Hi i downloaded Audio Damage bundle from another site, and AD requires permission reset app, i used it installed it, and after when i open my google chrome, all settings like visited pages and stuff are gone, it resets even tho i have the setting open where left off. Also if i open chrome close it another browser open and denies by littlesnitch link is http://xml-v4.trafficmoose.com/

So i got some virus, idk what to do or how to find it, i deleted google folders re installed multiple times, got it to work again as usal, but then it happend again today....

I know you get malware using cracked software, but im worried about this one, does anyone know how to fix it or what to do to remove it?

Most malware programs dont work or is malware it self... Unless you buy like norton, im thinking of reinstalling my computer, but i wanted to ask you if you know anything about the

http://xml-v4.trafficmoose.com/

It opens together with chrome, so i open my profile, all tabs are reset, close it, and the window with the link is open in a page... It is denied by little snitch so, but still it resets my tabs, super annoying, is this dangerous?

What shall i do, do anyone know?

Regards

Johnny

 

Take this:

AdwCleaner 2025 - Free Adware Cleaner & Removal Tool
https://www.malwarebytes.com/adwcleaner

EDIT: Sorry forget the windows Version, thanks @Synclavier for the Hint!

Download from malwarebytes.com (direct link: https://www.malwarebytes.com/mac-download).
Install, update, and run a full scan (takes 10-20 mins).
Quarantine/remove anything it finds (it'll flag adware like TrafficMoose remnants).

Spoiler: Source: Grok KI

I'm sorry you're dealing with this—it's frustrating when something like a software bundle turns into a headache like this. Based on what you've described (Chrome resetting tabs/settings despite your "Continue where you left off" preference, and that suspicious URL popping up), it sounds like you've got adware (a type of malware) on your Mac. This is super common with cracked or pirated software downloads from shady sites, as they often bundle in junk like this to make money via forced ads/redirects. Little Snitch blocking the connection is a good sign—it's doing its job—but the adware is still messing with your browser behind the scenes.

Quick Answer on the URL
This domain is part of an adware network (tied to "TrafficMoose," which funnels traffic to ad platforms). On the surface, it might load a page for something like "Artillery Ads" (a digital ad service), but in practice, it's used by adware to redirect users to sketchy stuff: unwanted browser extensions, fake surveys, adult content, online games, or even more malware downloads. It's not a full-blown virus like ransomware, but it's annoying and risky because:

• It can track your browsing (e.g., via cookies/scripts).
• Those redirects could lead to phishing sites that steal info (passwords, payment details).
• It might install more crap without asking.

In short: Yes, it's dangerous enough to take seriously, but fixable without nuking your Mac. Don't click anything on it—just let Little Snitch keep blocking.

What to Do to Remove It (Step-by-Step)
Reinstalling Chrome (or even your whole system) isn't necessary yet—adware like this usually hides in a few spots and can be scrubbed out. Focus on these safe, proven steps. Do them in order, and restart your Mac after each major one to test. Only download tools from official sites to avoid more trouble.

1. Quit Chrome Completely and Reset It Fresh:
   • Force-quit Chrome (Cmd + Option + Esc, select Chrome, Force Quit).
   • Open Finder > Go > Go to Folder, type ~/Library/Application Support/Google/Chrome and delete the whole "Chrome" folder (this wipes profiles/settings—back up bookmarks first via Chrome's export if needed).
   • Also delete: ~/Library/Caches/Google/Chrome and ~/Library/Preferences/com.google.Chrome.plist.
   • Reinstall Chrome from google.com/chrome (not from any other site).
   • On first launch, sign in to restore tabs/history, and immediately go to chrome://settings/ > Reset settings > "Restore settings to their original defaults" (this nukes any hijacked extensions/policies).
   • Test: Open a few tabs, close/reopen—should hold your session now.
2. Scan with a Reputable (Free) Anti-Malware Tool: You're right to be skeptical of sketchy "malware removers," but Malwarebytes is legit (millions use it, no upsell BS in the free version, and it's not adware itself).
   • Download from malwarebytes.com (direct link: https://www.malwarebytes.com/mac-download).
   • Install, update, and run a full scan (takes 10-20 mins).
   • Quarantine/remove anything it finds (it'll flag adware like TrafficMoose remnants).
   • Alternative if you prefer built-in: Run Apple's XProtect/MRT via Software Update (System Settings > General > Software Update), but it's less aggressive.
3. Hunt for Hidden Launchers (Login Items & Launch Agents): Adware often auto-starts via these.
   • Go to System Settings > General > Login Items. Remove anything suspicious (e.g., unknown apps or "Audio Damage" extras).
   • In Finder > Go > Go to Folder: ~/Library/LaunchAgents. Look for .plist files with weird names (e.g., anything with "moose," "traffic," or random strings). Trash them (safe to delete extras—your Mac will complain if you zap something important).
   • Same for /Library/LaunchAgents (needs admin password).
   • Check Applications folder: Trash the Audio Damage bundle and anything installed around the same time.
4. Clear Browser Data & Block in Little Snitch:
   • In Chrome: chrome://settings/clearBrowserData > Advanced > All time > Clear (includes cache/cookies that might hold redirect junk).
   • In Little Snitch: Go to its rules list, find the blocked "xml-v4.trafficmoose.com" entry, and make the deny rule permanent (forever block the domain/IP).
   • For extra safety, install uBlock Origin extension in Chrome (from Chrome Web Store)—it's free and crushes ad redirects.
5. Test & Monitor:
   • Restart Mac, open Chrome, browse normally. If the reset/URL pops again, repeat step 2.
   • Run Activity Monitor (Spotlight search it) > CPU or Network tab: Sort by high usage, quit anything fishy (e.g., processes named "helper" or random gibberish).
   • If it persists after all this, grab EtreCheck (free from etrecheck.com)—it scans your Mac for malware/adware and gives a report you can share on forums like Reddit's r/MacOS for tailored help.

A Few Tips to Avoid This in the Future

• Ditch cracked software: Sites like that are malware central. Audio Damage isn't crazy expensive—buy legit to avoid this nightmare (and support devs).
• Enable Gatekeeper: System Settings > Privacy & Security > Allow apps only from App Store & identified developers.
• Use a VPN or ad-blocker always, and scan downloads with VirusTotal.com before opening.
• If you're super paranoid, back up (Time Machine), then reinstall macOS from Recovery (Cmd + R on boot)—but that's overkill here.

This should get you clean—most folks fix adware like this in under an hour. If you hit a snag (e.g., what Malwarebytes finds), reply with details, and I'll guide further. Hang in there, Johnny!

Sources: Malware removal guides from MalwareTips and Enigma Software confirm this as standard adware behavior.

 

Last edited: Nov 15, 2025 at 3:18 PM

you should try reading better, he is on MAC

 

Thanks @Synclavier for the tip, I completely overlooked that!

 

Thanks i will try, dont trust malwarebytes tho, maybe im wrong, but i will give it a go.

You know like mcafee you. see the documatary and it stole ppls data, he was worth 100million if not more for creating that one, its a documentary on netflix if u havent seen it, super good!!!

Anyway thanks. ill try

 

it didnt find a thing... lol.. i know i have malware, but this new one screwing with my chrome web pages and opens a link, thankfully little snitch blocks it, but its definetly trying to steal information... what else could it be.

Yeah have to reinstall os.... such a pain..

 

Have you tried following the tips from the AI?