PracticalRemote

PracticalRemote is a PUP (Potentially Unwanted Program) that targets Mac users. It combines the characteristics of both adware and browser hijackers. As such, it can conduct intrusive advertising campaigns, as well as take control over the user's Web browser to promote a sponsored address artificially. Most users may not even realize that PracticalRemote has been installed on their computers due to the dubious distribution practices employed by the PUP.

Once inside the computer, PracticalRemote will begin to monetize its presence. It will start generating intrusive advertising materials that can take the form of pop-ups, forced redirects, banners, surveys, etc. All of the displayed advertisements should be regarded as untrustworthy. Indeed, users are oftentimes taken to suspicious third-party websites that can perform phishing or technical support tactics, try to convince them to download additional barely-functional PUPs, or even attempt to deploy a malware threat steadily under the guise of a seemingly urgent software update.

As we said, PracticalRemote also is equipped with browser hijacker capabilities. It will take over the homepage, new tab page, and the default search engine of the user's browser. The PUP will set the settings to open search.dominantmethod.com on Google Chrome or 0yrvtrh.com on any other browser. Both addresses can be viewed as fake search engines that take any search query and redirect it to a legitimate engine such as Google, Yahoo, or Bing. In most cases, browser hijackers also will try to obtain various browsing-related information. Typically, it includes browsing and search histories, IP addresses, geolocation, ISP and more.