Home Malware Programs Browser Hijackers Amisites.com

Amisites.com

Posted: June 21, 2016

Threat Metric

Ranking: 3,145
Threat Level: 5/10
Infected PCs: 62,621
First Seen: June 21, 2016
Last Seen: October 16, 2023
OS(es) Affected: Windows


The amisites.com browser hijacker is almost identical to attirerpage.com and funcionapage, among other bogus websites that present themselves as alternative search engines that will enhance your browsing experience and generate the most relevant search results. Meanwhile, all the searches that you make through them are redirected through Google and the main thing that amisites.com 'enhances' is the amount of annoying and irrelevant ads that are presented to you. Amisites.com also can be a compromise to certain private information.

The Amisites browser hijacker may get on your computer through dubious freeware installers that are programmed in a way that you will not even know what you are installing on your computer. The most common method is bundling. It relies on the users rushing through the installation of a program they downloaded and going past the additional software that is set to install in the 'Advanced' or 'Custom' sections of the installation process.

Once it gets your computer, the Amisites browser hijacker will begin making changes to your browser settings. Amisites targets the most common browsers, including Google Chrome, Mozilla Firefox, Internet Explorer, Microsoft Edge and Opera. The Amisites browser hijacker will change your homepage, new tab, browser shortcuts, and default search engine to amisites.com.

A good way to see if you are infected with the Amisites browser hijacker is to try and visit amisites.com. Users that aren't affected will usually get redirected to the Google's search platform. If amisites.com keeps coming up, however, you might be in trouble.

The Amisites browser hijacker may collect quite a lot of information about you and your browsing, including your IP address, search queries and website URLs that you have visited. This may cause serious privacy issues, as this data may be shared with third parties, which can misuse it to generate revenue, and even lead to identity theft.

Changing the browser settings will not help you, as they will be switched back to amisites.com quickly by the unsafe software. Uninstalling recently installed software might help you, but there's no guarantee that all the files and codes of the browser hijacker will be deleted. This is why you should avoid dubious bundles in the first place and rely on a legitimate detection and removal tool.

Technical Details

Registry Modifications

The following newly produced Registry Values are:

File name without pathhttp_www.amisites.com_0.localstoragehttp_www.amisites.com_0.localstorage-journalHKEY..\..\..\..{RegistryKeys}SOFTWARE\amisitesSoftwareSOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\amisites.comSOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.amisites.comSOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\amisites.comSOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.amisites.comSoftware\Microsoft\Internet Explorer\DOMStorage\amisites.comSoftware\Microsoft\Internet Explorer\DOMStorage\www.amisites.comSOFTWARE\Microsoft\Internet Explorer\LowRegistry\DOMStorage\amisites.comSOFTWARE\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.amisites.comSOFTWARE\Wow6432Node\amisitesSoftware

Additional Information

The following URL's were detected:
:"amisites"www.amisites.com
Loading...