By Domesticus in Browser Hijackers

Do not visit, if you have the choice. If you already have problems with your web browser taking you to on its own, please do not purchase the software that the site claims to offer. is a malicious website.

In this case, there are two things that are commonly referred to as one of them is the website itself, and one is the hijacker that causes infected computers' web browsers to go there. Both the website and the hijacker support the fake anti-virus software Antivirus Monitor. Antivirus Monitor pretends to be anti-virus software, and Antivirus Monitor uses scare tactics to try to get people to pay for a license; but in reality, Antivirus Monitor is incapable of providing any security, because Antivirus Monitor is malware. So, Antivirus Monitor also uses as its payment site, where you can pay the con-artists behind Antivirus Monitor by credit card. Obviously, that's something you shouldn't do.

The Hijacker

The hijacker is often just referred to as, because if the hijacker is infecting your computer, will be the only website you'll be allowed to see. Whenever you try to go to any other site, one of two things will happen: either you will find yourself at instead, or you will get a fake error window that says that you were prevented from navigating to the site because the site is malicious. The error window will have a link at the bottom for more information, and if you click on it, you are taken to

Although the primary symptom of the hijacker is its web browser redirection, the hijacker may also cause pop-up alerts and advertisement to appear, especially once you are on the website. These alerts and advertisement may say that your computer is at risk from some sort of threat, and they may recommend a free scan. If you fall for it and agree to the scan, you put your computer at extreme risk for a download of Antivirus Monitor, which will seriously interfere from your computer after the next time you restart it.

The Website

As a website, is extremely bland, containing the bare minimum in text and information needed to carry out's scam. Like the other sites for Antivirus Monitor, claims to be the one official site for the company selling Antivirus Monitor. Also like the other sites, has very little actual content, with the same handful of lame, basic malware terminology and definitions filling space in multiple locations throughout the site. There is also a customer support form, and a fake company address, both of which are just there to look good. Neither of them matches up to anything in the real world, since there is no customer support and no Antivirus Monitor company. In other words, is the end point of the scam, the point where the crooks try to get you to hand over your money, and they are only interested in making the site look good enough to convince you to pay them.

As of this writing, is at IP address, and it is the only domain hosted at that address. So, traces back to a source in Lithuania. Furthermore, the domain (the website name) was only registered on March 8, 2011, which corresponds to the release of the hijacker, which typically uses a Trojan that is hidden on other websites in order to download the hijacker to the victim computer. It is likely that the most visible registration information for the domain is either falsified, or is that of a web hosting service that uses. All of this makes extremely suspicious, and PC users should take care to avoid the site.

File System Details may create the following file(s):
# File Name Detections

Registry Details may create the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\PhishingFilter Enabled = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings ProxyEnable = 1
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings ProxyOverride =
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run [RADNOM CHARACTERS].exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings ProxyServer = http=


Most Viewed