Q: Malware: Domain Error Assistant   Ebay Shopping Assistant

You may have a compromised application. That happens with Firefox sometimes, but I haven't heard of it with Chrome. Please quit Chrome if it's running, then drag it from the Applications folder to the Trash and empty. Download a fresh copy directly from Google—nowhere else.

Please back up all data.

Triple-click the line below on this page to select it, then copy the text to the Clipboard by pressing the key combination  command-C:

/Library/Application Support

In the Finder, select

          Go ▹ Go to Folder...

from the menu bar and paste into the box that opens by pressing command-V. You may not see what you pasted because a line break is included. Press return. A folder named "Application Support" should open. If it has a subfolder named "Google," please drag that subfolder—and only that one—to the Trash. You may be prompted for your password. Relaunch Chrome, empty the Trash, and test.

If there's no change, you can restore the folder you deleted from a backup.

Please read this whole message before doing anything.

This procedure is a test, not a solution. Don’t be disappointed when you find that nothing has changed after you complete it.

Step 1

The purpose of this step is to determine whether the problem is localized to your user account.

Enable guest logins* and log in as Guest. Don't use the Safari-only “Guest User” login created by “Find My Mac.”

While logged in as Guest, you won’t have access to any of your documents or settings. Applications will behave as if you were running them for the first time. Don’t be alarmed by this behavior; it’s normal. If you need any passwords or other personal data in order to complete the test, memorize, print, or write them down before you begin.

Test while logged in as Guest. Same problem?

After testing, log out of the guest account and, in your own account, disable it if you wish. Any files you created in the guest account will be deleted automatically when you log out of it.

*Note: If you’ve activated “Find My Mac” or FileVault, then you can’t enable the Guest account. The “Guest User” login created by “Find My Mac” is not the same. Create a new account in which to test, and delete it, including its home folder, after testing.

Step 2

The purpose of this step is to determine whether the problem is caused by third-party system modifications that load automatically at startup or login, by a peripheral device, by a font conflict, or by corruption of the file system or of certain system caches.

Please take this step regardless of the results of Step 1.

Disconnect all wired peripherals except those needed for the test, and remove all aftermarket expansion cards, if applicable. Start up in safe mode and log in to the account with the problem.

Note: If FileVault is enabled in OS X 10.9 or earlier, or if a firmware password is set, or if the startup volume is a software RAID, you can’t do this. Ask for further instructions.

Safe mode is much slower to start up and run than normal, with limited graphics performance, and some things won’t work at all, including sound output and Wi-Fi on certain models. The next normal startup may also be somewhat slow.

The login screen appears even if you usually log in automatically. You must know your login password in order to log in. If you’ve forgotten the password, you will need to reset it before you begin.

Test while in safe mode. Same problem?

After testing, restart as usual (not in safe mode) and verify that you still have the problem. Post the results of Steps 1 and 2.

It might help others to know what data you hadn't deleted.

I see. Thanks.

In that case, others who find this discussion should realize that it wasn't necessary to delete the Chrome application. Just make sure you follow Google's instructions to reset your Chrome profile. Don't look in the wrong Library folder—the one you can see in the Finder.

It sounds to me like Chrome is syncing those extensions across all profiles. When you are signed in to Google within Chrome, open Chrome's settings. At the very top of the settings will be a Sign In group. Click the Advanced Sync Settings there. You'll see something like this pop up:

Make sure to deselect Extensions, then click OK. Then, if those Spigot extensions are still present, remove them using whatever technique you've been using to remove them. They should no longer be synced to new profiles.

Wanted to confirm that Malware Bytes does remove the dirty part of the Malware, but the extensions in Chrome are terribly difficult to remove. Have gone through all steps here and they just kept returning.

Confirming that the solution was to trash everything in ~/Library/Application Support/Google/Chrome

The published "Solved" is incorrect.