Threat Database Browser Hijackers

By Domesticus in Browser Hijackers is a fake search engine that is in reality, a hub for various malware infections. The website has been associated with a number of browser hijackers, the most prominent of these being the Google Redirect Virus (including its aliases Google Redirect Hijacker and Redirecting Google Searches Trojan). Most traffic to this website is generated through browser hijackers and other, similar malware infections. According to ESG PC security researchers, if your computer's Internet browser is being constantly directed to the website, this is a definitive symptom of a browser hijacker infection. ESG malware analysts also recommend performing a full, in-depth scan of your hard drives after having visited the website. The fake search results returned by this fake search engine, as well as other content on the website, will usually cause a computer system to become infected with various malware infections.’s Complex Relationship with Malware Infections

According to ESG PC security analysts, malware infections are very rarely caused by a single agent. Trojans, viruses, rogue security applications, rookits, adware, spyware and similar infections rarely attack alone. This kind of relationship between various malware problems is to the criminals' advantage, as it makes it easier for a computer system to become infected and makes malware more difficult to remove than a single, isolated infection. Websites like help a relationship between browser hijackers and other malware such as rogue security programs, scareware, ransomware, and adware. Typically, a computer system infected with a browser hijacker (such as the ZeroAccess rootkit or the Google Redirect Virus) will be forced to visit websites like These fake search engines will display fake search results that are designed to direct the victim to websites replete with malicious advertisements designed to install Trojans, adware, spyware or other malware problems. Websites like can also direct their victims to websites that sell rogue security programs – that is, fake security applications that are part of a well-known computer scam. This is one of the main reasons why it is dangerous to allow a browser hijacker to remain on your computer system. Many browser hijackers are not particularly intrusive and may only redirect your searches or Internet activity occasionally. However, websites like, which are the result of these browser hijackers, act as a portal through which the infected computer can acquire a large number of other, severe malware problems.

File System Details may create the following file(s):
# File Name Detections
1. %Windows%\system32\consrv.dll
2. %Windows%\system32\DRIVERS\mrxsmb.sys

Registry Details may create the following registry entry or registry entries:
SubSystems: Windows = basesrv,1 winsrv:UserServerDllInitialization,3 consrv:ConServerDllInitialization,2 sxssrv,4

Related Posts


Most Viewed