Threat Database Browser Hijackers

By GoldSparrow in Browser Hijackers

The domain is blacklisted by many Web filtering services such as Google Safebrowsing, Mozilla Phishing Protection, and Sucuri. The reason for the blacklisting is that the domain is used to host misleading information and suggest users call a technical support center that claims to offer legitimate services by the Microsoft Corp. Additionally, includes images and logos that are trademarks of the Microsoft Corp. to claim credibility. Web surfers that load are presented with a screenshot of and a dialog box that says the desktop is locked due to suspicious activity. The pop-up on is generated via JavaScript, which is tailored to make the browser reload continuously. Thus, browsers like Google Chrome, Opera, Mozilla Firefox, Edge, and Internet Explorer may not accept commands correctly. The notifications from are known to feature the following text:

'Warning !
Your computer has alerted us that it has been infected with a virus and spyware. The following information is being stolen...
Facebook Login
Credit Card Details
Email Account Login
Photos stored on this computer
You must contact us immediately so that our engineers can walk you through the removal process over the phone. Please call us within the next 5 minutes to prevent your computer from being disabled.
Toll Free : 1-866-314-4893'

The 866-314-4893 phone line may be toll-free and the staff that answers calls may claim to be employed by the Microsoft Corp. However, the 866-314-4893 phone line is not to be associated with legitimate services from the Redmond giant (Microsoft). Users may be suggested that their browser and PCs are insecure and they need to call 866-314-4893 for help. It is not a good idea to follow the instructions listed on because you might come into contact with con artists. The company associated with does not provide contact information and valid registration, which shows that their operations are beyond suspicious. The staff on the 866-314-4893 phone line may ask users to grant remote access to their computers and cause problems on your end to justify their claim you need help. Con artists may use custom-made animations on the Web, the Command Line utility, and the Event Viewer on Windows OS to fool users into thinking they have a serious problem on their hands and need assistance from experts. The next step in the crook's playbook is to offer a one-time subscription fee that would allow you to benefit from their "expertise" and address problems with your system appropriately. Security researchers recommend users that experienced the pop-ups to use a reliable anti-spyware shield to block connections to the site and phishing content.


Most Viewed