Search Marquis Description
Search Marquis is a Mac utility that disguises itself as a helpful tool that will enhance the browsing quality of popular browsers like Chrome and Safari. In fact, it is a malicious browser extension that aims to alter the browser's setting without the user’s knowledge and consent. The main purpose of this Potentially Unwanted Program (PUP) that sneaks stealthily into Mac computers is to generate revenues for its operators by popularizing the search engine Bing.com on Mac Safari browser. This happens through a number of intermediate redirects through various dubious domains.
Once installed on a Mac computer, this browser hijacking tool starts to modify crucial changes on the user's browser. It sets http://www.searchmarquis.com as the default new tab page and default search engine, forcing users to open this website each time they launch their browser. All search terms entered into that fake search engine cause a series of redirects until a final landing page with Bing search results is displayed. The intermediate redirects through unrelated and potentially malicious pages generate fake visits, and respectively, earn money for Search Marquis developers. Profound research shows that Search Marquis is closely related to another infamous browser hijacker named Searchbaron. That is why users whose devices have been infected with Search Marquis often experience redirects through Searchbaron page as well. Other related domains include searchnewworld.com, api.lisumanagerine.club, searchsnow.com, mybrowser-search.com, search.surfharvest.xyz.
Search Marquis also appears to display bogus pop-ups and messages, some of which may even try to trick the user into believing that their machine has been damaged or is experiencing performance issues. Eventually, the intention is to make the victim download and install the paid version of some rogue anti-malware program or purchase useless products of questionable quality. Typical for Search Marquis is, for example, the fake alert "Your computer is low on memory." which shows up shortly after startup and asks the user to close several apps to free RAM space. The appearance of this warning can also indicate that the computer is infected with a bogus cleaning utility called Mac Cleanup Pro, which is known to spread around along with Search Marquis.
Search Marquis can also install additional programs, toolbars, add-ons, and extensions that allow the attackers to track the devices' online traffic and browsing history, collect sensitive user data, and even control the device remotely.
Tools like Search Marquis often install on computers as part of third-party application bundles for Mac. That is why you should always look for the official websites of any app you wish to download or go directly to the official App Store. Another distribution method are banners and pop-ups on the Internet containing malicious links. Unprotected software downloading networks are also a well-known source of browser hijackers.
Remember that no webpage can determine the health of your system. If you come across a site that makes the claims mentioned above, you should ignore its contents as it will likely try to trick you into installing dodgy software or subscribing to a fake technical support service.
Search Marquis may be difficult to remove in some cases as it drops many components in different locations. PUPs like this one also use various techniques to ensure their persistence and to prevent removal. One such technique is establishing a "Managed by your organization" status for the PUP, which would repel attempts to uninstall the undesired browser extension. Furthermore, some added specific components to Google's database can result in Search Marquis coming back with all its malicious activity even after it has been removed.
It is advisable to use a powerful anti-spyware software suite to remove the Search Marquis program from your Mac. This PUP has absolutely no value for your Internet browsing quality, just the opposite – it can only deteriorate your Mac computer's overall performance and put your privacy and identity at serious risk.