After a very long time I am her to cover another fake, rouge and malicious software. This time hackers are coming up with a new technique and this new strategy is to disguise a malware oriented software as a website. Name of the rogue-ware is Webplains.net which doesn’t belongs to any category of websites. To be very clear the domain webplains.net belongs to “Onwa Ltd.” it was involved in selling stolen clicks. Following are some other domains belongs to this company:
All of the above domains are just browser hijackers and they are very popular because of the search result clicks. For example if your search anything on search engine like “Worst Tech” it will redirect you some malicious webplains.net. You may see a blank page against your search query. If you re-install your browser it won’t help the cause.
If any of your search results are redirected to webplains.net or any of the above domains then you are a victim of some malicious software. This rogue-ware could be the ZeroAccess/Max++ rootkit or it could be a Trojan.
Now what about the removal of ZeroAccess/Max++? You have to perform many steps with many malware removal software. First, run TDSSKiller and ZeroAccess removal tool. Now scan you machine via help of any anti-malware software. Now perform a full system scan with any renowned antivirus program.