Threat Database Browser Hijackers Discover-facts.com

Discover-facts.com

By Domesticus in Browser Hijackers

Discover-facts.com Image

Discover-facts.com is marketed as a search engine. However, among its so-called search results there are numerous advertisements and links that are completely irrelevant – these are obviously placed among the results in order to allow the owners of Discover-facts.com to profit from advertising revenue. While this kind of behavior would usually not amount to much, Discover-facts.com is promoted with the help of browser hijackers.

Browser hijackers are a kind of malware infection that takes over the victim's computer system and affects how it connects to the Internet. Discover-facts.com is often linked to browser hijackers that are often quite dangerous to the victim's computer system, such as the Google Redirect Virus and the numerous rootkits associated with this threat. Because of this, the presence of Discover-facts.com redirects indicates that a severe malware infection is present.

Carrying Out Online Searches on Discover-facts.com Will Often Be a Risky Proposition

Visiting Discover-facts.com itself will usually not infect your computer with malware – that is, Discover-facts.com is not an attack website. However, carrying out online searches on Discover-facts.com may lead your computer system to websites containing malware in a proportion that is much higher than a normal search engine.

Browser hijackers associated with Discover-facts.com have been active since 2009, at least. These tend to have various effects on an infected computer system. Some symptoms of Discover-facts.com-related malware include finding that your home page is locked to Discover-facts.com, that your web browser often displays pop-up windows promoting Discover-facts.com or any of its associated websites, and experiencing random redirects to the Discover-facts.com website while browsing the web. Often, browser hijackers associated with Discover-facts.com will cause a redirect to this search engine after carrying out an online search on Google, Yahoo or Bing.

File System Details

Discover-facts.com may create the following file(s):
# File Name Detections
1. %AppData%[trojan name]toolbarcouponsmerchants2.xml
2. %AppData%[trojan name]toolbarstats.dat
3. %AppData%[trojan name]toolbarguid.dat
4. %AppData%[trojan name]toolbarlog.txt
5. %AppData%[trojan name]toolbarversion.xml
6. %AppData%[trojan name]toolbarcouponsmerchants.xml
7. %AppData%[trojan name]toolbaruninstallStatIE.dat
8. %AppData%[trojan name]toolbardtx.ini
9. %Temp%[trojan name]toolbar-manifest.xml
10. %AppData%[trojan name]toolbarcouponscategories.xml
11. %AppData%[trojan name]toolbaruninstallIE.dat
12. %AppData%[trojan name]toolbarpreferences.dat
13. %AppData%[trojan name]toolbarstat.log

Registry Details

Discover-facts.com may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{99079a25-328f-4bd4-be04-00955acaa0a7} "[trojan name] Toolbar"
HKEY_LOCAL_MACHINESOFTWAREClasses[trojan name]IEHelper.DNSGuardCurVer
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{99079a25-328f-4bd4-be04-00955acaa0a7} "[trojan name] Toolbar"
HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{99079a25-328f-4bd4-be04-00955acaa0a7}InprocServer32 "C:PROGRA~1WINDOW~4ToolBar[trojan name]dtx.dll"
HKEY_LOCAL_MACHINESOFTWAREClasses[trojan name]IEHelper.DNSGuard.1
HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}ProgID "[trojan name]IEHelper.UrlHelper.1"
HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar "[trojan name] Toolbar"
HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}VersionIndependentProgID "[trojan name]IEHelper.UrlHelper"
HKEY_LOCAL_MACHINESOFTWAREClasses[trojan name]IEHelper.DNSGuard
HKEY_LOCAL_MACHINESOFTWAREClasses[trojan name]IEHelper.DNSGuardCLSID
HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{A40DC6C5-79D0-4ca8-A185-8FF989AF1115} "UrlHelper Class"

Trending

Most Viewed

Loading...