
Trojan:O97M/Madeba!pz Removal

Conversely, if the Trojan Remover identifies malware, reboot your PC to halt any malware processes active in Windows memory. Conducting another full system scan post-restart is prudent to catch any potentially replicated malware. This subsequent scan will be quicker, focusing on recently added or modified files.

Complete the second scan and move to the next steps if it detects no malware. If it identifies malware, revisit your quarantine list, eliminate any verified threats, and then restart your PC. Repeat these steps until your system is clear of malware.

Leave a Comment